Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft
File:                     LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json)
Hash identifier:          reUwkIGBLq5gVPKZF/J+SNmyQ5IuU5cYym/Abz+0WK8=
Subject key identifier:   27:13:53:C2:22:51:4E:B2:30:FC:25:5A:6A:F4:99:EC:93:1C:45:8A
Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7
Certificate issuer:       /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7
Certificate serial:       023E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft
Manifest number:          023A
Signing time:             Fri 13 Jun 2025 01:23:47 +0000
Manifest this update:     Fri 13 Jun 2025 01:23:46 +0000
Manifest next update:     Fri 20 Jun 2025 01:23:46 +0000
Files and hashes:         1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: gRc5EhlOtRUumgkxi8PCRn7pK5ua6qTykZokuOTZyNc=)
                          2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: v8A7o/rziUd18ChafwKVVQdaKCqkH9AmkhbIbCG9hCU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl
                          rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 01:23:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 574 (0x23e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9123D28, serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7
        Validity
            Not Before: Jun 13 01:23:46 2025 GMT
            Not After : Jun 20 01:23:46 2025 GMT
        Subject: CN=684b7da2-59af
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:a5:17:2a:a7:a3:ed:d7:bc:1c:ee:9c:12:e9:
                    7f:99:94:3e:f2:84:52:45:b8:c9:b8:33:1b:fc:d1:
                    93:e2:14:aa:c9:c9:c6:17:dd:ed:5c:59:b3:0b:3a:
                    98:7d:7f:e8:13:60:86:d1:7a:a0:5a:7f:cc:1b:bd:
                    3f:d8:1e:54:ac:3a:e2:12:19:49:2b:4b:2d:44:7b:
                    e9:2e:e0:c3:17:e2:2f:dc:11:a8:03:40:c2:1e:e1:
                    c8:dc:39:b5:98:d3:00:df:93:22:1c:e7:84:60:5f:
                    49:06:55:fa:11:a0:94:ee:d6:6a:d8:dd:fa:4d:b7:
                    4f:5b:c7:f7:5a:50:f9:b2:6e:7f:74:93:00:65:98:
                    08:bd:65:6f:0a:c1:15:74:bb:c8:68:16:07:f2:50:
                    7b:92:2c:da:4d:40:58:a2:83:56:71:0a:bf:64:45:
                    a4:04:e1:4b:c2:67:d6:73:4f:68:fd:d9:2a:a9:96:
                    1d:d8:8e:6a:6d:96:a4:47:ad:b8:1b:19:26:a1:cd:
                    01:16:a9:28:ba:c1:68:fe:7c:99:4d:18:47:da:81:
                    72:be:29:40:86:d4:7a:33:d2:25:b7:56:a6:09:d4:
                    2b:10:ea:ba:42:69:5b:11:b9:2d:02:9f:e6:74:5a:
                    8a:a2:47:65:b8:96:8c:ed:8a:fb:ad:43:da:a1:67:
                    fa:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:13:53:C2:22:51:4E:B2:30:FC:25:5A:6A:F4:99:EC:93:1C:45:8A
            X509v3 Authority Key Identifier:
                keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6a:52:b8:ad:06:6f:41:9f:de:4d:5e:e7:5d:7d:39:c1:9b:a9:
         16:3b:ed:b2:76:f3:1a:64:a4:9d:d9:a5:c3:ba:9a:bc:0a:cc:
         6b:a1:36:e5:f4:6b:74:db:49:41:c5:9d:d6:7f:5d:e9:57:23:
         0b:06:f4:f5:31:5c:2e:ad:f8:10:02:18:98:92:2b:0e:89:a8:
         2c:a2:23:ad:ea:97:22:03:ef:e5:89:21:0b:a8:e8:17:d3:ac:
         5d:70:33:d5:68:a9:58:62:7e:21:99:46:bf:a5:01:89:69:95:
         8e:46:10:e9:2c:84:66:42:2c:a8:2d:1e:1a:9e:1e:8a:95:44:
         3a:85:7f:25:fd:6a:a4:67:2a:83:5d:14:15:1e:d5:19:aa:dd:
         cb:db:da:af:aa:36:be:32:48:17:78:a1:be:1b:ee:80:1a:45:
         7f:4e:fc:d3:56:87:46:67:08:23:3f:a7:aa:c7:19:a2:99:ef:
         6c:69:f5:bb:47:64:09:c2:4f:9c:34:bd:77:d2:f5:32:53:55:
         4a:d8:8e:49:65:83:16:6b:f2:f7:4d:62:7d:53:40:6b:ab:c2:
         18:39:56:f0:02:02:6d:70:98:a8:69:d0:3e:eb:da:2f:33:8f:
         2e:43:ad:7f:7c:9a:77:5e:ee:1c:e0:77:42:e4:fa:a4:ac:e1:
         50:9e:fd:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 13:55:24 2025 by rpki-client