Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft
File:                     _jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft (raw, json)
Hash identifier:          W9Lq1/sv/bgq313IfIAPHktj6hkHVDXbzLmFPuxlZLs=
Subject key identifier:   6C:1F:D3:75:0D:30:F8:55:D7:A3:61:B0:1C:8E:E3:AB:79:29:67:7B
Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53
Certificate issuer:       /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053
Certificate serial:       1687
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft
Manifest number:          1658
Signing time:             Thu 24 Jul 2025 16:50:13 +0000
Manifest this update:     Thu 24 Jul 2025 16:50:12 +0000
Manifest next update:     Thu 31 Jul 2025 16:50:12 +0000
Files and hashes:         1: _jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl (hash: v0hpXTz0ohGhwMeT6ALNhxzPsJCVHMfUBks7UoxkQGs=)
                          2: 7BC4E6DE322C11EFBC879F31C4F9AE02.roa (hash: j99DqXIlX/DsX6CAhLDODI4Li/SA5fMocxzYjvHfoI0=)
                          3: 86BBD3DE994C11EC82BA3978C4F9AE02.roa (hash: 8Wwh2LGsfMleJz4kPXncR947wixaVvdi2YpWJ6WAnNA=)
                          4: 87D45318994C11EC82BA3978C4F9AE02.roa (hash: /AMe5fWdVkNbiDNAX3rxonqHX2GWCAFeTm3WBDEgams=)
                          5: 1AD64F18D23411EAAFD6AA3AC4F9AE02.roa (hash: C40oyBiTxjQqMGzoY7zwrfSLtJR/TE6dpDn0DYUL1uI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl
                          rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 16:50:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5767 (0x1687)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B1185, serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053
        Validity
            Not Before: Jul 24 16:50:12 2025 GMT
            Not After : Jul 31 16:50:12 2025 GMT
        Subject: CN=68826445-88e4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:67:a5:b7:44:31:52:ae:f3:2a:7b:a1:23:c9:
                    2f:dc:c1:81:ba:f7:b6:f6:6b:7b:55:88:89:cb:ed:
                    91:50:dc:31:fe:9b:38:77:2d:ba:c6:aa:46:2b:88:
                    9f:b0:37:70:7f:d3:a2:f0:4f:01:37:32:de:fd:1e:
                    8a:e0:83:c2:2c:33:32:3c:f9:35:4b:0a:87:a3:61:
                    1d:0f:cb:00:22:a9:ca:4e:80:d3:82:d8:06:9d:2a:
                    71:e1:14:e2:4e:ea:b9:66:32:bb:81:68:dc:8d:9a:
                    07:76:53:01:35:50:43:6b:43:9d:b4:81:4e:67:e9:
                    72:fd:da:0b:66:c8:74:bf:93:ca:20:6f:ec:22:b1:
                    29:8d:f6:e2:81:4e:6c:7a:df:b9:30:e1:cf:0c:fc:
                    91:96:86:0e:74:eb:fb:ad:96:c7:6c:c6:2c:9b:45:
                    59:87:cb:71:e7:03:a7:18:e3:ff:5e:21:5d:e5:06:
                    93:df:c5:a8:4f:28:e3:83:c7:46:05:8c:b4:d5:21:
                    a5:3c:e1:21:f9:49:dc:3f:42:fe:c8:fa:90:98:86:
                    cd:98:bd:9a:18:a5:60:93:4b:bd:5f:17:b8:db:44:
                    19:0f:92:a8:27:47:c3:f3:1b:94:cd:c2:54:93:f2:
                    24:cf:af:ab:07:53:e9:b9:f4:8b:cc:8c:ac:5d:79:
                    6d:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:1F:D3:75:0D:30:F8:55:D7:A3:61:B0:1C:8E:E3:AB:79:29:67:7B
            X509v3 Authority Key Identifier:
                keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:3f:32:66:44:78:6d:d0:f3:f6:ea:d5:36:a4:33:72:9c:24:
         0c:27:53:3d:ee:25:94:c1:26:a1:9e:c8:55:e4:ec:fd:ba:71:
         55:d6:72:43:cb:11:5f:ae:dc:9d:2a:8f:0f:b9:78:65:41:62:
         bf:9b:f0:c9:91:f9:a5:e1:70:e4:63:75:78:65:2c:21:0c:f9:
         10:a7:1b:60:a4:b3:1b:8b:1f:e2:0a:7b:84:66:77:63:c1:b5:
         15:41:51:b7:90:b3:6c:d6:25:e4:cd:b9:10:c1:e7:1f:e4:49:
         7e:d0:c9:3c:16:2a:b7:db:db:cb:c8:07:36:4a:5c:9e:c4:88:
         b5:ef:2b:af:ca:6c:02:91:6a:cc:00:34:e2:23:39:c0:f1:2a:
         fa:f7:bf:e6:48:cb:8f:c3:0b:b3:f1:1d:d5:d8:84:25:b1:39:
         68:37:17:6d:cd:42:e7:a5:0f:19:82:49:c3:f0:da:95:01:07:
         e5:08:dd:d9:0d:87:e0:a3:6a:f9:26:83:9c:80:40:c8:37:0c:
         06:df:a3:2b:c3:bb:4d:bf:bc:18:c2:86:df:97:d1:6a:06:9a:
         d9:48:4c:ca:26:27:02:97:01:49:6a:f6:42:04:1d:9e:a7:30:
         40:85:8c:34:a8:9b:50:8d:e7:81:b4:19:0c:e0:71:db:9d:db:
         48:59:5f:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 06:46:20 2025 by rpki-client