Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
File:                     qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft (raw, json)
Hash identifier:          ty6qmsCNn9staQibwjg4CmwY8DizgRDnOq/C9jb/KnE=
Subject key identifier:   FA:6A:B8:E5:03:EF:DA:3D:80:AD:90:61:13:5B:50:89:68:C0:6C:90
Authority key identifier: A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2
Certificate issuer:       /CN=A914D6FC/serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2
Certificate serial:       0209
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
Manifest number:          0200
Signing time:             Fri 13 Jun 2025 01:32:06 +0000
Manifest this update:     Fri 13 Jun 2025 01:32:05 +0000
Manifest next update:     Fri 20 Jun 2025 01:32:05 +0000
Files and hashes:         1: qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl (hash: ty5asgImNy9Dw5iZ1+Ai/VjIQi834cA2eoMUh6Khjyg=)
                          2: 11EC50B48B8F11EF8DE96E60C4F9AE02.roa (hash: dBzmelJqZJRJwarLr24Qo4vmuBT6QmKRJnEzxT0UO6A=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl
                          rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 01:32:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 521 (0x209)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914D6FC, serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2
        Validity
            Not Before: Jun 13 01:32:05 2025 GMT
            Not After : Jun 20 01:32:05 2025 GMT
        Subject: CN=684b7f95-16c1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:b9:45:e0:cb:4d:b8:9c:1c:30:6c:40:aa:aa:
                    46:da:8f:12:28:8e:c7:35:e9:d4:e9:7e:29:5e:ba:
                    bc:cb:d5:cb:86:1c:63:37:91:a6:20:9d:d9:91:60:
                    f7:dd:16:2b:84:51:13:cc:8b:25:a2:8e:26:4a:6e:
                    b2:c4:ec:ba:37:66:25:f8:5a:89:e5:b1:62:10:1a:
                    82:ef:be:d9:ac:a8:5f:6a:77:fa:71:ac:9f:eb:50:
                    92:5f:fb:5a:7a:4a:ac:34:d2:36:16:24:f3:0f:63:
                    0e:8f:72:68:77:85:7e:f5:2e:b9:2c:06:1c:d2:38:
                    5c:8a:a7:84:46:07:45:ce:1f:fa:d6:eb:62:e1:49:
                    b6:e5:9a:e3:7a:ab:ca:93:90:e1:3d:c1:11:f8:cb:
                    00:57:af:33:9a:6b:17:ce:dd:8c:9e:96:fc:96:d2:
                    52:10:50:7d:c8:1c:55:b3:ff:42:dd:1b:f0:bc:1f:
                    86:37:09:5d:31:e4:66:6b:4d:d4:e9:e2:2c:dc:b0:
                    5f:09:e8:59:a1:7f:56:08:cd:d6:2e:f9:09:1f:18:
                    fc:19:9a:e8:da:16:de:3c:4f:99:97:8e:21:85:e6:
                    99:9a:8c:b0:ad:b1:1a:79:04:f4:07:8f:f9:07:e8:
                    26:c5:b3:b7:a5:21:ed:51:d2:e4:2b:97:17:e1:97:
                    1c:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:6A:B8:E5:03:EF:DA:3D:80:AD:90:61:13:5B:50:89:68:C0:6C:90
            X509v3 Authority Key Identifier:
                keyid:A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:e1:57:4c:ae:82:73:99:3b:7f:24:7a:1b:c2:34:5c:d8:e1:
         a5:e4:59:b2:ed:41:36:4e:92:c6:33:c6:04:dc:a5:fb:7c:4e:
         aa:0e:e6:84:10:01:d3:62:52:d2:b5:20:eb:01:3b:6d:b0:e6:
         4b:b9:2d:cf:8e:c8:c4:b4:e5:cb:73:0b:4b:b6:ff:9d:87:dd:
         05:fd:e9:86:2f:1e:38:15:f5:a4:28:7a:88:eb:f0:57:20:a9:
         05:6b:7f:25:19:51:bd:1d:d2:d5:71:c7:f1:8d:ce:6c:ff:eb:
         8b:a9:a8:63:23:8c:d4:38:3f:2a:f3:03:1c:25:06:0b:45:a2:
         36:c0:08:a1:f4:11:b9:0b:12:40:ce:d5:7a:02:c0:86:c1:8d:
         10:96:fa:25:f1:f4:e8:c7:bb:6a:49:c2:44:7d:91:2a:d8:49:
         9c:14:75:8e:c9:b9:20:9d:38:54:92:9c:09:b3:8c:65:ae:a9:
         78:67:a4:e6:53:3f:85:b8:81:b5:f7:6f:d0:37:fa:49:18:b8:
         a7:39:0c:21:76:5f:7b:9c:59:12:b4:06:e1:74:7c:f0:91:01:
         49:d9:8b:6b:2b:56:40:dc:71:4b:6a:c3:65:7d:76:e3:6b:0d:
         6c:fd:48:95:2a:ac:d2:1a:cb:39:e8:cf:77:f9:0f:84:55:1b:
         01:ba:a6:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 05:38:58 2025 by rpki-client