Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft
File:                     LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json)
Hash identifier:          Albs8QmNktoD9F4wiZy+3JI1jXI+IrUlUdMn9FzUw7I=
Subject key identifier:   11:D6:1E:EE:29:8E:4E:8F:79:88:0A:6F:D6:9F:77:31:C4:07:55:C6
Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7
Certificate issuer:       /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7
Certificate serial:       023C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft
Manifest number:          0238
Signing time:             Mon 09 Jun 2025 01:28:50 +0000
Manifest this update:     Mon 09 Jun 2025 01:28:49 +0000
Manifest next update:     Mon 16 Jun 2025 01:28:49 +0000
Files and hashes:         1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: VCF+m2G7E5tje8Yj6BCL9mCwaOoaof1kkVbVXYeqGnU=)
                          2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: v8A7o/rziUd18ChafwKVVQdaKCqkH9AmkhbIbCG9hCU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl
                          rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 01:28:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 572 (0x23c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9123D28, serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7
        Validity
            Not Before: Jun  9 01:28:49 2025 GMT
            Not After : Jun 16 01:28:49 2025 GMT
        Subject: CN=684638d1-6cee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:0f:ea:42:2e:a7:42:be:0b:e4:2b:af:e9:bf:
                    82:7e:78:bf:71:f6:98:f5:36:83:0c:eb:01:d7:07:
                    b9:dc:e7:93:0a:8a:a8:e4:fb:bf:3c:5a:6e:25:aa:
                    88:19:1d:56:d8:29:c7:b1:5d:b7:96:03:b2:29:ae:
                    08:c9:04:36:2c:ad:e8:b7:77:ec:e7:3e:a5:27:5b:
                    0d:c4:7c:da:c3:c6:1b:4c:0b:70:09:fd:88:1f:a6:
                    6d:f9:49:8a:6b:b9:ae:02:42:c3:ff:61:c2:31:fd:
                    a6:25:19:bb:12:b3:49:80:79:dc:90:50:00:65:37:
                    46:ff:55:eb:30:23:01:26:7a:d4:10:c5:a1:d5:58:
                    0b:be:34:c7:10:9c:78:99:fd:83:7d:2e:b0:a2:60:
                    5d:58:7c:61:d6:af:bd:88:76:c4:4a:c3:2f:6e:73:
                    b0:0a:14:3c:f5:27:66:d3:00:9f:c7:66:1b:bb:68:
                    b9:f1:e8:f9:69:16:b0:81:c0:4e:64:f3:2a:3d:56:
                    8d:96:8e:a6:98:74:18:56:41:bf:3e:04:d7:b3:d9:
                    ce:9c:fe:95:af:c5:88:54:a3:a5:cc:df:0c:92:b0:
                    8f:f1:ac:27:00:1e:1a:7b:5d:57:52:5d:41:eb:11:
                    3a:33:1f:36:d8:f5:44:29:1e:50:74:42:a5:a2:e9:
                    a5:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:D6:1E:EE:29:8E:4E:8F:79:88:0A:6F:D6:9F:77:31:C4:07:55:C6
            X509v3 Authority Key Identifier:
                keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:11:bf:0f:08:95:c2:a2:21:c9:39:f9:bb:b8:f3:32:2d:cf:
         50:c9:a3:e1:d3:89:d5:61:e2:b8:36:3b:1f:4d:3a:df:4c:b1:
         ca:09:60:0a:c9:ac:66:0d:d9:ab:18:5c:c5:e2:6d:09:12:bf:
         ac:ba:a3:76:51:5a:d0:37:3e:82:78:53:57:e2:dd:22:f7:b8:
         6e:15:51:e7:dd:88:a1:3e:ad:99:cb:30:a8:c9:c8:55:18:cd:
         14:ba:80:09:c0:ac:e6:b3:bd:5c:85:ea:ba:af:2a:08:00:fc:
         0b:02:0e:8d:48:11:ad:74:3f:9e:1d:de:44:a6:a1:31:72:97:
         d8:41:86:78:1d:ac:0c:b4:c7:e9:66:52:b0:a2:47:d1:56:5d:
         52:dc:ab:15:d5:96:c4:01:ec:2e:1d:a1:1f:b6:bf:45:fc:44:
         60:b8:42:b4:05:53:1c:88:98:ef:bd:69:37:d1:85:06:e0:7e:
         c4:55:65:c8:a8:90:30:07:f1:5c:f6:b8:4e:09:13:5d:58:b4:
         f2:45:58:a6:22:80:d0:5f:80:ed:2a:7e:e2:02:39:60:67:40:
         58:53:cc:55:98:75:1d:ea:28:3a:aa:93:51:26:1e:25:18:df:
         11:dd:1d:62:62:ec:e6:23:f4:46:a5:06:dd:2b:ab:37:8c:78:
         81:8f:fd:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 01:51:00 2025 by rpki-client