Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft
File:                     lFmgev60b3mSRf7CNW08usm-2Ig.mft (raw, json)
Hash identifier:          5fijzSI+qbOf23IqGm5vmQy2RvVvDl2rnSsIx0yEX+0=
Subject key identifier:   9F:A5:84:57:2D:FE:3A:83:67:F1:4D:A0:0B:05:BF:A0:E4:7D:5C:69
Authority key identifier: 94:59:A0:7A:FE:B4:6F:79:92:45:FE:C2:35:6D:3C:BA:C9:BE:D8:88
Certificate issuer:       /CN=A912EE4D/serialNumber=9459A07AFEB46F799245FEC2356D3CBAC9BED888
Certificate serial:       0129
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft
Manifest number:          0125
Signing time:             Wed 11 Jun 2025 04:07:15 +0000
Manifest this update:     Wed 11 Jun 2025 04:07:14 +0000
Manifest next update:     Wed 18 Jun 2025 04:07:14 +0000
Files and hashes:         1: lFmgev60b3mSRf7CNW08usm-2Ig.crl (hash: /AVkleO6hdU4GeT/7kNf2S0I7DvxqEzpyLY8CEBXI0U=)
                          2: 81A901FA8A0411EEA251F746C4F9AE02.roa (hash: JHvhSwDOyCbk05zvE3c35/2oeXE8ikJi+kxwUoPeaf4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.crl
                          rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 04:07:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 297 (0x129)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912EE4D, serialNumber=9459A07AFEB46F799245FEC2356D3CBAC9BED888
        Validity
            Not Before: Jun 11 04:07:14 2025 GMT
            Not After : Jun 18 04:07:14 2025 GMT
        Subject: CN=684900f3-b024
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:50:9f:63:4e:cf:3b:fb:e1:b0:1f:db:c4:52:
                    8f:1f:36:4b:ff:06:aa:63:5f:44:aa:8b:8c:03:25:
                    c2:3c:52:70:bf:c2:47:ab:47:36:d2:eb:91:2d:06:
                    ec:97:22:1f:61:e4:73:d9:d4:80:58:ae:d6:01:93:
                    74:24:a4:9d:06:5b:63:18:26:b9:a8:96:ab:ec:c8:
                    e6:6e:f0:c6:4a:cb:e3:8c:2a:0c:b6:92:dd:34:75:
                    e6:5b:39:a2:7d:0e:6b:b0:84:4e:b8:78:21:d6:43:
                    90:cc:db:b4:4e:1c:8d:cb:5e:ff:f8:c6:4e:f7:55:
                    25:05:d5:3a:39:e6:cc:94:05:96:e8:ad:f3:37:9c:
                    63:80:de:33:cb:42:d2:43:bc:fb:64:01:c8:48:13:
                    ce:61:4c:76:a7:78:01:cc:59:76:61:34:ed:92:1d:
                    fa:b6:24:9d:ce:70:59:b9:48:23:0e:25:64:b1:36:
                    71:43:da:6b:36:17:a8:71:c8:7e:2d:81:af:b4:50:
                    ed:db:3b:7b:1d:11:89:8d:fe:14:43:10:c4:d9:99:
                    97:cd:13:c9:95:61:ac:48:14:55:04:2b:27:e4:fc:
                    34:73:d2:01:84:2d:1e:37:56:3b:e4:8f:b5:63:99:
                    15:63:83:04:ac:b1:7e:77:ac:fc:c8:1b:e8:7f:a5:
                    1e:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:A5:84:57:2D:FE:3A:83:67:F1:4D:A0:0B:05:BF:A0:E4:7D:5C:69
            X509v3 Authority Key Identifier:
                keyid:94:59:A0:7A:FE:B4:6F:79:92:45:FE:C2:35:6D:3C:BA:C9:BE:D8:88

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         61:e2:cc:42:90:53:65:5d:58:6c:01:2a:3a:d0:ea:82:93:42:
         e6:2d:67:77:0e:7c:3d:e3:fe:41:1b:76:1c:d7:02:9e:76:26:
         32:66:a0:17:7a:29:11:83:c2:61:73:f9:80:d9:4d:b0:e2:e7:
         cb:d5:f1:00:c8:ea:15:08:b4:32:cd:93:6c:a7:c1:e9:03:40:
         42:1e:1e:2f:f5:7c:bd:bf:fd:b8:38:6d:54:8e:c1:6b:08:2d:
         17:7c:ff:00:18:69:9e:74:6e:e2:0f:a0:bf:21:e5:43:58:f6:
         6e:d6:ae:ab:ce:59:c5:c1:53:46:fe:e5:7f:79:3f:11:03:7e:
         02:72:03:ea:b0:5e:7e:cf:41:2d:65:b0:20:2e:5e:ba:39:85:
         21:34:8b:85:f6:c3:79:68:9b:58:6f:66:e6:dd:f7:ea:b7:db:
         94:ee:36:3b:84:cf:b2:e9:ba:25:20:68:71:03:28:74:1d:18:
         5d:13:19:bf:11:66:1b:78:32:be:c0:82:51:8a:83:14:6f:00:
         19:b8:78:e1:57:29:73:d3:f6:9c:81:be:c0:cc:c8:a5:8f:8e:
         9c:3a:aa:c7:fd:e9:26:21:8d:88:ea:79:6d:38:7c:15:cd:c6:
         ac:bb:87:3f:5d:8e:7d:b0:b0:57:57:10:54:ba:bd:a7:0f:41:
         54:86:d2:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 04:04:04 2025 by rpki-client