Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft
File:                     GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft (raw, json)
Hash identifier:          un3ZuULSApwRXN/TGdSuIEi+ut8SuZHILA1vjDF7CU8=
Subject key identifier:   BC:6A:09:ED:11:88:90:19:F7:37:B1:5B:F7:DF:E8:7D:87:E6:7B:D2
Authority key identifier: 18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C
Certificate issuer:       /CN=A91A09DE/serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C
Certificate serial:       0464
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft
Manifest number:          045F
Signing time:             Fri 25 Jul 2025 00:33:21 +0000
Manifest this update:     Fri 25 Jul 2025 00:33:20 +0000
Manifest next update:     Fri 01 Aug 2025 00:33:20 +0000
Files and hashes:         1: GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl (hash: 61f5qXpKKwzsR/hAqWwXRMCRE89+0tyAdBn/Gmc1YGc=)
                          2: C7EAFB5AB62011EC9060CD0FC4F9AE02.roa (hash: xFL3ypsjaivEwLZovLg7QH0r6iiczksBr1MYMN2w3rQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl
                          rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 00:33:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1124 (0x464)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A09DE, serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C
        Validity
            Not Before: Jul 25 00:33:20 2025 GMT
            Not After : Aug  1 00:33:20 2025 GMT
        Subject: CN=6882d0d0-61c7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:dd:3b:4a:6c:62:11:fd:30:f1:2d:7f:58:cc:
                    63:51:88:d9:02:0a:29:23:2a:0f:d5:de:ae:cf:33:
                    b1:98:b0:38:d3:a8:61:5b:c7:3d:69:a5:f6:da:e7:
                    c7:ed:af:3f:1f:e1:43:39:c2:a4:f8:26:70:eb:e3:
                    db:74:04:7b:84:e1:88:fb:ca:1d:57:4d:05:2d:a6:
                    1e:cc:79:ac:7b:86:0e:37:71:c9:b4:69:e6:49:b4:
                    d5:f1:15:d4:04:ae:77:1e:9e:8f:d7:95:18:be:2c:
                    7c:c3:18:27:44:ed:61:ed:b0:e1:c6:66:c1:e9:c4:
                    00:1a:f9:ed:33:f1:16:d0:ed:4d:be:03:ce:59:56:
                    d0:21:89:f8:22:cf:e5:e3:f4:4e:d8:fe:5f:b1:e5:
                    87:fd:4d:d8:bd:82:9f:7d:20:e3:bf:28:cd:b0:c1:
                    22:b7:3d:8d:c5:62:fb:f5:51:b1:b8:f1:fc:80:2c:
                    77:5a:4b:28:80:2e:ed:fd:a5:ee:fd:29:8b:a0:b9:
                    cf:95:b6:ab:5a:15:e2:26:69:3e:ee:70:80:29:26:
                    4c:6d:38:9a:8c:eb:11:69:03:d0:24:2a:06:86:3b:
                    ca:40:be:ca:4d:2e:4a:0c:ae:e4:a0:38:d0:c1:9d:
                    b0:93:db:a0:27:53:00:28:cc:66:88:24:5d:e6:09:
                    c9:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:6A:09:ED:11:88:90:19:F7:37:B1:5B:F7:DF:E8:7D:87:E6:7B:D2
            X509v3 Authority Key Identifier:
                keyid:18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:2b:be:cb:66:63:44:ff:c4:cb:ed:0b:4f:89:e1:d5:73:35:
         12:b2:25:c5:a8:15:18:16:ab:93:7e:55:31:ea:7b:33:7c:21:
         c3:74:40:9b:75:a3:82:84:f2:9f:87:6f:cf:3b:20:a0:12:c3:
         95:6e:f4:7a:8f:de:5f:c3:19:18:0c:fa:fc:b1:62:ac:53:a5:
         37:a3:bb:8a:ff:c3:1e:29:2f:3c:e1:9c:68:92:85:c6:35:e3:
         f6:b6:17:0b:28:d4:89:0d:bf:a3:e0:a8:8d:a9:ca:9e:91:ff:
         c1:95:aa:54:d9:dd:99:4e:4f:83:c7:8b:12:fa:2e:d9:95:f2:
         0f:79:78:69:bc:ce:c8:0d:5b:02:cf:d2:82:55:3c:ec:bc:99:
         46:e4:fe:3b:72:d2:43:be:61:b9:fd:98:83:0c:08:2b:d7:0c:
         43:91:13:2a:cc:7e:a3:7e:a7:45:87:74:65:79:60:36:39:37:
         ed:4c:45:19:30:ad:2a:01:a1:b9:e2:75:bf:bf:33:4d:96:76:
         1c:da:11:3e:2c:f5:b1:b8:5d:19:87:ff:24:91:02:63:78:ac:
         0e:b4:7e:58:4b:75:50:37:b0:a3:98:1c:13:b9:ec:44:27:21:
         60:7a:fb:15:c8:a4:60:8a:5a:c5:30:2a:36:1c:88:f4:7e:ae:
         43:4a:a7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 05:29:05 2025 by rpki-client