Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft
File:                     G43u2x08SMwcTCF7lpx5hUGkzHc.mft (raw, json)
Hash identifier:          4vn1g50ZEBQw04ZfJFPQ8nASYF8kzcfOdCdb9XKfQIc=
Subject key identifier:   D9:D2:21:AC:A9:C0:41:F7:0C:F8:F4:4A:FE:D9:9D:48:E3:30:ED:6B
Authority key identifier: 1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77
Certificate issuer:       /CN=A9124803/serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77
Certificate serial:       0659
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft
Manifest number:          0652
Signing time:             Thu 12 Jun 2025 22:11:31 +0000
Manifest this update:     Thu 12 Jun 2025 22:11:30 +0000
Manifest next update:     Thu 19 Jun 2025 22:11:30 +0000
Files and hashes:         1: G43u2x08SMwcTCF7lpx5hUGkzHc.crl (hash: s+ZiGbb0P3xeieAYYOu8sy6mTyWK6KMgMl/MtZAPwhQ=)
                          2: 62CCFF308C7211EB98A6DD43C4F9AE02.roa (hash: lV/cpNWUCFTUuQ8wWKZTK1Tzrge3tnngMyqR3AbKgb4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl
                          rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 22:11:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1625 (0x659)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9124803, serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77
        Validity
            Not Before: Jun 12 22:11:30 2025 GMT
            Not After : Jun 19 22:11:30 2025 GMT
        Subject: CN=684b5093-6cd0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:f2:23:dd:ff:c7:8d:b8:29:5a:b6:8f:dc:ce:
                    e8:48:f9:6b:d0:74:cb:c0:d6:e3:1e:e0:97:c1:8b:
                    2e:8c:0d:ab:01:67:d1:9d:70:eb:be:71:c7:3b:a7:
                    ae:cd:1e:cb:8a:3e:83:bd:4b:fb:4f:39:ac:51:80:
                    b4:bd:34:78:c4:4d:01:ef:80:e6:f3:fb:a8:35:bf:
                    90:c2:53:1b:79:f9:c3:07:3b:14:0a:81:b5:4f:ae:
                    80:5b:60:23:76:a2:bc:fb:51:0f:6a:22:70:49:16:
                    8d:86:94:bd:f8:fb:91:9d:24:a1:59:73:60:85:18:
                    cf:6d:e8:25:b7:cc:26:04:dd:21:c6:0c:a8:83:46:
                    62:59:ef:f2:b6:c7:67:bc:e9:23:3b:c1:4c:48:f1:
                    77:77:e5:4a:cb:74:d6:c8:b8:d5:14:d8:6c:07:8a:
                    bc:58:ee:9f:9b:d8:23:6c:f0:f1:ba:01:91:55:e0:
                    aa:18:95:0c:0a:b2:b2:d5:f9:e7:05:c5:98:61:a6:
                    3f:5a:98:2c:ff:69:bf:20:24:f0:06:6f:b4:10:b8:
                    fa:a4:b7:94:db:e8:42:ca:48:6c:bd:01:de:4a:4c:
                    24:f4:63:3a:9d:7c:af:3a:46:e9:93:db:76:3e:fb:
                    81:52:c6:e2:f6:01:e4:87:a2:c1:c4:9a:b3:9d:18:
                    ca:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:D2:21:AC:A9:C0:41:F7:0C:F8:F4:4A:FE:D9:9D:48:E3:30:ED:6B
            X509v3 Authority Key Identifier:
                keyid:1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ce:6e:f4:24:02:4e:58:03:7f:54:01:1a:20:7a:45:3b:6f:ca:
         1c:fa:80:8f:05:25:55:17:dc:c6:1c:84:48:66:ff:56:c9:a9:
         5d:83:51:9c:8e:52:0f:0c:d9:de:48:aa:57:f5:d4:de:5d:86:
         6e:ea:95:81:f8:b4:7e:02:63:a0:1f:09:3b:ad:58:30:e4:e0:
         c6:8c:6a:4f:15:85:01:77:5e:70:a7:cd:73:77:92:6a:63:8b:
         6e:9a:d0:e6:0c:78:2a:1a:27:f7:0b:62:85:d3:e1:aa:b8:e3:
         93:29:d1:91:ad:8b:9e:19:bd:f6:56:e7:bf:2e:2f:80:be:f0:
         5e:67:fc:78:7b:a6:c6:ee:b7:6c:3b:cc:f4:fb:71:e2:07:6e:
         9f:11:2f:e8:1c:1c:c1:5e:4b:a5:e7:f4:da:32:bb:88:fd:09:
         75:57:39:54:cb:5e:5f:74:98:de:e3:17:4d:c4:14:49:5c:b4:
         98:be:6c:8b:b2:61:44:ef:62:46:3f:46:78:8c:6f:d7:15:c6:
         b4:ac:32:00:41:db:d7:47:c5:3a:95:27:08:9b:b7:67:5d:48:
         e2:be:47:ed:63:66:21:82:8f:09:7d:2f:13:a5:0a:13:25:b3:
         a3:e3:97:84:6f:4c:d4:6d:ed:87:95:43:42:b7:27:75:55:db:
         ed:96:2a:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 01:42:11 2025 by rpki-client