Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft
File:                     TAYxLToLHGP1R9TWRXxM1a9xQ80.mft (raw, json)
Hash identifier:          3ArkhOKROu2G+IDfGY/tXaRGZkqa1VrML9e41ZTWiUQ=
Subject key identifier:   3E:7B:40:40:41:FF:C2:91:BC:2D:C8:94:F0:A3:E3:0D:F2:53:D7:E2
Authority key identifier: 4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD
Certificate issuer:       /CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD
Certificate serial:       0456
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft
Manifest number:          0452
Signing time:             Wed 23 Jul 2025 00:38:35 +0000
Manifest this update:     Wed 23 Jul 2025 00:38:35 +0000
Manifest next update:     Wed 30 Jul 2025 00:38:35 +0000
Files and hashes:         1: TAYxLToLHGP1R9TWRXxM1a9xQ80.crl (hash: LtV16UFbFjolCj2a7MTORbfqdd48J6H2z0sQXPi7rLM=)
                          2: 09C2A1645A3511ED8F0A3087C4F9AE02.roa (hash: RiGNiFnNAoJRKUyYrUN1wLZV9I9idQnh7FmtgNq/Suc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl
                          rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 00:38:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1110 (0x456)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E0EF2, serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD
        Validity
            Not Before: Jul 23 00:38:35 2025 GMT
            Not After : Jul 30 00:38:35 2025 GMT
        Subject: CN=68802f0b-7660
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:e1:a6:72:20:44:ba:91:30:d9:8e:92:4f:74:
                    bd:ac:cf:64:6a:1e:4c:84:fa:30:1b:7e:5a:35:a0:
                    5f:03:1a:cb:e8:e3:d7:c2:2f:97:08:4b:3c:ee:7c:
                    c5:f3:28:54:4a:ba:29:ca:a2:e6:5a:7b:ba:f0:b1:
                    7b:e0:87:06:26:eb:20:29:99:83:69:71:52:c5:79:
                    dc:8c:a8:7b:5b:88:68:a3:e8:b1:de:25:52:9c:c7:
                    4f:b1:0c:a6:e5:0f:fd:f0:84:d4:00:82:13:3a:95:
                    a3:1d:d3:56:25:ef:3b:6b:8d:10:a5:c7:48:ff:f9:
                    c5:3f:8f:47:8f:c7:37:76:92:b2:eb:41:96:a8:ff:
                    0a:c0:21:2d:f5:08:86:0e:be:df:79:44:6f:b4:68:
                    6a:d4:3d:56:08:03:39:46:c8:e1:f2:0c:55:99:7a:
                    2d:07:4d:7d:f4:24:05:5e:9c:c9:70:e8:08:40:cd:
                    56:38:e9:aa:86:1b:ca:fd:45:e8:9d:89:47:2a:38:
                    39:d6:7e:3f:33:42:80:cc:16:f7:5c:ff:94:63:1c:
                    e7:22:57:ff:d7:33:4c:f4:2f:9b:77:e6:e5:7e:8a:
                    64:a7:6b:f0:65:4b:2d:dc:30:8c:53:48:72:07:a9:
                    04:e1:e1:ea:6f:e5:7c:94:10:ca:40:fa:0e:c6:69:
                    86:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3E:7B:40:40:41:FF:C2:91:BC:2D:C8:94:F0:A3:E3:0D:F2:53:D7:E2
            X509v3 Authority Key Identifier:
                keyid:4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:f5:68:3b:62:ed:c4:cf:8f:9f:6e:14:9e:a1:3a:cb:41:77:
         b7:39:75:62:11:2e:1b:ce:cf:93:df:8d:84:32:44:d8:93:35:
         21:58:82:6c:d3:b3:1c:e5:df:a4:79:55:a7:68:68:f8:a5:76:
         d4:43:e8:f2:ae:7f:fd:03:11:a7:03:af:41:59:93:4a:89:c5:
         5b:5e:c1:6e:49:45:eb:2c:31:be:de:1c:4a:63:73:89:ab:0a:
         a7:fa:c6:61:23:57:8d:8b:52:4f:a7:43:b3:c6:b2:6d:d7:9f:
         8d:c6:84:5e:eb:eb:7c:d0:bc:5d:c3:e0:73:97:0b:dc:40:ca:
         7f:20:7f:b9:da:02:a3:5f:2b:22:8a:e0:84:0e:a0:29:ad:f7:
         01:65:de:65:38:33:28:32:bc:ac:8b:99:98:42:b9:e1:42:47:
         cf:4e:dd:0d:cc:76:dd:1d:3f:ab:f2:54:5b:5f:87:69:9a:e5:
         30:bd:7e:19:95:bd:58:a1:8c:a4:38:a8:44:31:9b:d3:1a:bd:
         16:24:2e:68:38:fc:62:28:c8:19:98:4b:8a:ea:6b:f6:bf:02:
         7f:af:c2:34:e6:db:93:cc:1e:33:42:cd:59:f6:79:9e:8f:8d:
         34:eb:88:ea:a7:36:ac:24:99:71:c6:fd:c7:f7:ec:63:61:ac:
         58:04:7b:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:16:49 2025 by rpki-client