Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
File:                     qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft (raw, json)
Hash identifier:          FVWGcOqZsVQc1SyyihJUNilxtmaxGEjrT7XyvuvBWIM=
Subject key identifier:   59:C8:94:FC:F1:D6:06:10:5E:4F:D7:54:D5:74:F7:56:22:46:AD:A7
Authority key identifier: A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2
Certificate issuer:       /CN=A914D6FC/serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2
Certificate serial:       0207
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
Manifest number:          01FE
Signing time:             Mon 09 Jun 2025 01:37:18 +0000
Manifest this update:     Mon 09 Jun 2025 01:37:17 +0000
Manifest next update:     Mon 16 Jun 2025 01:37:17 +0000
Files and hashes:         1: qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl (hash: 8GfMOi0IOuFf+b9xKIK3SYd5VS3FJTKXADDBLiSPVZ8=)
                          2: 11EC50B48B8F11EF8DE96E60C4F9AE02.roa (hash: dBzmelJqZJRJwarLr24Qo4vmuBT6QmKRJnEzxT0UO6A=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl
                          rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 01:37:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 519 (0x207)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914D6FC, serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2
        Validity
            Not Before: Jun  9 01:37:17 2025 GMT
            Not After : Jun 16 01:37:17 2025 GMT
        Subject: CN=68463ace-9019
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:48:f5:ad:19:d7:96:03:9e:d3:c2:0e:1e:2a:
                    5b:60:c6:f0:55:d9:ef:54:57:4f:b8:95:36:3d:83:
                    bc:60:ea:9f:e3:74:d6:fc:42:c3:ca:41:43:88:22:
                    95:1e:1d:5a:f8:7a:b9:34:d0:a0:dc:ae:67:3b:92:
                    4d:cd:9a:a3:ab:01:b3:f3:76:87:ba:91:b9:41:54:
                    25:bb:eb:8a:23:70:17:89:82:4a:52:61:58:3a:72:
                    56:2f:b0:34:1a:85:b4:67:c1:72:f5:76:38:e1:ae:
                    e7:18:4d:77:ae:17:b9:cc:2a:af:73:1f:8c:54:c2:
                    ac:2a:25:23:e9:bf:e6:97:f5:8c:1e:ba:29:7c:77:
                    2e:7e:8d:f1:92:4a:64:2e:c4:a8:c4:5b:f2:36:cf:
                    68:58:56:69:85:f2:a3:fb:1a:7f:f1:4c:df:f9:ba:
                    f4:64:0c:98:29:bc:92:49:5a:5f:dc:7e:5b:2d:0b:
                    1d:4d:5d:68:a0:ff:5c:9e:7b:9f:67:42:6c:cf:2a:
                    5b:8f:8b:3c:17:02:66:b0:6e:98:14:0e:6e:81:90:
                    5e:a3:0f:9a:20:78:77:70:91:c0:f0:94:9a:dc:6d:
                    0d:7b:87:da:17:ca:59:e8:82:c4:0a:dc:5d:84:28:
                    e9:4c:17:fa:90:9c:28:69:14:b7:c2:d6:10:ad:5b:
                    77:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:C8:94:FC:F1:D6:06:10:5E:4F:D7:54:D5:74:F7:56:22:46:AD:A7
            X509v3 Authority Key Identifier:
                keyid:A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:52:93:2a:1b:e8:4c:2c:b9:04:5e:f2:4d:02:ec:a4:84:60:
         28:fb:d5:a5:f9:63:49:b6:4a:20:a8:85:80:8f:3d:73:db:00:
         90:9c:77:9b:c9:aa:cd:f4:ef:81:49:76:a3:6c:e1:ca:5c:d4:
         37:2d:47:06:a5:08:03:99:db:e5:6c:38:2a:3a:bd:0b:d0:b8:
         85:aa:c0:21:06:6e:8b:00:0b:7f:3c:40:f9:34:84:4d:cb:50:
         70:35:65:95:b2:af:f7:2e:70:22:93:aa:e7:56:76:84:4c:60:
         d1:ed:ec:90:77:19:2a:c1:cc:1c:97:3f:f8:c4:26:eb:2d:fb:
         5f:7e:95:ed:2f:5e:05:e8:6e:1d:85:bb:37:d8:c7:57:6e:2b:
         79:b3:96:9b:cd:5f:5d:2a:8a:45:31:a0:5d:a9:ff:43:8b:08:
         d6:68:d2:7f:69:ea:1b:8d:a4:d1:0a:06:2d:16:ee:ae:0d:53:
         ef:b1:a4:11:be:fb:04:52:2e:57:11:a3:d2:dc:0a:74:24:18:
         61:df:8c:c4:0e:7c:27:bf:d4:10:3e:ec:fb:f0:99:8a:0b:01:
         03:8d:d1:6b:47:98:a6:2c:7d:a0:c1:38:27:84:94:9d:23:80:
         da:57:99:47:63:89:3b:77:7f:91:b5:1f:46:2f:d9:6f:17:12:
         0d:71:5c:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 19:39:55 2025 by rpki-client