Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft
File:                     7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft (raw, json)
Hash identifier:          KUXCw2evkblm0mm1Vay0OkZc9ShiMBS8GBCqF8VoaXQ=
Subject key identifier:   0C:9D:34:EB:62:83:21:C3:50:57:8E:B3:4A:D7:39:99:28:46:6E:D4
Authority key identifier: EE:FD:3E:86:AF:74:F9:48:34:64:01:6B:93:4F:C3:EF:14:C8:2D:46
Certificate issuer:       /CN=A91C0FF9/serialNumber=EEFD3E86AF74F9483464016B934FC3EF14C82D46
Certificate serial:       0685
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v0-hq90-Ug0ZAFrk0_D7xTILUY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft
Manifest number:          067F
Signing time:             Fri 18 Jul 2025 22:39:15 +0000
Manifest this update:     Fri 18 Jul 2025 22:39:15 +0000
Manifest next update:     Fri 25 Jul 2025 22:39:15 +0000
Files and hashes:         1: 7v0-hq90-Ug0ZAFrk0_D7xTILUY.crl (hash: 2tW/bEppGjE5/a1s7R/5g5YpKPeAaPtgnEe2FYfaIMQ=)
                          2: 98536A8A8D1811EBA3DEC15BC4F9AE02.roa (hash: GZC1H6bkYz3KSM38VOTZVhfdcChKVhr9TmELY8NJ80g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.crl
                          rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v0-hq90-Ug0ZAFrk0_D7xTILUY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 25 Jul 2025 22:39:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1669 (0x685)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C0FF9, serialNumber=EEFD3E86AF74F9483464016B934FC3EF14C82D46
        Validity
            Not Before: Jul 18 22:39:15 2025 GMT
            Not After : Jul 25 22:39:15 2025 GMT
        Subject: CN=687acd13-5aa3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:41:1b:7a:05:81:61:69:15:08:34:bb:41:ca:
                    b0:57:a9:fd:59:6c:84:3c:38:c3:41:d1:79:5b:18:
                    4e:a4:b7:ff:17:0c:c6:5c:0c:5c:93:b9:2d:69:6c:
                    ca:d6:57:95:16:3f:26:4b:ab:5e:bc:13:ad:58:81:
                    8d:6e:15:bb:1a:15:17:bf:24:bf:1b:6e:be:61:97:
                    4a:9c:f8:6a:2e:63:2e:8b:ae:69:a5:5a:ec:be:1e:
                    e4:b8:d8:06:b5:ca:35:63:a4:b7:8a:81:51:33:91:
                    3a:94:9c:c6:b2:21:05:89:20:42:05:65:84:11:4d:
                    4b:97:16:e3:1d:d7:97:3a:b3:fd:dd:a8:26:9b:60:
                    9b:75:08:b1:a6:6d:d4:d1:ae:08:b3:18:55:df:68:
                    91:f6:5d:99:35:9a:87:11:36:7c:8a:10:81:a0:02:
                    53:18:eb:e7:59:c2:c9:19:36:ec:40:c1:2b:ff:a8:
                    05:19:fd:1f:8d:64:1d:33:6f:79:b2:89:0f:94:2e:
                    44:5d:30:95:1a:cf:44:0e:b4:e5:19:fd:b1:fb:ef:
                    b0:cf:4c:16:b4:ad:41:12:79:2c:f8:29:0d:5b:dc:
                    a4:34:2f:36:90:16:86:56:7b:a6:71:0f:b3:56:6c:
                    8a:fd:a9:bc:e2:75:b2:68:4a:0d:80:4b:9d:b0:b8:
                    de:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0C:9D:34:EB:62:83:21:C3:50:57:8E:B3:4A:D7:39:99:28:46:6E:D4
            X509v3 Authority Key Identifier:
                keyid:EE:FD:3E:86:AF:74:F9:48:34:64:01:6B:93:4F:C3:EF:14:C8:2D:46

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v0-hq90-Ug0ZAFrk0_D7xTILUY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:65:3a:75:64:1c:5a:dc:da:3b:fe:bd:6b:04:74:2a:cf:8d:
         0e:b8:64:74:c7:a7:f8:3e:8c:98:58:2d:79:f9:77:0c:0f:cb:
         a5:3c:1c:b9:4b:2d:e5:1a:eb:58:ca:93:77:88:14:9e:3b:21:
         96:9a:d7:3e:93:fc:39:fd:ca:e1:2a:5b:44:16:8a:6f:ce:2e:
         56:66:2f:ff:4f:71:9e:fd:15:d4:94:0a:95:8d:c1:63:47:73:
         82:e4:9e:24:6d:c8:c4:c2:f1:bf:08:75:c9:37:1a:f5:f4:09:
         85:53:32:9e:07:ef:5c:90:d4:40:2b:f6:86:52:05:2c:f0:23:
         6c:87:32:1f:06:1f:a0:4a:9d:ab:61:df:14:73:03:1d:b7:be:
         4b:56:1f:30:d7:81:86:e7:fa:89:7f:8d:44:a0:a9:36:9f:f8:
         cd:5e:4b:48:29:33:18:af:e6:9e:00:1b:d7:91:18:dd:cd:0e:
         87:0e:6d:73:22:cc:f6:a5:b4:7a:fa:89:da:08:94:2f:2f:df:
         76:3d:8c:ec:84:9e:20:49:3b:0a:38:4a:13:ac:5e:13:35:d4:
         cc:0e:be:1c:94:4e:90:bb:3d:54:b8:72:6b:f4:16:62:2c:41:
         16:c5:88:e0:3f:65:0a:06:65:9d:1d:f2:d9:9b:27:0c:18:f4:
         37:d6:00:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 21:56:29 2025 by rpki-client