Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C928D/61A1DF2E403211EEBDA5094AC4F9AE02/HmATrx-FZOqgCX2x8haHTEt4Zw4.mft
File:                     HmATrx-FZOqgCX2x8haHTEt4Zw4.mft (raw, json)
Hash identifier:          3M9GZZpn2m+mQwJkNBXWxWzqhikkKibhT98BVkrUfLI=
Subject key identifier:   11:63:E2:61:B6:63:D9:17:E7:08:27:3F:19:92:11:8F:0F:E2:1E:77
Authority key identifier: 1E:60:13:AF:1F:85:64:EA:A0:09:7D:B1:F2:16:87:4C:4B:78:67:0E
Certificate issuer:       /CN=A91C928D/serialNumber=1E6013AF1F8564EAA0097DB1F216874C4B78670E
Certificate serial:       016A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmATrx-FZOqgCX2x8haHTEt4Zw4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C928D/61A1DF2E403211EEBDA5094AC4F9AE02/HmATrx-FZOqgCX2x8haHTEt4Zw4.mft
Manifest number:          0167
Signing time:             Mon 21 Jul 2025 03:58:22 +0000
Manifest this update:     Mon 21 Jul 2025 03:58:22 +0000
Manifest next update:     Mon 28 Jul 2025 03:58:21 +0000
Files and hashes:         1: HmATrx-FZOqgCX2x8haHTEt4Zw4.crl (hash: PeBh7dalwx7NOkeOonhwPKW0Id+MxW7ULLjF+bx9K+Q=)
                          2: F1A4DAD6403211EEB47BF84AC4F9AE02.roa (hash: kMBmqA1/dyDv1ZADsMkGis7eLU/R9lLG3vYr3JHV36o=)
                          3: 1042D952157F11F0BA309342C4F9AE02.roa (hash: yui+zHagVlKqBtz9x/Tip9C5MuNKw1xwiJ1l2T37XAs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C928D/61A1DF2E403211EEBDA5094AC4F9AE02/HmATrx-FZOqgCX2x8haHTEt4Zw4.crl
                          rsync://rpki.apnic.net/member_repository/A91C928D/61A1DF2E403211EEBDA5094AC4F9AE02/HmATrx-FZOqgCX2x8haHTEt4Zw4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmATrx-FZOqgCX2x8haHTEt4Zw4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 03:58:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 362 (0x16a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C928D, serialNumber=1E6013AF1F8564EAA0097DB1F216874C4B78670E
        Validity
            Not Before: Jul 21 03:58:22 2025 GMT
            Not After : Jul 28 03:58:21 2025 GMT
        Subject: CN=687dbade-3e5f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:f3:59:9a:ec:e0:06:7e:17:b5:76:c2:15:5f:
                    8d:22:ad:24:5f:e5:0c:73:e0:b7:0c:22:e0:2f:49:
                    f7:b4:e4:6d:9e:68:f5:0a:d5:ab:3b:1d:cc:3d:45:
                    93:9b:cf:6f:d4:7f:af:54:5c:05:01:f1:db:02:98:
                    3b:23:d4:1f:a6:c1:63:76:d3:d3:60:e5:1b:49:29:
                    8b:40:db:76:6c:4a:28:3f:29:8d:e1:eb:ff:db:94:
                    1a:ee:c7:2e:a1:83:1a:17:7d:73:7d:05:89:bb:b7:
                    78:21:1f:38:8b:bc:91:63:4e:44:d8:b9:5b:ac:36:
                    09:20:5d:e7:5b:73:a8:f4:7d:69:01:37:17:68:f7:
                    0a:45:05:88:d3:d9:ce:49:c7:6c:13:37:91:db:31:
                    94:66:be:28:8d:b5:07:c4:e4:d8:b7:c8:5d:9a:1f:
                    4e:97:1d:fc:c0:45:64:e9:47:70:ef:43:67:00:aa:
                    17:d1:94:c7:01:52:b1:1d:ac:51:ec:e7:0c:6b:f9:
                    99:a4:b2:78:ab:5e:e6:69:d7:9a:9c:4e:01:d0:24:
                    37:cc:55:ee:49:5c:8e:b6:af:63:ea:6a:82:03:98:
                    2a:2b:73:64:2d:ff:79:ea:b5:02:73:d9:e9:33:91:
                    ef:df:b8:76:6e:04:2c:b6:5a:6b:f9:48:43:11:ef:
                    ae:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:63:E2:61:B6:63:D9:17:E7:08:27:3F:19:92:11:8F:0F:E2:1E:77
            X509v3 Authority Key Identifier:
                keyid:1E:60:13:AF:1F:85:64:EA:A0:09:7D:B1:F2:16:87:4C:4B:78:67:0E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C928D/61A1DF2E403211EEBDA5094AC4F9AE02/HmATrx-FZOqgCX2x8haHTEt4Zw4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmATrx-FZOqgCX2x8haHTEt4Zw4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C928D/61A1DF2E403211EEBDA5094AC4F9AE02/HmATrx-FZOqgCX2x8haHTEt4Zw4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:1e:9c:65:ab:91:35:ec:cc:13:d1:a9:42:10:b3:b1:f1:5d:
         b7:3a:d7:c3:9d:1b:ca:b8:10:66:09:35:5b:dc:92:81:55:10:
         13:2f:d8:ec:96:ee:d2:90:8b:09:e2:3d:ad:87:f2:36:0b:46:
         22:4a:cb:62:47:2b:a7:aa:29:67:cb:19:62:2c:58:d1:68:95:
         f7:b2:b7:b1:dd:54:26:39:c6:94:63:41:66:39:ee:43:2b:96:
         d8:c4:89:a3:4f:78:d3:f8:4d:1c:ef:39:34:df:25:58:d9:46:
         cb:67:1f:07:dc:17:24:dd:45:2a:de:f6:3c:c1:6e:63:da:85:
         fb:ea:2c:6a:5e:1a:bd:09:1e:38:82:3e:56:d5:54:a2:09:2b:
         a4:17:b0:6f:3a:3e:db:14:51:43:ba:16:4a:2a:ec:2e:a8:10:
         71:3d:70:08:7f:64:94:ea:6b:29:26:71:ae:cf:6c:05:aa:4d:
         49:7c:84:1e:45:92:f5:89:65:36:08:81:13:ea:de:d4:9a:42:
         fc:95:14:80:a1:8c:cd:27:e5:fd:5d:82:48:17:ae:8d:25:71:
         05:ea:e6:18:f1:96:08:c1:81:f9:25:da:e3:43:20:a9:fc:05:
         24:ee:87:e6:27:69:4e:dd:e4:bd:bf:02:5e:9a:86:62:41:94:
         92:39:bb:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 05:57:09 2025 by rpki-client