Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft
File:                     8a29DnE5HfIQ3jRh52V4tHoBYko.mft (raw, json)
Hash identifier:          PhESIoKqSNC8UnW5fpwt0OlU67CEJ1EkCyn5q9WFEGg=
Subject key identifier:   C3:C0:A4:BF:C0:82:86:2F:FA:66:B7:EA:FE:28:E9:DB:63:1F:EF:5B
Authority key identifier: F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A
Certificate issuer:       /CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A
Certificate serial:       F6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft
Manifest number:          F6
Signing time:             Mon 09 Jun 2025 04:13:58 +0000
Manifest this update:     Mon 09 Jun 2025 04:13:58 +0000
Manifest next update:     Mon 16 Jun 2025 04:13:58 +0000
Files and hashes:         1: 8a29DnE5HfIQ3jRh52V4tHoBYko.crl (hash: agfM6Ma0gnQbk2Mz8SyNqSrPGLNHIXKCMIO0oMrfMdI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl
                          rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 04:13:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 246 (0xf6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9131711, serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A
        Validity
            Not Before: Jun  9 04:13:58 2025 GMT
            Not After : Jun 16 04:13:58 2025 GMT
        Subject: CN=68465f86-1417
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:08:02:a7:73:14:b7:85:c4:dc:03:4d:c6:60:
                    96:77:ec:85:6e:fe:6f:ba:d0:96:33:c4:cb:f6:d4:
                    35:e3:df:2c:4e:24:d9:11:24:18:65:ea:c2:d5:65:
                    2f:1d:f1:f0:93:26:9d:99:e9:54:d4:35:db:fa:fb:
                    d1:c0:45:1b:1f:e7:d7:f4:3c:ac:9b:05:e2:6f:72:
                    6b:f4:61:99:17:57:94:16:f9:79:e0:03:c0:c2:4d:
                    db:a5:d4:f8:99:83:1f:0b:28:83:e4:1e:3b:82:0d:
                    eb:93:55:66:a9:72:b8:a3:c1:15:38:93:93:06:09:
                    4c:6d:b1:98:3a:07:eb:24:6a:57:cb:f2:a8:ba:76:
                    d0:1e:0f:e3:10:4e:ed:f1:07:ab:33:db:09:51:a2:
                    e8:a0:23:11:60:25:84:d5:90:ff:71:5f:e3:d7:cd:
                    2c:3f:12:4e:de:d1:d1:c1:f2:57:25:1f:bf:8b:69:
                    d4:9a:0f:28:d3:18:8b:d9:55:7c:bd:8f:67:4c:ed:
                    9a:bc:8d:81:3b:2c:cb:df:20:e4:9a:51:90:b9:bc:
                    63:19:86:5a:fe:07:1b:e4:4f:93:55:92:a4:cf:90:
                    a3:aa:f1:67:27:5e:2a:cc:49:eb:c6:ec:ca:fc:10:
                    56:88:a0:ab:fa:2d:cd:33:1a:a1:db:b2:c5:74:39:
                    11:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C3:C0:A4:BF:C0:82:86:2F:FA:66:B7:EA:FE:28:E9:DB:63:1F:EF:5B
            X509v3 Authority Key Identifier:
                keyid:F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:66:b9:7d:eb:4a:5b:eb:40:ed:65:95:83:26:67:c7:b9:2e:
         1a:74:ba:1d:47:e7:78:e5:3e:b8:7b:b9:b4:60:3d:c7:fc:3d:
         c0:35:c6:8a:a9:70:8f:7d:3e:e1:10:9a:f2:c8:3a:67:a0:fa:
         90:7e:df:7b:f6:59:a7:c2:ee:fa:cc:f0:e9:44:11:0e:ff:e9:
         e5:4b:fe:57:5c:29:fe:1d:4e:08:f7:6d:a0:e2:5d:c9:59:56:
         82:b2:ca:68:15:1c:3c:ca:a4:2b:e4:4e:8b:24:55:a0:ef:73:
         61:7a:71:a9:f0:0a:d9:40:37:f6:44:8f:05:8e:66:51:f0:d3:
         ca:9b:6d:39:43:2b:9b:2e:6c:04:f1:8d:f2:76:72:85:47:d7:
         27:86:0c:2e:af:02:fc:1b:65:ef:9c:8f:06:af:c0:fe:28:9c:
         74:10:26:7a:b6:a8:79:58:3a:d1:3d:de:38:e1:00:b8:4a:81:
         86:22:8d:ae:74:30:84:2e:3a:f8:6d:dd:b4:81:3a:3a:e2:19:
         f2:5b:0f:eb:ee:82:79:af:d5:40:f8:42:5a:95:d3:cf:2c:e4:
         85:d2:f0:63:14:ef:1b:f7:96:1e:44:99:7e:11:9d:37:aa:15:
         53:39:82:56:c2:7b:65:d9:dc:02:ba:db:a6:dd:b5:da:b0:0e:
         63:b4:19:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:39:43 2025 by rpki-client