Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft
File:                     uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json)
Hash identifier:          aR35SvXI+XRzXCs++6smVF+Tx/gmAVnhPOzMk73j3R8=
Subject key identifier:   3D:F6:0C:44:35:E1:29:74:26:BD:F9:F9:B2:E7:8F:28:97:2C:4A:8C
Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34
Certificate issuer:       /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34
Certificate serial:       01E1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft
Manifest number:          01D4
Signing time:             Wed 23 Jul 2025 03:10:23 +0000
Manifest this update:     Wed 23 Jul 2025 03:10:22 +0000
Manifest next update:     Wed 30 Jul 2025 03:10:22 +0000
Files and hashes:         1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: 0fJ9Uz4puKizHGQ5cMwCdXUiF7N6W4bY/9xWTKM9bnU=)
                          2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl
                          rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 03:10:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 481 (0x1e1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EA723, serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34
        Validity
            Not Before: Jul 23 03:10:22 2025 GMT
            Not After : Jul 30 03:10:22 2025 GMT
        Subject: CN=6880529f-0651
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f8:a2:c8:5d:56:34:81:63:e0:53:5c:64:29:d8:
                    b7:14:4f:90:01:a1:19:37:5f:95:32:2c:e7:3e:41:
                    b8:a3:fc:60:3b:6c:0a:9f:63:9d:73:9b:76:49:15:
                    5f:35:bd:35:13:c7:c9:eb:b3:d3:b0:75:6e:4b:df:
                    91:58:cd:15:94:26:b3:2b:2e:0f:85:db:c3:83:12:
                    2b:77:57:ea:fa:1d:d8:d7:c9:af:1b:ed:80:f1:46:
                    d1:a4:4f:36:0a:fb:3c:19:f7:a9:71:32:c9:12:f6:
                    ed:4d:e7:d8:c2:ef:3b:1f:2b:a7:85:a8:90:84:f4:
                    e4:dd:5b:25:eb:c8:5c:c0:be:ad:b4:66:46:02:98:
                    c7:b4:36:e9:04:ba:0c:d8:1b:7a:47:3c:09:52:30:
                    f2:42:64:3c:4d:c5:25:49:6d:1e:e9:38:32:76:df:
                    fc:36:98:4f:05:94:8b:db:b3:c5:1a:33:a9:e5:e8:
                    17:45:18:db:59:f8:9b:15:16:eb:55:4b:9c:a8:39:
                    44:5b:8d:41:57:c4:50:5c:68:b8:0b:3b:a8:8e:ae:
                    ba:92:ac:e6:86:c7:70:74:fc:57:98:4d:c7:90:67:
                    a9:af:48:f6:61:f5:83:5d:b1:04:23:40:c2:f0:d3:
                    c0:fe:60:47:ac:5a:fa:47:09:4a:d0:f8:f6:5e:2e:
                    04:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:F6:0C:44:35:E1:29:74:26:BD:F9:F9:B2:E7:8F:28:97:2C:4A:8C
            X509v3 Authority Key Identifier:
                keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:6a:0a:65:37:34:a4:ea:88:83:25:fb:53:ec:97:f9:6e:2d:
         70:6e:f9:d0:ba:34:92:7d:77:04:d9:05:df:12:43:e1:e1:76:
         ab:06:55:3e:21:8f:aa:b5:3e:6d:78:9e:03:43:76:00:05:10:
         7e:96:f1:bf:9b:95:e2:a4:db:f6:18:ef:b1:67:11:e2:01:3e:
         51:98:93:5c:ec:92:74:00:bd:9a:97:bb:3d:19:f2:03:7f:13:
         23:c1:01:f1:9f:e6:a4:c6:20:fb:fe:e1:7d:21:79:8c:ca:26:
         2a:55:44:b7:e7:4d:32:b2:c9:ab:8e:69:12:1f:c2:b6:6c:86:
         94:36:b1:f3:cf:d2:d6:2f:1b:13:74:82:6f:3f:42:81:05:30:
         49:a7:8a:ab:50:a4:04:33:b1:7a:89:ea:e6:6b:f3:28:6c:15:
         b3:2d:1b:c2:31:e0:d7:ab:ec:da:9d:aa:76:46:62:95:1b:93:
         df:bf:78:fc:2d:53:62:fd:95:d5:d4:16:ef:55:7d:de:08:e4:
         7b:41:a3:00:84:f6:d2:9e:85:b6:bb:fc:71:03:35:4f:6d:8e:
         60:fc:07:40:40:03:ec:38:55:67:95:a3:09:94:57:1b:db:69:
         19:13:9a:b4:9d:b6:d3:a8:95:eb:1c:af:0b:b0:32:f9:4e:e4:
         8d:c9:26:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 12:19:00 2025 by rpki-client