Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft
File:                     tgQSzpgJwQxn3eq7oOM1462k_hA.mft (raw, json)
Hash identifier:          nVidHL2cm7G+6caqfg/zLfPXGllWlOmLuibY3RRW4GM=
Subject key identifier:   E4:6D:81:A1:9E:5A:D7:48:6B:2B:8E:C7:66:B4:0E:59:CC:54:C2:CC
Authority key identifier: B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10
Certificate issuer:       /CN=A91BF306/serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10
Certificate serial:       014C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft
Manifest number:          0149
Signing time:             Wed 23 Jul 2025 04:40:42 +0000
Manifest this update:     Wed 23 Jul 2025 04:40:41 +0000
Manifest next update:     Wed 30 Jul 2025 04:40:41 +0000
Files and hashes:         1: tgQSzpgJwQxn3eq7oOM1462k_hA.crl (hash: 50bTMT2Zzg/NnZWXNA5/ADvr5V7Q3ajRlLqloL/jg7g=)
                          2: 3CED465E8E0811EE8450D961C4F9AE02.roa (hash: cZSiy4bCwDyhfeb/EZhFsCoqJYnevtXYXbg2+tmKMXk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl
                          rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 04:40:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 332 (0x14c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BF306, serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10
        Validity
            Not Before: Jul 23 04:40:41 2025 GMT
            Not After : Jul 30 04:40:41 2025 GMT
        Subject: CN=688067c9-0247
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:6b:2e:6a:c5:0d:b9:26:4f:75:61:66:e1:21:
                    bf:89:78:85:c4:64:c8:9a:20:85:1b:34:b6:68:74:
                    0b:6b:04:dd:ab:b6:e8:8e:4a:da:ab:7b:e3:9b:3c:
                    19:15:51:bd:6a:13:fa:fa:87:c2:71:94:b3:cb:cc:
                    e3:54:bc:9e:1a:87:a5:ab:26:39:11:f1:45:eb:73:
                    60:f5:de:08:37:29:b6:46:4a:47:f4:ca:f2:45:de:
                    c4:52:57:49:20:9f:31:0f:59:ff:3f:8e:4f:18:f7:
                    1f:5c:d7:b6:de:5c:c0:59:43:d3:59:3b:d2:b8:8c:
                    3f:ae:11:c8:f0:8d:cd:82:33:d2:03:43:58:03:08:
                    43:52:5b:30:fb:49:f7:b6:8f:97:3d:5b:02:bd:a2:
                    78:18:5e:6a:1f:79:b6:01:1d:a7:45:e7:43:2d:c2:
                    68:39:a4:75:ca:0b:a3:e8:59:b8:11:22:20:77:df:
                    94:19:85:34:63:3f:8f:a9:8a:d3:2e:7c:33:b7:2e:
                    8c:e6:fa:aa:e1:32:62:2b:fa:97:1a:e8:8b:00:7f:
                    38:05:92:d9:e4:22:42:85:af:5a:0a:5f:81:7e:5e:
                    dc:b3:39:1a:16:ce:67:05:0b:5d:cc:22:98:06:d4:
                    71:ea:be:72:d6:ad:fd:1c:87:3e:0d:19:fc:b0:64:
                    ee:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:6D:81:A1:9E:5A:D7:48:6B:2B:8E:C7:66:B4:0E:59:CC:54:C2:CC
            X509v3 Authority Key Identifier:
                keyid:B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:6b:bd:88:99:ac:d7:29:7d:41:3e:2d:9d:9d:26:96:8f:a0:
         c4:87:bc:1c:20:ad:cc:9d:42:c4:c6:7c:50:ec:6a:9d:1f:6d:
         e3:88:c9:16:79:7d:15:58:64:a4:28:fd:93:5d:97:f6:e2:07:
         8d:d0:9e:68:67:38:ad:3d:b0:87:a8:2b:b2:37:35:33:68:d8:
         03:d9:df:c7:68:5c:7e:72:f4:f9:c3:6e:57:4e:f8:dc:11:2c:
         94:49:82:47:95:04:d0:5a:15:30:33:fb:93:9a:ba:37:f2:e8:
         94:02:6a:a2:45:ba:24:03:06:da:08:f2:d1:b8:98:72:96:42:
         48:39:45:95:be:44:2b:33:ad:ba:4a:ea:95:8a:3b:62:04:2d:
         16:26:8e:a6:e3:20:9e:37:8a:86:fe:85:76:14:45:c8:c7:69:
         2c:d8:01:b2:dd:f2:25:ed:bd:02:13:86:51:df:69:6a:ca:29:
         20:bb:a5:73:53:4c:df:3a:98:05:9c:d2:83:1c:f6:4a:76:b7:
         4a:29:80:a8:57:20:1c:a7:3e:c4:7b:df:ac:4e:11:56:01:69:
         71:28:34:2b:82:41:b4:96:04:14:e4:31:a7:26:ed:c0:4b:42:
         f3:a1:b0:a3:02:93:1e:3d:b9:96:9b:62:58:f6:60:dc:5d:af:
         8b:03:27:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 05:03:59 2025 by rpki-client