Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
File:                     R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json)
Hash identifier:          q98TCpkKZruxoZl4Tob0/A6gXK/Hv/PTapKfZtHZfI8=
Subject key identifier:   48:16:7C:B0:37:62:BC:AF:13:52:04:B3:A3:89:96:59:54:DB:1B:38
Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3
Certificate issuer:       /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3
Certificate serial:       0D22
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
Manifest number:          0D14
Signing time:             Thu 12 Jun 2025 17:55:50 +0000
Manifest this update:     Thu 12 Jun 2025 17:55:50 +0000
Manifest next update:     Thu 19 Jun 2025 17:55:50 +0000
Files and hashes:         1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: qwCsrltPZKMENVm69JW+5HL/UA0DirTvJHhKlXaRpsg=)
                          2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: O1kd0Y8YHGAuQNE1wq4lO26tfNPiZv4mNi6pAigMPUU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl
                          rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 17:55:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3362 (0xd22)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3
        Validity
            Not Before: Jun 12 17:55:50 2025 GMT
            Not After : Jun 19 17:55:50 2025 GMT
        Subject: CN=684b14a6-381b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:fc:d9:65:48:be:8b:b3:d9:6a:89:e4:43:30:
                    1e:1a:9d:19:9a:44:95:6d:d3:b7:5b:18:e5:6a:a8:
                    53:af:6f:94:dc:c5:e1:76:54:3c:a9:62:b0:81:36:
                    18:60:6b:d7:58:50:fd:3e:4d:7b:33:78:ec:6d:09:
                    35:21:b5:6d:0d:e8:85:10:14:e7:eb:32:50:02:be:
                    70:b7:09:b8:a0:0a:c4:01:99:3c:16:0c:c8:9a:b5:
                    7e:4a:ef:8c:49:49:e9:be:e3:90:48:f8:6c:45:8c:
                    b6:c1:6a:da:15:c4:ad:a0:49:c2:ac:df:c3:cb:3b:
                    1b:6c:39:3e:6f:6c:53:52:ab:02:3b:d9:18:12:5b:
                    20:b8:e0:70:9e:f6:0c:7f:aa:2d:d3:57:11:fd:8c:
                    34:af:4d:61:5b:57:73:25:c1:76:5f:da:16:ec:4d:
                    bd:be:d5:0d:6c:5f:85:f7:4b:fb:61:14:cc:eb:40:
                    9d:aa:10:0a:b5:fa:3a:3c:02:95:76:8a:23:91:65:
                    76:6d:4f:67:db:c7:bc:af:72:62:7e:da:0c:f3:f5:
                    e2:37:62:b9:36:4c:e3:19:a0:8d:6c:fa:1e:26:6c:
                    ec:2f:7b:54:97:8b:61:02:34:ca:24:5b:04:80:fd:
                    af:47:41:ee:0c:31:65:a8:e1:41:ac:4f:b3:f4:cd:
                    8b:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:16:7C:B0:37:62:BC:AF:13:52:04:B3:A3:89:96:59:54:DB:1B:38
            X509v3 Authority Key Identifier:
                keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ba:c5:84:20:4e:54:d3:f8:7b:fe:f1:3a:f9:40:df:af:6b:2f:
         c0:c2:c2:86:41:1a:57:d6:52:92:f0:64:28:5a:8d:e5:6c:c3:
         29:64:8c:40:b7:45:5a:fd:dc:72:ea:fb:1c:6a:d7:10:0e:06:
         a5:8c:fa:18:29:e5:b3:69:eb:d5:80:e7:0c:66:99:7b:9a:8f:
         04:19:0c:5d:92:d0:01:6a:6d:1e:bc:ca:f4:ba:92:0a:1c:42:
         c5:f7:ec:34:e8:e3:c2:a0:fe:6b:8b:75:3c:ce:e8:5a:01:52:
         fe:08:07:f2:a1:c8:f1:40:49:a1:af:37:05:9c:cb:07:08:a6:
         c4:c6:dc:66:5c:4c:8b:a7:ec:30:71:e9:bf:ff:88:5e:2b:11:
         24:34:c5:67:b2:d0:6a:47:01:8d:b1:b7:0f:7a:25:d3:c3:ea:
         c6:d8:25:d6:b3:9a:75:97:05:3b:6f:1e:2f:04:70:b5:12:b3:
         90:48:6e:6a:24:43:97:1c:32:32:cd:74:a3:5c:38:bb:0b:cf:
         47:13:81:6f:a3:f7:77:7e:78:d9:50:83:6f:2f:7c:49:33:ff:
         ba:41:32:02:02:be:7c:a2:79:57:40:5a:2e:9d:ad:d3:87:b9:
         6a:63:98:78:51:fd:06:46:82:e9:cd:ee:96:30:32:08:8b:d6:
         29:e9:63:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:50:59 2025 by rpki-client