Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft
File:                     5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft (raw, json)
Hash identifier:          L6UQJ6x2tFNNOp8YInyAlVBMbQj9rPopaoKMOFKmlq0=
Subject key identifier:   A2:42:49:52:5A:5C:77:5B:E9:32:E8:D5:96:6D:33:FA:A9:89:44:FD
Authority key identifier: E5:06:93:CA:18:5B:B6:5D:92:CA:FB:30:E3:76:F5:1B:95:9A:D2:D8
Certificate issuer:       /CN=A9115122/serialNumber=E50693CA185BB65D92CAFB30E376F51B959AD2D8
Certificate serial:       018C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QaTyhhbtl2Syvsw43b1G5Wa0tg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft
Manifest number:          0189
Signing time:             Fri 13 Jun 2025 02:33:38 +0000
Manifest this update:     Fri 13 Jun 2025 02:33:37 +0000
Manifest next update:     Fri 20 Jun 2025 02:33:37 +0000
Files and hashes:         1: 5QaTyhhbtl2Syvsw43b1G5Wa0tg.crl (hash: JO7zaiN9mzUgIs3CauOKLWTBQJ58adMUC6Ul4rVarT4=)
                          2: D4B97082EF2211EDB7EFE882C4F9AE02.roa (hash: hB47ivnW+fJgf8IJJ0l6aDuxJFT7bxRrB7EorTuGqJc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.crl
                          rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QaTyhhbtl2Syvsw43b1G5Wa0tg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 02:33:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 396 (0x18c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9115122, serialNumber=E50693CA185BB65D92CAFB30E376F51B959AD2D8
        Validity
            Not Before: Jun 13 02:33:37 2025 GMT
            Not After : Jun 20 02:33:37 2025 GMT
        Subject: CN=684b8e01-d7a2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:07:77:b2:8d:e5:55:0b:6f:2a:b5:cb:42:e1:
                    4a:e6:4e:a4:30:0d:d8:d8:49:2f:e7:57:50:1e:aa:
                    22:90:d3:74:4b:f9:09:45:01:e6:86:3a:e9:7c:73:
                    af:15:3d:ed:74:6f:d7:46:ff:26:b9:4a:43:c1:57:
                    7e:9c:c8:85:15:47:26:3b:1b:8b:1b:8e:0d:86:55:
                    3f:4d:b9:40:6c:8f:2e:99:8d:c3:29:64:85:9c:1c:
                    a7:5f:c4:22:dc:5c:95:bd:f1:29:24:2d:bb:8c:64:
                    22:28:30:c5:53:73:db:d2:70:9f:4c:13:71:90:be:
                    f1:00:40:df:44:d3:13:a9:ae:87:a5:16:cb:06:7d:
                    3a:7f:36:df:ea:91:dd:d0:cb:67:b7:5b:57:0e:9c:
                    d1:08:a4:f5:fd:6a:16:6c:bc:3e:d6:78:33:d0:24:
                    5b:01:75:db:29:b0:cb:0a:dc:fb:7b:c5:81:3e:6e:
                    76:00:bd:70:2b:83:17:90:7b:17:7e:5e:a4:e6:bb:
                    ec:b6:d6:8d:a9:8b:cf:b3:d2:c9:43:e7:80:bf:0c:
                    e6:8f:ec:9a:6d:79:17:e1:d0:8e:b5:0f:5f:56:05:
                    f7:e6:1a:a9:43:86:9f:9d:0e:b4:78:51:c1:f7:83:
                    aa:90:71:c8:f2:11:5f:57:3e:7d:b9:3b:4a:b3:30:
                    0c:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:42:49:52:5A:5C:77:5B:E9:32:E8:D5:96:6D:33:FA:A9:89:44:FD
            X509v3 Authority Key Identifier:
                keyid:E5:06:93:CA:18:5B:B6:5D:92:CA:FB:30:E3:76:F5:1B:95:9A:D2:D8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QaTyhhbtl2Syvsw43b1G5Wa0tg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         36:a4:e9:31:b9:fd:17:8d:e8:79:bc:6e:32:07:50:c1:33:da:
         c6:9e:62:1e:01:ec:fe:40:1f:bc:2c:0e:96:2f:dd:69:2b:cc:
         02:ec:a8:3e:61:18:81:45:dc:de:80:62:91:89:90:bc:32:93:
         ba:77:50:39:86:2d:f1:e6:69:aa:bf:3a:55:b8:7f:a1:bf:b6:
         96:24:2a:1b:2b:42:a1:ae:a7:3f:6c:36:ea:a8:81:79:20:51:
         ba:b5:5b:e1:43:57:a1:99:dc:c7:7e:03:ba:93:76:55:36:06:
         01:e2:02:ea:c7:9e:44:f7:18:29:14:8f:38:fc:d4:de:a3:7e:
         11:98:51:6a:74:08:54:0d:2f:de:0a:6a:9b:52:3d:df:b0:8a:
         05:f1:49:39:c6:a8:70:0f:9c:0e:91:ad:4b:03:72:69:bd:80:
         a2:3e:17:d8:03:8c:54:0c:a2:bf:09:f4:d1:bf:eb:7d:f7:fe:
         46:68:92:34:f9:b3:64:23:02:af:5c:2f:2e:9b:ea:53:43:8e:
         14:17:54:fe:68:f5:34:0d:c6:7b:84:79:55:52:55:16:d9:7d:
         c3:13:c5:72:66:bc:f8:c7:2a:7f:fb:8d:7d:7b:e5:45:73:e8:
         7f:4a:6b:8f:97:02:c3:c5:eb:f7:ee:60:92:5f:21:65:86:8b:
         e1:ae:d3:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:17:07 2025 by rpki-client