Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft
File:                     Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft (raw, json)
Hash identifier:          Dz/XLznKnaOVIU85+b+8t6VLUlAU6VQae8iEti5YJnU=
Subject key identifier:   A1:3C:70:D2:F1:BB:D5:F1:D2:DC:9A:29:1D:10:F5:E0:A7:73:FE:02
Authority key identifier: 63:FC:2F:5D:E0:94:C8:39:6D:C8:BC:97:44:ED:68:2F:F4:B2:38:81
Certificate issuer:       /CN=A9118689/serialNumber=63FC2F5DE094C8396DC8BC9744ED682FF4B23881
Certificate serial:       FE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft
Manifest number:          FC
Signing time:             Mon 09 Jun 2025 04:11:37 +0000
Manifest this update:     Mon 09 Jun 2025 04:11:36 +0000
Manifest next update:     Mon 16 Jun 2025 04:11:36 +0000
Files and hashes:         1: Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl (hash: weBRg2NUdyrX1hpVCSXM2Q63RHtUcDtQV1/oMk/GQtc=)
                          2: D1D880A6C4FB11EEA30ECF34C4F9AE02.roa (hash: HaM1uGW7CpLpf57Ix2SDrMkVRudstrm9oD5WtSudmS8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl
                          rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 04:11:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 254 (0xfe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9118689, serialNumber=63FC2F5DE094C8396DC8BC9744ED682FF4B23881
        Validity
            Not Before: Jun  9 04:11:36 2025 GMT
            Not After : Jun 16 04:11:36 2025 GMT
        Subject: CN=68465ef9-e50a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f4:ea:ab:02:ba:23:6b:7c:8e:7a:2c:5b:b6:8d:
                    3b:ed:5c:5d:86:db:52:a5:35:bb:6a:4c:bd:18:e2:
                    ff:be:f7:27:be:f6:6c:d2:76:51:e0:cb:0f:8e:5f:
                    bf:58:44:c7:d2:20:86:56:ec:33:52:5f:90:6b:6f:
                    8a:fe:e4:67:cc:4b:c3:e1:f2:47:a2:2c:b1:be:ac:
                    80:10:d2:a7:09:1c:71:f8:7b:7e:ce:2c:bf:2a:bf:
                    d0:2f:c5:ee:09:25:1d:db:ac:56:5f:29:21:15:34:
                    02:d9:2e:09:f1:42:09:e2:c4:f4:e4:99:e2:43:81:
                    19:04:90:08:7e:93:aa:87:29:bf:15:41:e1:a6:6e:
                    30:67:04:a1:e3:e6:9c:23:02:bc:4e:b8:7a:3c:bc:
                    f9:00:b8:73:08:28:97:9e:06:7c:96:5b:bb:69:c8:
                    f9:a8:32:fb:c1:8d:1c:93:ea:86:bb:37:32:84:8c:
                    86:83:32:a6:3f:ec:48:5a:f6:56:de:cb:b4:c7:e4:
                    94:6c:5d:b6:7e:37:4a:25:d2:e5:fd:05:ef:12:52:
                    d3:bf:05:5f:99:4a:21:31:51:c2:bc:d4:5c:43:53:
                    72:5a:f7:88:a5:d3:23:d7:9d:78:ef:81:b1:fe:3c:
                    6c:bd:fc:55:fa:60:54:51:68:ca:a1:de:fc:05:4d:
                    8c:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A1:3C:70:D2:F1:BB:D5:F1:D2:DC:9A:29:1D:10:F5:E0:A7:73:FE:02
            X509v3 Authority Key Identifier:
                keyid:63:FC:2F:5D:E0:94:C8:39:6D:C8:BC:97:44:ED:68:2F:F4:B2:38:81

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         cb:2c:2a:5a:ac:c9:6c:83:bd:7e:9a:86:ef:b6:ea:a6:c2:f4:
         f9:4e:96:80:e5:d1:a7:e4:29:7f:37:96:23:bb:ea:4b:ea:de:
         87:3c:3b:00:f2:fa:7e:55:ff:c9:b2:38:d5:7b:ca:c9:05:42:
         09:c3:13:8a:81:3f:7d:2a:fa:a9:52:0d:14:2e:47:83:31:2a:
         73:6d:e8:9c:62:7d:f1:89:6b:67:f2:43:f0:f5:96:a4:ab:da:
         3c:a5:42:0e:82:36:e5:40:a5:08:5e:6e:79:8d:85:d6:3b:30:
         08:e1:8c:b5:c2:9b:d3:2e:4c:2c:b8:54:29:8f:e7:26:ae:d2:
         e4:28:96:99:0c:0c:70:0b:9a:c7:bb:10:30:21:f8:4b:66:4a:
         d3:c7:98:13:06:9c:09:ae:dc:60:95:9a:ae:8a:cf:db:60:34:
         c4:fc:e3:ef:e8:aa:f7:14:9c:fe:cf:fc:08:24:ec:52:90:19:
         19:dd:bb:aa:92:a9:25:ed:cd:b3:e5:0a:54:78:da:7f:e9:e5:
         46:e4:a5:0b:9c:c0:1e:3d:f7:18:71:9e:26:eb:7e:0e:80:c5:
         07:aa:f6:c9:91:b4:0f:81:63:6a:9d:0d:14:f7:a7:e6:35:32:
         46:22:ab:ec:d1:10:e3:85:c0:85:bf:ad:30:8d:db:ea:0e:d1:
         4d:1d:a1:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 00:23:44 2025 by rpki-client