Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft
File:                     kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json)
Hash identifier:          aRPeNToQAeM1DFCjuti8GHG4qOSdJ/odJ8264Ktagp4=
Subject key identifier:   FC:70:2D:DC:C8:C4:72:2C:2A:D5:A7:66:DF:3A:87:D3:D3:A2:FE:2F
Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11
Certificate issuer:       /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611
Certificate serial:       0CAA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft
Manifest number:          0C9E
Signing time:             Thu 12 Jun 2025 18:01:27 +0000
Manifest this update:     Thu 12 Jun 2025 18:01:26 +0000
Manifest next update:     Thu 19 Jun 2025 18:01:26 +0000
Files and hashes:         1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: kjvVVN636QNwCr0ynZNrSfYot1Db2PUdpJqxmGpLkI8=)
                          2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: hSO23qhSJreuhOLk9R8p+4DtFYxsss4sjYdKljRJK2k=)
                          3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: 7iLE2NbcVEE13k7k5xb5wiFVYhBSAES33qNPZQmTZqs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl
                          rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 18:01:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3242 (0xcaa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611
        Validity
            Not Before: Jun 12 18:01:26 2025 GMT
            Not After : Jun 19 18:01:26 2025 GMT
        Subject: CN=684b15f7-2ad8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:70:94:87:a8:0e:dc:58:a4:91:ce:d7:1d:1a:
                    6b:b2:ac:8f:99:15:87:8c:8c:d6:b3:02:22:9f:22:
                    e5:66:2f:29:fd:3b:bf:f2:bf:07:7f:b6:b4:6a:33:
                    0f:27:ba:77:01:4b:d4:fc:1e:97:6e:dd:01:ef:8e:
                    69:d9:96:f8:ad:df:c7:b2:10:44:9a:16:30:03:56:
                    f6:91:75:27:1a:8f:dd:d1:b0:91:e5:56:c4:f8:39:
                    e6:36:f3:e7:53:2d:24:e2:c8:9a:1b:f1:e4:6e:fe:
                    90:83:42:a6:72:e1:6b:3d:14:ec:88:ac:46:2c:c9:
                    b7:45:80:42:d9:34:a6:4a:a0:cf:b4:88:27:1b:69:
                    95:f3:af:5d:7a:8b:48:cf:2a:3c:8b:b9:b9:8b:d5:
                    15:78:63:40:2f:a1:db:ac:40:ef:c6:fb:2a:25:ad:
                    f8:4e:75:c8:2e:e0:87:b4:04:af:23:41:8b:69:37:
                    87:4e:73:08:e1:f8:23:10:05:9d:43:39:9f:83:a4:
                    d0:d4:8d:31:c4:ff:cd:53:8d:9f:06:d7:de:db:74:
                    2c:b6:49:8a:4b:89:aa:4d:2e:59:54:02:2e:a3:87:
                    60:5b:e7:73:76:a2:0a:56:0b:f9:13:52:02:7a:61:
                    e4:bf:2b:38:87:1f:4a:28:25:5f:98:30:ea:81:23:
                    01:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:70:2D:DC:C8:C4:72:2C:2A:D5:A7:66:DF:3A:87:D3:D3:A2:FE:2F
            X509v3 Authority Key Identifier:
                keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:e4:e5:ff:1a:71:3b:43:fe:55:cb:be:e0:55:b2:7e:e1:12:
         98:d3:07:ae:54:7e:18:1b:fa:20:ce:17:6a:e0:5f:13:9e:ea:
         36:fc:4b:15:7c:47:43:02:44:16:7e:14:4e:e3:80:2c:9e:63:
         23:87:ed:34:21:94:22:7c:aa:3f:aa:f0:95:b4:1e:ff:8b:e7:
         28:3d:b7:20:8d:8a:9e:c3:fe:6c:af:af:9c:76:01:09:07:eb:
         23:e0:e5:c4:0e:7d:fd:2d:9e:aa:1c:74:a4:f7:dc:c5:26:3e:
         45:59:0a:f0:76:e2:c8:80:f6:2c:99:f8:2d:ad:68:80:36:dd:
         a3:d4:37:5e:1d:c1:75:e2:41:c9:62:a4:ce:76:ff:84:0f:32:
         52:0d:32:64:39:f3:3b:b3:76:23:44:ee:9e:a6:40:b0:24:8a:
         dc:c0:2b:3d:42:a7:3c:e7:bf:4c:b2:56:d1:f5:11:29:55:58:
         06:28:7c:08:f1:ef:a9:ca:fa:81:f1:dc:22:74:72:e7:2e:2b:
         a5:4f:d6:66:ff:45:b3:44:48:c6:50:95:bd:98:33:f9:44:11:
         35:b7:d6:3e:9c:c8:f0:73:ad:e2:78:4c:c7:27:db:3d:eb:6a:
         d4:e4:e0:0f:0c:61:e6:69:39:d7:b6:7a:a4:68:d5:ef:e9:d5:
         b2:dc:70:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 08:01:45 2025 by rpki-client