Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft
File:                     JbCzFZvpDPGiOyUhpSER_wOQXvc.mft (raw, json)
Hash identifier:          odwwQD6TGLvEgAeNqRkm/DUZBSTmtAc2fNX5a4AbpL0=
Subject key identifier:   85:B7:91:26:D0:CA:09:8F:ED:9A:15:12:44:43:A0:24:4C:33:42:5E
Authority key identifier: 25:B0:B3:15:9B:E9:0C:F1:A2:3B:25:21:A5:21:11:FF:03:90:5E:F7
Certificate issuer:       /CN=A919A716/serialNumber=25B0B3159BE90CF1A23B2521A52111FF03905EF7
Certificate serial:       3A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbCzFZvpDPGiOyUhpSER_wOQXvc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft
Manifest number:          39
Signing time:             Mon 21 Jul 2025 07:46:29 +0000
Manifest this update:     Mon 21 Jul 2025 07:46:29 +0000
Manifest next update:     Mon 28 Jul 2025 07:46:29 +0000
Files and hashes:         1: JbCzFZvpDPGiOyUhpSER_wOQXvc.crl (hash: xtxs10uz0jJyvjwTxtRgvgShpYUClmnf/wvsyDfJJB0=)
                          2: 3051CA240FBB11F0B9C1D274C4F9AE02.roa (hash: LQXESBC03M55eTRwU/sXkaRTACDEQkRKoyFYlNpa2vw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.crl
                          rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbCzFZvpDPGiOyUhpSER_wOQXvc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 07:46:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 58 (0x3a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919A716, serialNumber=25B0B3159BE90CF1A23B2521A52111FF03905EF7
        Validity
            Not Before: Jul 21 07:46:29 2025 GMT
            Not After : Jul 28 07:46:29 2025 GMT
        Subject: CN=687df055-f3a6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:cb:f6:23:4e:b3:bd:47:fa:af:db:06:57:d6:
                    00:bd:bd:63:94:4a:01:e7:62:5f:f8:de:86:1e:c0:
                    65:ca:b9:f6:e0:59:a6:ac:fc:52:79:f7:1d:ec:1e:
                    69:c5:2e:bb:66:e2:4c:bb:2e:ce:e9:d1:a0:64:df:
                    ea:ef:45:d4:c9:b9:3e:f1:1e:7d:14:57:b5:02:fd:
                    02:f9:73:db:d5:7e:22:ce:f4:ee:72:17:7a:8f:68:
                    0a:ea:43:56:7c:d4:96:4d:16:f3:7a:15:bb:17:bb:
                    57:57:bb:65:1b:db:c3:c5:96:d1:7f:70:e6:fe:50:
                    12:a9:2c:80:ea:89:8e:4c:9c:2f:16:7a:2c:2a:a3:
                    ec:4b:f5:7b:a1:cb:11:18:c3:7e:51:95:30:63:40:
                    e2:19:01:64:05:62:c4:b0:19:9c:9f:38:26:19:4f:
                    e3:12:27:af:97:4c:9b:26:1f:b3:a8:2f:a1:77:a4:
                    af:ce:2e:40:70:cb:e4:14:d1:00:e1:fe:f9:2e:40:
                    dc:b4:8b:b6:d2:06:e7:9d:67:42:04:c7:6f:93:e0:
                    3b:0b:fd:88:6b:19:7a:a9:d9:7d:9c:00:37:4e:d2:
                    fb:a1:e7:a9:15:46:b7:26:cf:b3:f8:1e:0f:d3:0f:
                    71:0a:7c:dd:22:d6:10:92:a4:fa:44:6a:d3:08:08:
                    1d:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:B7:91:26:D0:CA:09:8F:ED:9A:15:12:44:43:A0:24:4C:33:42:5E
            X509v3 Authority Key Identifier:
                keyid:25:B0:B3:15:9B:E9:0C:F1:A2:3B:25:21:A5:21:11:FF:03:90:5E:F7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbCzFZvpDPGiOyUhpSER_wOQXvc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:47:43:c6:f3:92:83:71:b3:f9:f2:68:92:36:e5:b7:3f:ee:
         b1:c3:d8:cb:7f:cc:4b:23:85:6b:3a:73:96:9a:0c:ba:f1:80:
         0c:e2:e5:ca:50:de:13:ec:3d:e0:9d:53:f6:58:77:0f:fb:30:
         82:83:00:12:59:56:93:d9:e8:49:0c:1d:d3:77:56:62:98:e2:
         c1:9d:72:1d:d9:92:41:93:ef:70:bc:67:49:da:5c:51:b5:9f:
         ed:49:e2:ec:cb:99:7b:50:ef:c6:b9:25:c6:eb:fe:78:b4:41:
         e6:95:15:f6:53:79:11:f5:52:96:ad:71:70:3b:d0:8f:56:4c:
         83:4d:45:6f:30:2e:4b:12:9c:e5:bb:7d:92:65:60:76:28:f8:
         51:7a:d0:ab:f7:e8:ad:1f:7a:5a:f0:3e:3d:34:f6:86:19:d7:
         c9:06:66:94:54:78:cc:c1:49:0c:89:cf:02:8c:8b:aa:92:c4:
         07:1e:6c:82:08:8c:84:a5:3a:69:b9:82:19:d0:68:c8:cf:38:
         cf:1f:01:01:2b:96:59:35:88:d9:39:15:b0:1b:76:89:47:ef:
         71:53:24:66:b3:99:cf:99:83:c9:52:d4:ea:e2:75:2f:e9:d1:
         b6:63:21:8f:dc:57:11:8f:0e:8f:18:9e:98:c1:32:2f:85:b4:
         98:d6:4e:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:18:13 2025 by rpki-client