Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft
File:                     G43u2x08SMwcTCF7lpx5hUGkzHc.mft (raw, json)
Hash identifier:          RXIzldXQI0oJOuxq71bNDHJHK0WLwzZ462mQSSVsg4o=
Subject key identifier:   4B:BC:5E:EF:0E:03:97:C8:89:EB:C4:DC:BC:D4:82:29:18:A5:68:3E
Authority key identifier: 1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77
Certificate issuer:       /CN=A9124803/serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77
Certificate serial:       0658
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft
Manifest number:          0651
Signing time:             Tue 10 Jun 2025 22:27:39 +0000
Manifest this update:     Tue 10 Jun 2025 22:27:39 +0000
Manifest next update:     Tue 17 Jun 2025 22:27:39 +0000
Files and hashes:         1: G43u2x08SMwcTCF7lpx5hUGkzHc.crl (hash: TxanvwwEkekZ7vjHW3fiRyHHeq+MZwrf82ZWqusgcDI=)
                          2: 62CCFF308C7211EB98A6DD43C4F9AE02.roa (hash: lV/cpNWUCFTUuQ8wWKZTK1Tzrge3tnngMyqR3AbKgb4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl
                          rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 22:27:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1624 (0x658)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9124803, serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77
        Validity
            Not Before: Jun 10 22:27:39 2025 GMT
            Not After : Jun 17 22:27:39 2025 GMT
        Subject: CN=6848b15b-2730
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:19:8e:ae:8d:23:93:d2:7b:11:57:66:9e:21:
                    2b:da:05:34:00:59:9b:5f:d8:1b:ac:2e:eb:42:fa:
                    e3:7b:73:04:7b:d2:d8:9e:3b:d3:a6:6c:6a:bb:fc:
                    58:fe:8e:a7:ac:86:b2:67:da:13:45:60:4d:53:bd:
                    fe:26:87:fd:34:22:e5:a2:5c:8f:15:fc:06:cf:38:
                    c3:2b:81:32:20:e4:8b:6a:5c:72:c5:55:1c:e8:18:
                    d2:45:a6:05:86:ed:11:57:1e:1f:46:89:e9:2e:8f:
                    0e:0b:36:55:cc:aa:62:e8:38:13:e7:d4:99:84:e9:
                    33:4a:e5:ae:d8:53:3e:79:1e:05:c3:bc:79:9f:f0:
                    f5:c2:37:e4:b5:5a:0a:72:27:32:53:a2:20:33:10:
                    94:1a:96:ca:68:de:66:29:45:f6:6c:02:de:7c:5d:
                    20:6b:03:87:4e:e5:14:a8:a6:57:8b:bc:7a:e0:fc:
                    5c:3b:b5:38:2e:4e:2a:a8:19:4e:e5:d2:49:f6:55:
                    bb:78:fa:d9:ee:bc:db:06:3a:bb:37:b4:b3:d9:f3:
                    f1:67:62:e9:65:13:3a:73:b3:93:7e:5e:3a:c1:48:
                    df:f5:24:82:48:93:7c:91:0b:72:9a:d8:73:31:59:
                    b9:54:d2:31:34:a3:f5:52:72:2e:fc:cd:a9:0f:6d:
                    0e:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:BC:5E:EF:0E:03:97:C8:89:EB:C4:DC:BC:D4:82:29:18:A5:68:3E
            X509v3 Authority Key Identifier:
                keyid:1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         e3:d9:dc:ac:7f:25:cc:16:06:19:77:c5:ea:21:9f:49:23:81:
         9d:d9:2f:90:f7:37:de:e9:57:e0:69:3a:2b:86:53:6e:e4:69:
         2b:2c:86:47:05:56:dc:5f:3a:3f:93:e5:d1:15:8d:a7:41:3a:
         ba:22:38:3e:9e:08:48:a1:1d:3d:c4:d8:bf:65:f8:d0:21:61:
         e8:f4:08:99:1a:aa:bc:a6:e4:d2:c8:38:a2:43:3d:4d:8d:b0:
         e7:c1:6f:9d:92:8c:70:6f:57:9b:8e:ab:8b:e2:f4:5f:6c:11:
         2e:c6:a9:c0:73:6e:db:bd:d3:43:68:03:eb:4f:e5:c1:18:69:
         39:67:42:c7:84:bd:bc:ad:29:66:c0:70:e8:9f:1f:3d:ed:05:
         1e:a5:4f:66:ef:4a:75:ef:05:ef:56:50:cc:7e:ca:54:07:52:
         a0:f3:80:d4:22:ed:e5:50:0a:6b:4d:9b:e8:d0:e1:c0:40:d1:
         a8:8f:95:ce:2b:3c:a6:32:90:00:1b:1c:7e:46:15:ce:45:cb:
         d5:0b:55:ad:2d:b9:3c:c0:20:aa:25:ed:10:99:91:25:8c:6e:
         36:67:cc:42:d8:0a:32:f7:fb:d8:e5:47:48:f7:b0:70:80:7c:
         81:65:14:1d:de:f0:e9:c2:25:85:3f:f8:17:a0:c1:57:5b:b5:
         33:8d:34:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 18:59:17 2025 by rpki-client