Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft
File:                     Tcfii1RvKgtTjozfgy2aofN8yOQ.mft (raw, json)
Hash identifier:          pMCjX9UmCDqnuk7N2Uv6MxXUGctYXUOt1vOi8Qpi3fk=
Subject key identifier:   3B:7B:0D:4D:43:B9:14:D6:85:65:0D:89:8B:A9:9E:DE:20:A1:3D:05
Authority key identifier: 4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4
Certificate issuer:       /CN=A91423C1/serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4
Certificate serial:       82
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft
Manifest number:          73
Signing time:             Fri 13 Jun 2025 03:40:08 +0000
Manifest this update:     Fri 13 Jun 2025 03:40:07 +0000
Manifest next update:     Fri 20 Jun 2025 03:40:07 +0000
Files and hashes:         1: Tcfii1RvKgtTjozfgy2aofN8yOQ.crl (hash: V1QQxS8q2qP62cPeOu4uAUkmf0Y1+BfgrKJ5//GeOXo=)
                          2: D31DA3FAE55311EFA195DC68C4F9AE02.roa (hash: GYS8k9UwWROEU4CPy3zJZbjxwuE5OSbNBFEHxATP3jE=)
                          3: 1BF014320D5411F09D0E1A4CC4F9AE02.roa (hash: qtTlSykZWAQtBUB9Rat4VpmkVXZoqWdqikbCdbZliz0=)
                          4: 3E9ACB6EE29611EFAE82780AC4F9AE02.roa (hash: wyEjofnc8ole0121WyuEbUERePWJfuYpn1FXolEHMnM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl
                          rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 03:40:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 130 (0x82)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91423C1, serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4
        Validity
            Not Before: Jun 13 03:40:07 2025 GMT
            Not After : Jun 20 03:40:07 2025 GMT
        Subject: CN=684b9d97-4413
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:b2:bc:3c:79:5b:c5:f9:d2:79:41:3f:f1:d5:
                    be:30:d4:7d:de:5a:21:fe:1e:7f:19:e7:fd:1d:88:
                    5d:6c:c3:78:d1:cf:cd:e6:b6:d5:2e:61:6a:f7:e0:
                    a5:18:8a:83:2a:d0:3a:18:67:97:28:c5:c9:77:3c:
                    5e:14:d9:00:03:fa:24:45:41:5f:86:38:ff:d9:76:
                    42:93:3a:ef:d1:ad:f4:80:12:3a:42:85:f5:7b:0f:
                    a2:79:c2:84:20:46:ba:01:0f:75:fc:64:82:e4:75:
                    a4:43:cb:f2:e3:29:db:a8:58:27:69:4f:65:6b:bc:
                    e0:70:4a:f8:f6:cb:ec:95:f3:f2:96:86:a2:6a:ff:
                    24:e6:09:97:aa:f5:c0:b4:8a:7f:32:82:57:a4:4a:
                    60:33:ec:20:a2:75:8e:89:e9:d1:be:6a:0e:34:4b:
                    f3:82:d8:66:1c:a1:d4:27:fb:3b:47:86:3a:98:0a:
                    74:72:24:21:eb:e8:7b:9e:df:e5:77:59:0d:e7:2b:
                    a6:e1:88:b5:a4:61:f6:83:fe:33:2f:28:c9:06:93:
                    9f:a7:cc:18:e2:b0:97:5e:dd:80:a0:cb:f1:9f:2c:
                    83:9a:1e:8a:44:00:15:70:8f:24:4d:15:e3:0e:c5:
                    1d:43:9b:3a:00:86:c3:56:df:7b:50:4a:bc:6a:3b:
                    8c:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3B:7B:0D:4D:43:B9:14:D6:85:65:0D:89:8B:A9:9E:DE:20:A1:3D:05
            X509v3 Authority Key Identifier:
                keyid:4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:19:13:18:c7:99:db:d4:a9:d2:34:df:ca:ca:ec:83:6c:27:
         1f:45:19:10:54:17:26:f4:a9:33:8a:a1:29:ce:33:91:c4:d1:
         ec:18:71:d4:d0:26:8a:cc:42:df:e3:56:6d:a4:cf:57:9b:34:
         b3:24:74:a1:3c:b4:3c:1c:af:bb:16:eb:c6:19:ff:f5:18:6c:
         3e:fe:23:73:f7:79:92:d4:e1:e0:d2:da:4f:a0:0a:fd:37:50:
         a1:ca:57:43:00:ad:e3:c6:2b:95:03:f4:29:9e:a0:8f:77:8f:
         4e:bb:c5:0e:cb:25:9f:24:37:e8:3f:79:78:6e:d7:c3:d9:ab:
         8c:7d:39:94:d3:eb:14:c2:b4:f5:7d:3c:c8:a4:6b:4d:96:43:
         f1:cd:68:c5:a6:0f:43:ad:28:38:b6:57:6a:59:cf:60:78:fa:
         53:c1:d4:84:45:97:29:35:94:9b:59:83:4e:b4:76:f2:be:13:
         54:2d:e7:79:6b:39:f4:4a:b3:37:0e:49:e8:a6:c2:1c:cc:f9:
         a1:3b:f0:a2:3d:36:6d:9a:91:ab:0b:a3:fe:97:bd:86:12:10:
         67:3f:52:5d:ba:24:32:03:0b:7e:58:e9:bd:47:4c:b6:3d:1e:
         31:ea:10:49:34:1d:36:27:26:58:84:9c:2d:a4:e6:58:e5:0c:
         a9:eb:4b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 15:37:01 2025 by rpki-client