Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft
File:                     yDkkRRVKIRRXRo3JJnXGsrycRIs.mft (raw, json)
Hash identifier:          HxN7zbY0f2VIZ5eGzCtqJkgB8NOi+rAN5hIzYTq5tzY=
Subject key identifier:   40:DA:F1:27:EE:B7:D2:C7:5E:12:55:1D:62:4E:80:96:D5:7D:E5:8E
Authority key identifier: C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B
Certificate issuer:       /CN=A91A7890/serialNumber=C8392445154A211457468DC92675C6B2BC9C448B
Certificate serial:       01B0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft
Manifest number:          01AB
Signing time:             Mon 21 Jul 2025 03:18:27 +0000
Manifest this update:     Mon 21 Jul 2025 03:18:27 +0000
Manifest next update:     Mon 28 Jul 2025 03:18:27 +0000
Files and hashes:         1: yDkkRRVKIRRXRo3JJnXGsrycRIs.crl (hash: lQCXs91u1292It83zNXCVpwmqJBk00kPT/SPlbBlw78=)
                          2: EC8CA72CDAE311EDA0A6B03DC4F9AE02.roa (hash: F7qGiUSXmfTHkG4rLsiz9f3fhRuXMOAIShVR1Seg7DE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl
                          rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 03:18:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 432 (0x1b0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A7890, serialNumber=C8392445154A211457468DC92675C6B2BC9C448B
        Validity
            Not Before: Jul 21 03:18:27 2025 GMT
            Not After : Jul 28 03:18:27 2025 GMT
        Subject: CN=687db183-33e8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:fe:2f:be:e9:13:d8:cc:bb:75:55:50:b3:14:
                    ac:88:3f:b7:e9:e9:6f:e9:2c:af:60:c9:da:2d:86:
                    ed:6b:94:c7:a4:e8:c1:1b:70:01:f0:b6:8f:83:d4:
                    27:26:81:f3:ad:1b:d8:94:1d:d2:4f:34:e9:ff:31:
                    37:68:86:0c:13:31:47:6c:d5:b3:c6:b9:85:d0:cf:
                    b5:03:20:cb:95:49:cf:ae:25:9f:07:50:45:6b:c6:
                    88:7b:29:9a:ca:db:a3:15:26:70:d3:93:bf:c0:a9:
                    c4:52:ba:aa:f6:d6:9a:3f:7a:6b:63:e4:40:61:d7:
                    d3:8d:8b:cf:66:ec:34:9d:0f:9f:3f:f6:38:c7:17:
                    16:47:b3:35:d6:37:1a:c9:1f:71:6d:46:58:47:5c:
                    bb:3f:74:07:96:92:57:1e:54:be:50:fd:a5:2b:04:
                    4f:c4:99:37:5d:12:97:4c:7e:f4:85:55:a9:e0:f7:
                    aa:d1:a0:02:c2:f5:d3:15:a9:e8:24:ed:3c:ba:7c:
                    9f:b1:52:0a:19:7e:7d:11:f5:ed:76:8e:c1:5b:c4:
                    30:0f:c0:c1:2a:f4:99:84:ff:31:94:67:88:16:05:
                    c0:95:94:a6:24:e7:b3:63:86:9e:b0:f6:ef:73:2c:
                    fc:5c:b4:70:cd:3c:25:eb:e0:6c:19:d0:95:89:72:
                    62:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                40:DA:F1:27:EE:B7:D2:C7:5E:12:55:1D:62:4E:80:96:D5:7D:E5:8E
            X509v3 Authority Key Identifier:
                keyid:C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:bd:d6:cd:e8:f5:dc:c4:35:13:c0:18:c9:ee:a4:37:de:0a:
         12:b0:2a:8d:78:36:62:13:1d:b8:01:40:6f:14:9c:d3:1f:b4:
         89:33:20:9e:2e:1e:e8:f6:73:d5:75:d4:98:80:97:d1:9d:3c:
         69:20:6c:12:44:09:bf:66:93:21:81:d3:28:92:3d:26:7d:4d:
         ab:a7:0c:ae:a5:e8:5c:5a:05:6c:14:50:54:f6:a3:8b:ae:55:
         5c:f8:9e:a4:09:3e:7a:09:35:30:03:10:92:f7:33:6a:2c:23:
         6f:97:df:2b:2f:a5:28:35:3f:2d:58:95:fa:11:9f:86:53:43:
         d2:0f:e6:28:97:85:80:9a:4f:39:fa:20:da:0b:2d:38:87:e7:
         d4:47:b5:c0:7c:1e:47:37:45:28:b4:4c:4d:d3:d9:ea:aa:3c:
         e3:f0:bd:86:f2:3a:eb:1c:42:5e:eb:47:59:02:63:d9:99:41:
         f9:b0:1d:d9:20:ce:b6:c4:11:06:ae:c1:b5:61:fc:a2:fa:87:
         44:4b:e2:c3:d7:a3:06:d9:c3:95:eb:57:0c:a1:1b:31:88:e5:
         a6:50:a5:03:1f:5f:72:fc:37:87:73:d4:89:8a:0c:79:df:40:
         c1:de:ea:12:79:3a:28:a7:9c:a7:5d:0d:79:63:57:60:b6:45:
         e4:a9:0c:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 20:09:57 2025 by rpki-client