Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft
File:                     s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json)
Hash identifier:          4+tDef55x+TJXuCYtmVrQ0QxsgZjlwsx6yVuMOP3tAc=
Subject key identifier:   60:56:C4:32:C0:0F:23:F9:CB:3E:55:86:AE:87:83:E2:FC:13:91:6E
Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46
Certificate issuer:       /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546
Certificate serial:       0AFA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft
Manifest number:          0AF3
Signing time:             Tue 22 Jul 2025 19:37:33 +0000
Manifest this update:     Tue 22 Jul 2025 19:37:33 +0000
Manifest next update:     Tue 29 Jul 2025 19:37:33 +0000
Files and hashes:         1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: br4NI1yEi5j4jiwyiZijUIU+ZTyjwRbcFm3SH1MWk7k=)
                          2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: j/OpYEtDuYk8PfhysOsvn+uhuepZ3xGdAVnmL79tUAw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl
                          rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 19:37:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2810 (0xafa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E12AD, serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546
        Validity
            Not Before: Jul 22 19:37:33 2025 GMT
            Not After : Jul 29 19:37:33 2025 GMT
        Subject: CN=687fe87d-694c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:52:36:58:4e:fd:85:1c:a8:b2:3c:c5:7e:97:
                    0c:73:47:75:44:8d:82:1f:80:b7:55:81:f5:f9:0f:
                    51:92:96:fa:8a:ac:b1:6e:15:f0:ad:6d:36:49:be:
                    cd:b6:dd:f3:24:0c:f1:e6:f6:71:b5:7e:bd:7d:60:
                    21:93:fc:6b:f3:a8:e7:b1:a0:c8:b5:d0:b6:3e:2a:
                    c0:c8:47:39:49:1e:bd:9d:c4:47:75:c7:31:42:0e:
                    f9:f0:9b:63:04:d2:be:e8:1b:5c:91:de:48:ca:45:
                    e6:d7:2b:6e:18:be:c7:61:7b:6e:7d:a8:21:12:8e:
                    95:2c:c9:cd:af:c3:ac:99:34:04:8e:4c:00:61:c9:
                    6c:32:43:85:38:d0:5f:7e:4e:20:f0:81:64:07:3d:
                    90:b4:4a:16:c0:96:b9:b1:cc:da:b5:6a:20:87:b3:
                    36:a4:a2:d8:8a:19:74:8f:0e:d7:01:5a:e2:a1:4b:
                    4a:c8:a9:cd:65:31:0d:08:ad:19:b1:09:67:0e:36:
                    b7:d7:0c:8f:b7:40:ce:77:c7:d7:1a:21:15:34:c0:
                    69:ff:6a:fd:b0:d0:5b:aa:fc:0e:e4:5a:eb:61:47:
                    8d:81:ed:24:cc:55:84:a5:4e:a5:3d:b8:51:d1:d0:
                    f0:07:86:b8:66:e3:22:3e:83:6c:45:b9:d9:cc:bd:
                    fc:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:56:C4:32:C0:0F:23:F9:CB:3E:55:86:AE:87:83:E2:FC:13:91:6E
            X509v3 Authority Key Identifier:
                keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b1:98:41:30:02:83:20:f2:c3:f4:4a:9c:74:9b:73:cd:28:3c:
         56:9c:dd:fa:fa:50:32:f6:16:43:c6:e0:77:d2:9b:e3:86:d5:
         e0:b9:df:82:b8:15:7c:8f:7b:f0:38:1d:19:1c:9d:ba:93:10:
         64:44:c1:d5:7d:9b:50:b0:dd:66:f9:58:34:81:ad:89:b8:73:
         8a:80:51:57:90:86:f7:ba:1a:a5:15:92:3a:34:f0:ce:6f:d7:
         e4:a0:30:84:0f:dc:b8:c5:16:9e:88:5f:a9:bc:2f:7e:49:65:
         4b:29:e0:80:60:e4:9e:1d:41:2b:c5:42:9f:fa:90:53:55:f1:
         aa:db:6c:35:9a:1d:16:e3:81:88:94:40:eb:0c:8c:c5:53:e9:
         d3:11:53:70:5c:d3:60:e4:d4:e8:01:e2:d9:96:73:60:d4:23:
         19:06:0c:dd:4a:9a:3c:f9:91:90:98:d9:25:82:d9:b9:31:2a:
         5c:8c:75:06:ad:a8:ee:a5:7f:2f:62:2a:55:14:1e:92:04:ea:
         4b:76:a6:e2:36:5b:9b:98:72:64:29:3f:91:ac:59:36:b7:73:
         32:ad:51:d1:68:e4:9e:b4:7a:19:07:d5:5a:82:08:7b:d7:e2:
         9f:06:2f:41:6c:98:ed:01:15:05:20:09:46:bb:c0:c6:ec:61:
         a3:bc:86:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:17:02 2025 by rpki-client