Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft
File:                     H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json)
Hash identifier:          15ki2eC2fZSCDPDdECrisQUrcm5aB8f9wxnvV6N+WFw=
Subject key identifier:   B0:CE:01:6C:EF:E2:54:AC:B2:C3:B3:A8:DA:84:11:64:BB:8A:AC:8E
Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C
Certificate issuer:       /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C
Certificate serial:       08EF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft
Manifest number:          08E1
Signing time:             Thu 12 Jun 2025 20:11:39 +0000
Manifest this update:     Thu 12 Jun 2025 20:11:38 +0000
Manifest next update:     Thu 19 Jun 2025 20:11:38 +0000
Files and hashes:         1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: ccqwt81UNCPVZpzBwz76FiL1IjUwH4ztXLj4jsSSJ78=)
                          2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: fXl2igGJye4ZYwQR43jAvZ6b6h7qYdiNfyIYWYelBPs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl
                          rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 20:11:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2287 (0x8ef)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C
        Validity
            Not Before: Jun 12 20:11:38 2025 GMT
            Not After : Jun 19 20:11:38 2025 GMT
        Subject: CN=684b347b-bec1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:24:52:88:d9:2d:e7:c4:3b:19:d0:83:be:c6:
                    43:ae:d4:18:1d:99:86:2a:21:93:da:67:95:56:a4:
                    e8:6f:d3:fc:3d:8a:47:61:8e:80:10:9b:31:9e:20:
                    df:c5:07:29:3f:c8:df:bf:c8:e3:d5:a8:0d:28:11:
                    49:14:ea:fc:74:2b:b6:26:51:b9:a4:56:b9:3d:9e:
                    62:fa:3a:56:44:d1:e3:11:3f:80:02:af:10:87:d9:
                    56:60:1a:f5:52:cd:dd:58:8e:d1:23:90:eb:66:0b:
                    b1:95:66:29:d2:bf:de:ee:85:e4:f4:fd:9e:39:32:
                    a0:af:89:84:d4:86:f8:3c:0b:56:58:56:20:58:52:
                    1a:ee:44:2b:ae:de:15:51:b8:2b:65:af:ee:98:0d:
                    34:51:86:7d:92:e7:14:5c:d2:0b:fc:80:2f:8a:7a:
                    90:3a:af:91:6f:9f:0f:fc:5b:85:6f:80:ce:34:10:
                    4c:fc:9e:c2:f8:89:fa:54:48:6c:b5:c6:48:42:24:
                    3a:e9:ce:7d:07:7c:16:6a:4c:f3:6f:0b:c1:e7:44:
                    5b:d6:8b:37:56:70:54:41:1b:38:ed:65:95:2a:7d:
                    91:2e:e7:f8:b6:d1:29:c1:9b:6e:36:bc:46:16:bc:
                    42:7a:84:29:58:99:32:10:7f:cc:eb:de:4e:70:3c:
                    97:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:CE:01:6C:EF:E2:54:AC:B2:C3:B3:A8:DA:84:11:64:BB:8A:AC:8E
            X509v3 Authority Key Identifier:
                keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:03:ac:11:41:ce:f1:33:fb:d7:5f:d3:4b:df:43:62:96:35:
         2c:5c:5a:5f:a3:ff:cf:c8:27:46:bf:4a:5e:e8:fa:28:f6:d4:
         16:7d:2d:27:8d:fe:22:37:b0:95:c7:5c:58:ea:11:dd:07:db:
         4d:ff:17:8b:45:ff:b4:4e:a7:75:e2:31:c5:49:7a:f3:51:a0:
         34:c1:00:57:e5:5f:1a:52:a8:1b:10:ef:18:d5:c7:08:dd:86:
         0e:ef:37:24:10:b3:c8:3e:ce:9d:3d:a6:8b:9f:08:c9:77:0d:
         e5:de:ac:72:2a:d7:a4:5b:71:99:6a:0b:20:4e:9e:21:55:f6:
         2a:0e:40:33:1e:7f:f4:af:3f:54:2e:8e:96:88:3a:f8:49:6a:
         73:4a:6a:01:18:2b:23:50:7d:94:e2:7e:00:d1:52:ec:89:ab:
         7b:ac:08:dd:7b:d3:84:33:75:44:7a:af:89:6f:86:64:94:35:
         b0:1f:5e:e5:db:d9:a5:64:8b:24:69:cf:bd:35:95:e7:d1:5f:
         3c:49:32:59:e1:47:bf:07:b3:51:78:d9:a7:d8:52:68:71:9f:
         14:16:15:f4:df:e3:91:ae:26:2e:b0:31:28:c7:14:65:0a:c8:
         d4:12:0f:44:a0:d8:e2:95:4b:2a:38:cb:a4:98:e9:a9:91:0c:
         d9:2b:21:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 02:03:24 2025 by rpki-client