Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft
File:                     9HpCypKdg34XkyvKB9ZfgiyWRMs.mft (raw, json)
Hash identifier:          qXkNX6PAoko/N7OCYxlFKXcCWLr6PKY0cN3WyeeBaa0=
Subject key identifier:   3C:2C:3E:9F:11:5D:D7:9F:2D:3A:CF:49:93:DC:EF:6D:23:6D:1F:F9
Authority key identifier: F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB
Certificate issuer:       /CN=A9169A9C/serialNumber=F47A42CA929D837E17932BCA07D65F822C9644CB
Certificate serial:       0107
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft
Manifest number:          0105
Signing time:             Fri 13 Jun 2025 03:04:45 +0000
Manifest this update:     Fri 13 Jun 2025 03:04:44 +0000
Manifest next update:     Fri 20 Jun 2025 03:04:44 +0000
Files and hashes:         1: 9HpCypKdg34XkyvKB9ZfgiyWRMs.crl (hash: r6a8SovUNYFRsah29PdNLY2sOfwTzx3pgc1HRywixN8=)
                          2: 79A50468BCA911EE8F42E684C4F9AE02.roa (hash: WCxfAGIVMH/a++ZJ4jx3iPBs/9NLSjs9q4Xkq6Czo34=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl
                          rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 03:04:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 263 (0x107)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9169A9C, serialNumber=F47A42CA929D837E17932BCA07D65F822C9644CB
        Validity
            Not Before: Jun 13 03:04:44 2025 GMT
            Not After : Jun 20 03:04:44 2025 GMT
        Subject: CN=684b954c-730f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:70:33:22:02:b5:b6:40:5f:25:ca:e5:16:a0:
                    d5:4c:f6:b8:ca:8e:b7:19:87:d6:ac:cf:f2:87:05:
                    17:b6:b9:6c:cf:c2:7b:db:38:57:e5:c4:35:3c:82:
                    97:6e:07:41:03:29:21:03:74:c0:1a:c5:75:f3:72:
                    bf:a5:47:fd:01:e7:87:76:ca:14:15:eb:91:a0:08:
                    00:40:4a:5b:79:6b:c5:81:9b:de:2a:78:57:33:b0:
                    b3:18:c4:64:8b:e8:7b:e3:57:6a:72:72:8f:ab:4a:
                    81:37:25:70:10:18:56:91:f7:2a:9d:f0:8f:09:e8:
                    1b:19:67:25:87:0a:c1:90:42:9b:98:bf:39:e4:5a:
                    ef:ae:b4:e4:3b:7b:2e:b3:c2:9b:be:49:f7:a8:15:
                    cf:57:70:9a:08:fb:be:22:31:38:bc:04:fa:06:35:
                    97:c6:ad:e4:79:50:43:d2:11:ec:28:ac:53:e4:0b:
                    06:35:ef:ec:13:63:62:2e:4a:fb:28:07:ba:34:aa:
                    28:4d:32:d9:10:20:b5:a7:38:83:bb:7b:ab:fc:88:
                    eb:b2:c5:0a:7d:3f:b9:0b:1a:fb:1b:f6:1a:03:fb:
                    e9:8a:0a:1b:06:a5:fe:3f:81:f1:53:8f:be:b3:80:
                    ca:0e:f7:ee:78:1b:3d:57:1b:af:c5:be:c4:8c:a0:
                    fd:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:2C:3E:9F:11:5D:D7:9F:2D:3A:CF:49:93:DC:EF:6D:23:6D:1F:F9
            X509v3 Authority Key Identifier:
                keyid:F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:b7:5d:36:48:93:a5:49:04:3c:0e:be:eb:45:6c:6e:1a:a9:
         6c:1c:c0:32:3d:72:77:9d:d7:c7:b0:7a:0a:30:ed:b3:a5:ae:
         42:e3:e0:80:20:40:4a:ec:d9:fc:32:98:4d:91:f1:11:8c:a4:
         65:4e:0d:2a:18:9f:92:19:a0:96:c1:9b:a4:19:61:32:cc:ce:
         c2:df:ab:02:fa:00:1c:30:2f:7e:e7:b3:4b:79:0e:e5:1a:9e:
         ba:1c:b9:67:1c:1f:d2:c6:09:c3:e0:ff:ac:7b:cb:90:07:93:
         d6:4d:b4:9c:19:bc:07:43:bc:f8:34:4c:6e:a1:ff:7b:66:00:
         b8:69:15:8a:65:c8:dd:af:22:ed:d5:67:ef:3e:86:88:91:01:
         12:97:87:df:ed:7a:e7:85:0e:a5:e0:90:80:59:c5:57:0e:29:
         a7:c5:c3:3b:d1:be:05:a7:53:b8:ed:51:e8:84:1a:20:b7:d6:
         ce:76:a5:be:b1:3b:0f:a1:dc:c5:1b:12:ae:2a:a5:e6:b2:a1:
         18:0c:b9:b8:5e:42:89:f7:dc:ea:33:93:d6:4f:91:b2:27:c6:
         8b:fa:5e:4b:93:67:51:1a:e7:df:8f:e2:5f:6c:78:1c:92:5f:
         e5:67:6f:28:18:d3:18:e6:c3:d4:18:c7:c2:90:df:4e:b7:6a:
         e5:b1:ae:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 08:34:28 2025 by rpki-client