Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft
File:                     xvdY7N3EybD3LwZcNa1UaXQycRs.mft (raw, json)
Hash identifier:          +7gvRh8SrRMiztVLk+UMwC8eMD/HQFjjB3XvPG97Ncs=
Subject key identifier:   C4:43:F6:5D:A4:F8:8B:F0:92:BA:E8:6B:E6:3D:BC:23:33:18:90:8F
Authority key identifier: C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B
Certificate issuer:       /CN=A91E8DF5/serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B
Certificate serial:       56
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft
Manifest number:          4D
Signing time:             Wed 23 Jul 2025 07:42:48 +0000
Manifest this update:     Wed 23 Jul 2025 07:42:48 +0000
Manifest next update:     Wed 30 Jul 2025 07:42:48 +0000
Files and hashes:         1: xvdY7N3EybD3LwZcNa1UaXQycRs.crl (hash: Y0Yrhdhn2YVZyyc0jE0/TuOf0VDW5Jo5s4S+nCcZm9c=)
                          2: 8F9B067EF96011EF89D9E37DC4F9AE02.roa (hash: C4f1DGgr88zvtZI01sEk4X9+P0XVPyTaQ0X1w0t3gJE=)
                          3: 8F350932F96011EF89D9E37DC4F9AE02.roa (hash: EiButkFaJmxH2f9GmfvH+3lmi0BQDdaX71kUaJ4cIPE=)
                          4: 8EB1E9BCF96011EF89D9E37DC4F9AE02.roa (hash: ckgf3xD+pqJNwNoVSxIFNqkicDtbDleG9nDMcEDte9Q=)
                          5: 917D3A184BED11F0A2F7CC21C4F9AE02.roa (hash: IYpTiwoDdKk+DKwv65zZ7BTxOeFfDIMdePJWFd5JpGE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl
                          rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 07:42:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 86 (0x56)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E8DF5, serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B
        Validity
            Not Before: Jul 23 07:42:48 2025 GMT
            Not After : Jul 30 07:42:48 2025 GMT
        Subject: CN=68809278-67c6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:5a:f8:8a:00:9d:52:69:6e:fe:fd:f8:f4:f7:
                    24:a8:84:3c:32:a9:66:98:74:ac:4f:9e:7e:c3:15:
                    a8:20:3f:07:f9:53:ea:9d:64:8d:91:2e:23:1a:e2:
                    dc:f5:b6:bf:21:8a:9f:29:6a:78:e8:05:f2:6d:b0:
                    71:8a:40:31:01:e1:b3:9a:6e:94:fc:73:5e:73:2d:
                    bf:26:5f:03:b7:17:c9:f5:73:8d:8d:3c:07:9c:0c:
                    c6:d1:86:17:67:4d:13:cf:18:8e:24:f4:4b:39:e0:
                    1d:62:12:4b:db:a5:75:d0:3b:63:85:00:cf:bc:b3:
                    21:89:8a:6d:f6:cb:8c:ee:35:2c:25:8e:95:7f:22:
                    0c:b7:b6:e6:84:50:9e:ed:a6:2e:c4:08:f1:1a:fb:
                    8a:2a:84:4c:f5:ec:e5:83:6e:d7:5f:32:43:b4:26:
                    8d:8b:b3:f4:2e:0d:98:93:be:76:9d:0c:78:65:a4:
                    c5:84:5c:c0:c3:5c:0d:25:d6:9c:81:a4:2f:c8:56:
                    ba:2b:f8:03:4c:c3:25:20:ee:77:5f:e6:36:58:7c:
                    dd:f3:0c:7e:85:0a:ac:88:3c:6d:cb:be:fd:1d:e0:
                    80:76:2d:60:fd:24:9c:05:89:f2:3d:d7:af:30:7b:
                    b6:db:3e:14:0c:96:fb:ac:cf:7f:cc:54:0b:7e:74:
                    f6:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:43:F6:5D:A4:F8:8B:F0:92:BA:E8:6B:E6:3D:BC:23:33:18:90:8F
            X509v3 Authority Key Identifier:
                keyid:C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:3e:30:fc:b7:fc:a6:b8:5b:ff:2d:16:86:23:bc:da:98:c5:
         51:03:06:5f:26:8b:9b:51:e5:2d:e3:33:57:e4:a4:95:37:eb:
         90:ad:e5:8b:a5:3d:73:f0:bf:14:9e:33:d4:08:cb:7d:91:8e:
         a2:c0:78:ea:8b:bd:58:d1:af:4f:7a:56:82:65:f0:41:01:a1:
         85:50:e7:58:05:cd:36:f4:80:d0:27:23:9c:ef:8a:bc:43:ea:
         8a:2a:9b:41:da:44:26:6e:c7:31:35:f1:a5:8a:b2:bd:f1:9b:
         95:59:98:a0:54:54:5b:b9:68:54:5f:20:ab:33:90:6a:9a:75:
         ec:9c:fb:25:fc:73:fe:89:e2:16:b1:00:04:da:fe:ca:50:8a:
         21:9e:da:b9:7d:13:24:00:85:f5:7c:d3:0e:80:28:79:1a:4b:
         0f:cf:de:c6:d0:c1:4c:03:6b:c1:19:74:99:b9:e1:52:d8:ac:
         16:72:a2:9a:3c:48:47:c2:6a:49:0a:8a:ac:17:20:17:4b:8e:
         ad:95:f4:d4:93:af:34:9d:d8:1c:0c:2f:49:10:a6:c9:43:0d:
         5d:7d:95:09:94:a1:7d:cc:36:e1:75:99:a3:59:53:eb:5c:8f:
         c3:ef:6d:e2:7a:dc:b2:ef:73:57:f0:8b:3e:6d:26:cd:57:e1:
         f3:e7:05:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 05:02:14 2025 by rpki-client