Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft
File:                     d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft (raw, json)
Hash identifier:          hyJMCeC53Qb/t+XBV3OtBS6J8f6U6v0kvPFnRIt6+Io=
Subject key identifier:   60:76:61:79:7B:02:4D:12:6C:D6:5D:69:C4:42:C4:45:13:3F:BA:C7
Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92
Certificate issuer:       /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892
Certificate serial:       0465
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft
Manifest number:          043D
Signing time:             Sat 19 Jul 2025 00:45:09 +0000
Manifest this update:     Sat 19 Jul 2025 00:45:08 +0000
Manifest next update:     Sat 26 Jul 2025 00:45:08 +0000
Files and hashes:         1: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl (hash: dk6QZD038Ro/QnVL5Lq7Vm8d/VmsOXymShsD9/0UXJI=)
                          2: EEECC55A8C3611EFA07E612DC4F9AE02.roa (hash: S448nKM+pkzyKAVAq+QLZ6c2Rwj7lMGOSqjzi17yKYo=)
                          3: 216DB034DE9711EC9289256FC4F9AE02.roa (hash: +Y2vKS8CZ7xVCXV7DmrOc6o0OVVkIHves16LK2wsX2I=)
                          4: 204E25DADE9711EC9289256FC4F9AE02.roa (hash: Nm0NB5K/NvPqifGuFp/i7DvZfN/unt+xIyxa1mf1Ru8=)
                          5: E184C6F48F2C11EEA361B22FC4F9AE02.roa (hash: m7hFb23btwRa7iUoc5sSfQwuK6EzzQbsJrT19RdsUzA=)
                          6: 1FBEA1EEDE9711EC9289256FC4F9AE02.roa (hash: wFyDTsNGRzgAv8mhqHHalbGpjw+H79Gqqrm8IklHVfE=)
                          7: E0C5B7148F2C11EEA361B22FC4F9AE02.roa (hash: Aqyl2hhEx5BpBctkE5rWM8Kv0ZDOqQAIfUrt5yWaYks=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl
                          rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 26 Jul 2025 00:45:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1125 (0x465)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DEB81, serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892
        Validity
            Not Before: Jul 19 00:45:08 2025 GMT
            Not After : Jul 26 00:45:08 2025 GMT
        Subject: CN=687aea95-d4b1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:d0:f0:81:2b:93:13:c5:09:99:7e:9a:0d:a3:
                    e6:e9:1c:1a:4a:92:e8:56:74:b0:df:fa:7c:57:92:
                    42:f6:9c:04:42:58:ba:64:ba:cb:b0:8f:7e:4b:6d:
                    f2:4e:ab:7e:08:b1:50:29:c6:14:55:41:c4:6c:ff:
                    8c:a2:cf:31:29:3c:e1:0d:63:09:d3:cc:a8:7e:07:
                    83:95:02:29:66:7c:1f:69:3b:9c:42:69:88:e7:9d:
                    29:67:a9:c7:34:f4:f6:aa:a8:6e:75:70:5e:98:fe:
                    44:40:8c:69:80:d7:38:43:4e:54:25:14:87:5e:0c:
                    bc:d7:97:7f:40:de:ea:9a:af:3a:92:c2:61:2a:b4:
                    1d:2c:7a:3c:a5:d8:f0:4e:86:1f:d1:60:13:55:96:
                    98:34:4b:54:31:85:7d:82:49:16:82:09:32:97:56:
                    eb:29:09:f5:03:48:ec:2b:62:70:df:5f:22:6f:c1:
                    d0:a0:e5:fa:b9:5c:33:19:8f:57:aa:c4:3b:72:84:
                    52:e5:f5:f4:4b:52:7c:f3:97:5c:09:5d:3d:13:fa:
                    dd:98:88:69:81:36:89:46:20:99:19:93:66:37:d0:
                    d9:e8:ff:f5:04:a7:c8:66:33:b3:7e:77:cc:f5:f8:
                    51:03:84:7a:0e:c0:d8:5b:5b:d4:79:8a:36:79:35:
                    0b:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:76:61:79:7B:02:4D:12:6C:D6:5D:69:C4:42:C4:45:13:3F:BA:C7
            X509v3 Authority Key Identifier:
                keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b5:2d:a2:61:b9:95:48:08:6d:39:d0:33:5c:c7:2a:7c:97:3d:
         52:0c:2d:28:a2:31:0a:20:f8:5e:df:fd:20:9c:70:a4:72:89:
         ef:8e:82:aa:e2:8e:07:09:d5:d2:4d:39:44:73:00:03:91:61:
         05:3c:3c:fd:f8:c8:b1:2b:78:9e:b1:e2:c5:7a:31:76:17:05:
         d7:84:c9:b1:6b:c0:0a:3e:82:05:ca:27:91:9f:00:74:09:20:
         bc:d8:33:22:15:f5:d1:b3:52:28:80:4f:17:f6:7e:15:ed:76:
         f0:f7:30:4b:df:82:39:cd:1a:fc:7c:11:39:ae:0d:34:ac:57:
         77:82:b2:f4:ca:88:4e:e4:cb:55:2e:60:1c:20:4d:e4:f2:60:
         18:7a:7e:10:cb:29:37:8d:ef:57:01:47:84:9c:c0:4e:d3:c2:
         11:f8:42:a0:0b:90:04:d6:03:2c:93:14:35:ac:6b:35:35:9f:
         b7:84:46:71:a6:b8:75:e0:e1:08:74:4b:36:b3:25:2c:9d:8b:
         2f:0d:36:4d:16:69:d9:da:a7:7a:58:bb:a0:32:8d:94:d5:29:
         98:c6:5d:fb:86:e5:4f:52:47:f5:75:1d:9a:e7:16:62:b4:e2:
         b0:26:6d:07:cb:5e:23:d9:9b:1b:ea:33:77:fc:11:f9:e6:68:
         0a:92:63:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 06:33:52 2025 by rpki-client