Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft
File:                     kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json)
Hash identifier:          fq8MvOVddMibEUOXox/WtCsR/c4BjI2nrx5RbbeEUkY=
Subject key identifier:   EE:5D:20:62:78:FF:95:D9:78:F7:D3:60:99:A6:C6:FD:BC:BA:90:34
Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28
Certificate issuer:       /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28
Certificate serial:       0381
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft
Manifest number:          0377
Signing time:             Fri 25 Jul 2025 01:17:36 +0000
Manifest this update:     Fri 25 Jul 2025 01:17:36 +0000
Manifest next update:     Fri 01 Aug 2025 01:17:36 +0000
Files and hashes:         1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: bCNkOervzCFyZKqQR+bdwvxvr6JOATX3o2zcW64Vbgw=)
                          2: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: xHLevAzZuis8NnrBHZLDJf2yx7IF05dGBA1riYkWutY=)
                          3: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: /NRpEcDAXrkS/YDBwDOng+rHtIrpT7sCWxlP3Tbbtb4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl
                          rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 01:17:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 897 (0x381)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C2875, serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28
        Validity
            Not Before: Jul 25 01:17:36 2025 GMT
            Not After : Aug  1 01:17:36 2025 GMT
        Subject: CN=6882db30-839a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:eb:dd:4c:d7:ce:6d:0f:ac:a0:c8:71:5d:3f:
                    f1:cd:5f:79:bd:04:f8:21:03:da:6b:8a:24:d0:96:
                    ee:47:82:0a:52:8c:71:dc:72:c1:1b:c2:ca:d1:63:
                    76:2b:79:d6:ad:5a:6b:81:37:36:ee:4b:ba:07:83:
                    34:6c:b1:e5:e8:42:05:17:29:48:59:e9:19:73:6b:
                    10:64:b8:20:86:d2:b3:c5:5e:9b:f0:b7:e8:4c:76:
                    a7:52:91:f2:37:1c:6a:c8:ce:8e:ee:3f:31:b4:7d:
                    ca:37:8d:2c:42:0e:9e:41:7f:f3:f2:f3:1e:78:4c:
                    eb:8e:40:ba:42:3e:ae:8a:2d:64:e6:69:55:56:e8:
                    11:e2:5f:7c:96:6f:4d:1f:df:2a:32:c7:32:a8:b3:
                    9d:c1:b2:af:ab:3d:30:0b:9d:66:00:fe:a1:9c:df:
                    8f:b8:54:d2:ae:32:d1:89:e7:c8:d7:19:77:de:22:
                    48:c4:72:dc:80:8d:b0:d5:6f:11:d8:da:dc:eb:fb:
                    9a:de:b4:d2:10:8e:a9:7f:62:1d:c7:25:93:d7:e8:
                    ae:01:34:d3:0d:3b:70:b4:a2:4a:3b:1b:60:c9:6b:
                    ae:8b:dc:37:ff:dc:95:c3:cc:d8:2b:b2:28:a7:99:
                    63:b1:63:b5:11:25:53:5c:8d:f4:58:6a:c8:04:ef:
                    35:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:5D:20:62:78:FF:95:D9:78:F7:D3:60:99:A6:C6:FD:BC:BA:90:34
            X509v3 Authority Key Identifier:
                keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a3:13:3d:91:9a:af:20:e7:3d:81:05:ac:42:0b:31:32:bf:c4:
         8a:21:7a:ca:45:c8:73:2d:6c:12:5a:64:d5:c1:bb:5d:8c:c7:
         b0:68:b3:87:2c:5c:a0:7a:f5:78:3c:09:62:68:97:8e:4f:ec:
         78:5d:8e:43:3a:2a:58:33:c5:dc:14:58:f2:a8:99:a2:04:92:
         89:db:22:30:16:d4:83:fe:66:a0:4a:c4:84:e0:b8:c8:86:2e:
         81:73:70:d8:ca:ce:c7:91:db:1c:14:b6:1c:05:01:de:49:20:
         d1:41:e2:22:7e:49:5e:1a:ed:4d:c9:4a:d2:c0:7e:c5:2b:56:
         12:fb:5b:d9:95:5f:0e:3f:41:e5:fd:eb:1a:46:6c:ee:f6:61:
         32:98:35:16:32:67:bc:be:27:6b:14:7b:d9:d5:18:85:15:d2:
         6c:21:db:dd:18:b0:45:6c:93:dc:93:b9:3d:09:8d:98:54:ca:
         0d:31:c6:57:67:f8:14:cb:af:cc:f3:f2:42:42:ae:38:0f:32:
         39:45:ec:8e:2d:90:8a:e8:1a:a3:be:51:6a:0b:c7:96:e6:08:
         b3:31:77:0f:14:14:04:98:49:dd:ee:2e:7e:b3:9f:2b:00:0a:
         ec:45:8d:71:73:b5:c0:85:01:25:c9:13:36:69:8a:d6:b3:8e:
         aa:7a:93:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 12:08:13 2025 by rpki-client