Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft
File:                     TAYxLToLHGP1R9TWRXxM1a9xQ80.mft (raw, json)
Hash identifier:          s082FB0Ok8+QdZO4tVN0rb0iJ6qaH6srZktZ3TP8EhE=
Subject key identifier:   51:2F:8F:09:19:D0:4A:FB:6A:F1:82:3D:3C:AF:F2:48:B2:5F:5C:E3
Authority key identifier: 4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD
Certificate issuer:       /CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD
Certificate serial:       0457
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft
Manifest number:          0453
Signing time:             Fri 25 Jul 2025 00:36:40 +0000
Manifest this update:     Fri 25 Jul 2025 00:36:40 +0000
Manifest next update:     Fri 01 Aug 2025 00:36:40 +0000
Files and hashes:         1: TAYxLToLHGP1R9TWRXxM1a9xQ80.crl (hash: tJUGw4a9/qhumbhGoav1e3YtW4s+2BnznWVRWZKAq7U=)
                          2: 09C2A1645A3511ED8F0A3087C4F9AE02.roa (hash: RiGNiFnNAoJRKUyYrUN1wLZV9I9idQnh7FmtgNq/Suc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl
                          rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 00:36:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1111 (0x457)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E0EF2, serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD
        Validity
            Not Before: Jul 25 00:36:40 2025 GMT
            Not After : Aug  1 00:36:40 2025 GMT
        Subject: CN=6882d198-260c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:e5:94:b8:0f:84:67:8f:c4:55:34:a9:59:1c:
                    c9:69:d4:27:f6:61:cc:88:f3:64:3f:d8:c7:53:01:
                    f7:5a:97:b8:69:ba:da:34:78:1e:f6:21:79:f2:fd:
                    1b:fb:d2:58:04:f5:bb:93:98:4d:fa:d6:27:9f:9c:
                    24:1c:6b:0b:71:52:da:d4:67:42:25:ff:f4:d2:95:
                    e9:4b:2b:96:ac:66:d2:10:a2:cb:b9:00:f6:51:ac:
                    ea:54:53:4a:d0:6a:17:23:64:11:ee:a3:3c:4a:3b:
                    c6:1f:d4:18:cb:bc:ca:c8:72:31:65:0a:3f:21:7b:
                    88:c3:bb:9e:26:3d:a6:ca:d9:ae:56:bc:dd:23:d3:
                    eb:41:da:f1:63:53:41:6c:73:ba:c8:37:b9:c3:7e:
                    37:34:e6:6b:9d:9f:40:84:67:da:d2:92:bd:df:df:
                    20:ab:9c:1c:6a:8d:78:1d:68:e8:3d:ee:73:b7:c5:
                    32:57:aa:cb:84:fc:23:ce:e5:cf:4e:b4:34:d6:a2:
                    43:8f:9d:c7:55:48:b0:dd:a4:3a:3a:a5:f2:3d:ef:
                    b6:60:fb:75:c7:c3:ce:66:e8:3d:95:69:5c:46:91:
                    59:34:c5:18:db:b6:c1:8b:5c:b6:99:e4:b5:3d:9a:
                    1c:85:c7:b5:1b:67:ec:d1:61:01:56:75:16:b5:4e:
                    d3:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:2F:8F:09:19:D0:4A:FB:6A:F1:82:3D:3C:AF:F2:48:B2:5F:5C:E3
            X509v3 Authority Key Identifier:
                keyid:4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:29:16:76:11:2a:17:69:d5:56:da:7c:ab:b8:ce:df:3e:9a:
         50:75:10:0d:50:f8:ba:5e:02:9c:29:05:95:2f:44:8b:00:40:
         2f:e8:20:53:75:fb:69:fd:0b:3e:7a:d1:25:e2:57:d0:46:22:
         29:63:8a:3c:cd:6d:f3:cf:9e:10:91:64:fd:1d:8f:25:c6:5a:
         75:8c:73:9d:c3:47:da:7a:89:0b:43:0d:3c:b7:4d:73:59:b6:
         72:eb:99:e8:ab:22:8b:37:61:8c:8e:4f:58:d5:34:e9:75:23:
         73:7c:55:91:31:5b:9c:0f:86:33:e9:47:13:a5:df:b5:29:a8:
         58:fb:ce:c4:c7:6b:57:17:9f:3b:e7:1d:6a:62:a6:7a:39:4e:
         9d:53:ba:c8:e1:13:31:d7:6d:30:1c:87:ea:ed:98:d9:e8:12:
         0a:a2:87:53:0e:e3:50:da:c9:3f:b4:0c:5b:5e:21:54:7e:aa:
         5d:fe:27:ff:37:02:d5:71:71:09:05:4c:0a:74:47:5a:7f:b2:
         61:4c:a0:98:08:19:9c:3a:af:e9:a3:cd:15:18:17:52:27:d1:
         60:3c:25:a8:6c:c6:98:84:3a:5b:3e:bd:3b:f4:08:7c:45:32:
         c5:d1:ba:65:a3:60:91:df:1c:d2:b6:8a:9c:c8:25:ba:aa:8f:
         03:86:2a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 07:04:16 2025 by rpki-client