Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft
File:                     _jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft (raw, json)
Hash identifier:          8mkumq13RUVdDrysyS0tLD/Vzq2XppsQ8nMDU3X2uXU=
Subject key identifier:   DB:4B:C0:31:11:14:28:A9:B2:36:DA:D4:55:C1:9A:DC:11:F9:60:AA
Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53
Certificate issuer:       /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053
Certificate serial:       1686
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft
Manifest number:          1657
Signing time:             Tue 22 Jul 2025 16:51:29 +0000
Manifest this update:     Tue 22 Jul 2025 16:51:29 +0000
Manifest next update:     Tue 29 Jul 2025 16:51:29 +0000
Files and hashes:         1: _jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl (hash: 6a7tahU7CaWJyUIfVjnFbQvpz6OBHRmLuip+9NO9Dys=)
                          2: 7BC4E6DE322C11EFBC879F31C4F9AE02.roa (hash: j99DqXIlX/DsX6CAhLDODI4Li/SA5fMocxzYjvHfoI0=)
                          3: 86BBD3DE994C11EC82BA3978C4F9AE02.roa (hash: 8Wwh2LGsfMleJz4kPXncR947wixaVvdi2YpWJ6WAnNA=)
                          4: 87D45318994C11EC82BA3978C4F9AE02.roa (hash: /AMe5fWdVkNbiDNAX3rxonqHX2GWCAFeTm3WBDEgams=)
                          5: 1AD64F18D23411EAAFD6AA3AC4F9AE02.roa (hash: C40oyBiTxjQqMGzoY7zwrfSLtJR/TE6dpDn0DYUL1uI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl
                          rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 16:51:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5766 (0x1686)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B1185, serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053
        Validity
            Not Before: Jul 22 16:51:29 2025 GMT
            Not After : Jul 29 16:51:29 2025 GMT
        Subject: CN=687fc191-e583
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:13:60:74:43:8b:63:fd:87:18:95:42:42:2b:
                    18:38:0d:6e:5a:4c:9a:9c:6f:fc:34:54:1e:21:3b:
                    37:c5:0c:39:16:ea:f7:4b:fa:31:16:62:ae:03:a2:
                    6e:86:3f:f7:d2:e5:11:72:ed:7b:89:60:b1:49:8a:
                    fe:fe:f3:c4:3f:04:c9:75:8b:7e:49:b8:9b:85:4f:
                    57:e8:b8:e6:d4:18:b4:c0:c4:d7:23:c3:1f:bd:a0:
                    98:0b:b9:95:61:fc:14:e2:7d:ba:93:92:41:11:c4:
                    ba:0a:d0:b1:19:13:3c:b3:35:da:37:5e:54:37:97:
                    85:08:9d:c8:12:6a:ee:75:21:03:0b:c1:b0:6e:52:
                    aa:50:0c:ce:46:7c:cf:ee:fc:00:42:fb:8f:73:07:
                    09:f3:85:8a:fb:56:2d:cd:32:08:b4:9b:01:50:84:
                    54:6d:5c:47:d3:0e:d4:bf:2d:64:01:58:22:5d:78:
                    a7:d5:c4:eb:50:de:cd:74:dd:c1:dc:d3:89:0b:68:
                    f3:bc:b7:85:b3:a3:83:fc:dd:ff:1f:7b:8d:82:ef:
                    e5:a1:f9:1b:42:78:22:ef:1b:db:ff:9b:3f:c1:9c:
                    38:47:61:bb:6d:57:4d:60:60:49:47:80:f1:62:6a:
                    bb:dd:1e:cc:57:2a:cc:95:63:cf:58:c1:b3:93:97:
                    75:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:4B:C0:31:11:14:28:A9:B2:36:DA:D4:55:C1:9A:DC:11:F9:60:AA
            X509v3 Authority Key Identifier:
                keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:a3:49:9e:52:3e:3b:6b:31:60:4d:1a:ef:71:14:8a:12:32:
         be:e6:84:00:31:9e:07:78:d0:77:ad:dc:b6:c7:46:8e:01:63:
         53:df:f1:bd:6a:6e:bf:6e:50:4b:8d:1c:3f:fc:d2:f6:c6:5b:
         a8:83:d1:b5:31:ce:ad:da:2b:84:7c:5e:99:b5:59:73:43:10:
         b0:ab:0a:23:3f:75:44:95:b5:97:5c:58:18:95:56:9b:df:09:
         be:44:3f:9c:88:aa:84:92:1c:1a:54:26:10:ab:7e:e3:6d:ba:
         3d:cf:0c:fe:4a:3b:d7:e6:65:6d:56:03:6c:1f:83:a6:f7:7d:
         44:08:25:44:89:e9:00:b3:83:8c:4a:48:87:b2:b5:a3:53:ad:
         c7:87:d7:a1:b7:c5:a0:27:b8:91:81:ab:4f:37:c0:b4:19:8c:
         d8:db:a8:3a:fc:73:5f:49:ac:6f:ed:9c:8f:3a:59:3e:2d:f6:
         b9:0c:1e:33:1d:53:f4:fa:eb:78:8d:ca:98:22:e3:df:b4:3e:
         03:9a:64:e6:53:03:83:a1:6d:f5:79:db:09:42:30:e9:c6:91:
         12:1a:4c:fd:e8:34:47:4e:46:d9:7a:ef:be:14:14:8b:a6:8b:
         b5:ab:00:db:be:46:05:ca:9d:aa:c3:ab:14:3a:f7:e8:18:0b:
         d1:e0:ee:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:07:47 2025 by rpki-client