Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft
File:                     JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft (raw, json)
Hash identifier:          fly4Xo9jmCMxU57dowl42cB1VeRbNei2j5kd17oiOh0=
Subject key identifier:   9B:E6:B5:7E:0A:5F:F4:55:7E:97:56:9E:23:8E:7F:EA:F2:A4:FA:3A
Authority key identifier: 24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4
Certificate issuer:       /CN=A911E008/serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4
Certificate serial:       16EA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft
Manifest number:          16E0
Signing time:             Sun 08 Jun 2025 16:34:15 +0000
Manifest this update:     Sun 08 Jun 2025 16:34:14 +0000
Manifest next update:     Sun 15 Jun 2025 16:34:14 +0000
Files and hashes:         1: JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl (hash: VJc2HIQuFIR6Vhm9kiqm+plOac0tB/9vuBtaa6oRn64=)
                          2: 04A96D3ADB0511EBB30F6E2EC4F9AE02.roa (hash: 995PegsL3ZUwg9uvRMBU899Zay98EopTGO6qSEJefks=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl
                          rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 16:34:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5866 (0x16ea)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911E008, serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4
        Validity
            Not Before: Jun  8 16:34:14 2025 GMT
            Not After : Jun 15 16:34:14 2025 GMT
        Subject: CN=6845bb86-05e8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:7a:25:9a:9c:2c:b1:ee:64:a2:ed:4e:7c:0a:
                    07:ab:ff:61:23:f7:be:29:96:5b:06:b3:8c:d7:17:
                    57:d4:2f:55:76:f7:0c:6a:c6:f6:4d:a9:88:93:0c:
                    ce:b6:92:f5:8e:a4:2f:e4:47:81:4c:02:69:e0:52:
                    7d:32:6c:9a:3e:17:f3:9c:be:5b:6a:ac:63:57:ba:
                    56:7c:f2:23:6a:72:c2:26:93:8e:a9:c5:57:ac:e9:
                    7f:9e:9a:f7:52:3f:16:46:c4:21:6f:8d:a6:95:99:
                    ef:06:04:cb:19:30:b3:32:c3:d4:97:05:26:8b:2a:
                    e3:88:67:49:64:56:dc:8d:99:ab:3b:27:6b:27:0f:
                    e7:59:8f:24:f3:54:4e:f7:e2:63:b9:64:57:ec:68:
                    f9:6b:c6:ce:cd:1c:d1:1a:4f:04:1e:91:54:73:e0:
                    12:b9:47:07:95:8b:ea:e3:f2:68:29:60:89:f6:e3:
                    ee:79:f4:b9:7d:a3:bf:c8:2c:42:be:21:7c:a9:8c:
                    03:eb:9e:da:4a:e1:a4:c7:a5:54:ea:a1:dc:df:89:
                    75:96:cd:d5:6c:be:c1:e7:fe:0f:a4:f4:8c:e4:c8:
                    41:5c:e8:35:3e:67:77:38:24:f2:14:d3:fb:67:98:
                    48:9d:67:b0:24:1e:74:3c:69:c0:b5:76:59:c2:02:
                    53:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:E6:B5:7E:0A:5F:F4:55:7E:97:56:9E:23:8E:7F:EA:F2:A4:FA:3A
            X509v3 Authority Key Identifier:
                keyid:24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:48:59:39:94:ac:85:01:70:2a:de:d7:f5:44:76:da:f6:fb:
         57:f0:9c:1e:da:8c:d5:2f:f0:8c:bf:54:0d:dc:31:b3:cc:3e:
         03:d9:65:37:7c:e0:8e:01:33:5a:c7:db:7d:4b:ff:8c:ad:3d:
         88:52:72:ae:55:f9:cf:cb:2d:b4:2c:34:b3:9e:d6:7f:b5:1d:
         d3:fe:0c:f3:9f:16:1f:46:8f:7d:33:b9:d5:d6:c7:31:26:52:
         a2:5c:e0:51:bc:82:c7:79:98:7a:7d:41:51:ca:1d:79:69:19:
         27:74:bb:73:7c:36:13:d0:5d:43:d4:48:72:50:98:32:7b:ee:
         de:21:c6:98:aa:d1:0e:50:65:ad:c9:65:cd:cb:e6:f1:c4:32:
         47:3f:0f:7f:8f:ba:e0:a8:5d:df:8d:b9:59:f2:31:be:55:26:
         fe:55:77:c0:a5:a1:38:30:8f:0f:c7:6a:f9:e0:9c:f2:e0:fc:
         3c:26:6e:40:96:3e:f3:81:21:69:74:f3:7a:1b:4c:00:3c:c7:
         4d:29:59:b1:5c:bd:ea:f6:b1:4b:04:55:2c:ec:30:18:d6:5d:
         b1:bc:ae:00:99:e7:d4:34:e7:1a:a9:9e:29:e8:77:2c:63:a1:
         7b:52:89:91:b9:3a:e6:27:07:39:06:6a:a8:4e:85:da:5f:82:
         0a:d1:7e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 19:38:52 2025 by rpki-client