Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft
File:                     U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json)
Hash identifier:          HEAhu1IknWGvQCV3TUWk4e2l+pfTTZ4lQX1yzjfsuMs=
Subject key identifier:   A9:B0:75:91:A0:49:1E:C6:43:63:5F:2A:4C:6B:A1:A5:E1:5E:18:DE
Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2
Certificate issuer:       /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2
Certificate serial:       01DE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft
Manifest number:          01DA
Signing time:             Mon 09 Jun 2025 01:53:40 +0000
Manifest this update:     Mon 09 Jun 2025 01:53:39 +0000
Manifest next update:     Mon 16 Jun 2025 01:53:39 +0000
Files and hashes:         1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: 4z/KFTs3Lh2pqUgXukVHome5jzxlF8uTVpw0+e2aYag=)
                          2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: aHr48jg9C6XT7m5IpFV6+gOg/wu3/75OLv4ksFQsrBE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl
                          rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 01:53:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 478 (0x1de)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91736BD, serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2
        Validity
            Not Before: Jun  9 01:53:39 2025 GMT
            Not After : Jun 16 01:53:39 2025 GMT
        Subject: CN=68463ea3-c976
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:b8:14:90:a2:f8:d5:97:a6:54:37:b8:dd:fe:
                    2d:c1:4c:3b:1a:74:52:50:93:76:1f:97:d0:a0:25:
                    7a:c4:d5:85:04:bb:43:82:15:a6:5e:95:04:6d:72:
                    65:7b:79:9a:70:2f:71:57:4c:8d:48:a4:fa:0b:63:
                    23:9d:d0:ad:13:d6:3f:96:a1:d1:1e:45:c8:55:12:
                    53:63:86:49:b2:84:24:8f:d1:08:51:10:58:87:37:
                    41:7c:f5:c3:a6:23:fe:0f:12:db:d6:23:69:b0:8b:
                    f0:24:ea:a5:33:39:bb:01:7e:1f:8f:ac:82:39:fb:
                    1b:a1:36:54:86:f3:0e:e9:5d:42:c6:43:4a:63:50:
                    b6:bb:92:91:c1:dd:9c:ba:be:c3:a4:d0:87:30:78:
                    49:27:d6:cc:3a:5e:d4:26:46:59:72:2a:bc:a8:07:
                    05:e3:61:ba:b9:54:9d:eb:81:08:50:ac:d9:2a:1f:
                    55:46:23:97:8e:d1:cb:97:da:1e:c2:77:93:3a:ba:
                    ea:cc:c8:7e:6a:3d:81:76:5a:39:1b:93:5e:c8:78:
                    a6:7b:a9:53:37:5e:f9:1b:1f:4a:70:bd:a9:18:92:
                    d4:09:12:4e:39:f6:85:3d:ad:ad:be:b2:90:84:7d:
                    f0:64:cd:f1:f0:ab:85:52:47:ce:0e:80:d6:db:4d:
                    1d:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A9:B0:75:91:A0:49:1E:C6:43:63:5F:2A:4C:6B:A1:A5:E1:5E:18:DE
            X509v3 Authority Key Identifier:
                keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:07:26:14:21:a1:eb:2f:39:b8:1a:70:c2:e1:d1:9c:36:e1:
         9d:eb:d3:e8:f6:7d:38:3e:bf:d4:28:f7:a1:60:0c:16:ab:dc:
         7b:84:0b:5d:64:c6:c0:70:f0:bf:af:c4:67:47:90:f5:11:2d:
         6b:cc:c9:fc:bb:44:4f:09:05:be:9c:15:66:80:ac:21:4c:2e:
         2b:56:fb:2b:b8:c6:ba:21:18:40:f2:b9:16:20:a2:fe:ee:0c:
         8b:a3:49:96:e3:0a:df:c3:b7:8a:72:f3:11:50:ce:ff:ea:d1:
         e4:32:27:73:54:a6:76:c7:3e:db:19:9f:b6:f1:ea:e3:7f:34:
         f7:27:51:28:00:b9:c6:93:ee:7e:6f:ce:cd:22:ba:64:84:74:
         e1:fa:46:ad:5b:bd:99:7e:23:c1:eb:05:30:74:89:c8:b4:82:
         94:e6:f7:0c:8b:e8:0f:84:d4:27:be:fa:94:a8:90:9b:58:ca:
         4b:3b:bd:f6:78:b3:83:8e:ed:4e:c6:ae:05:9f:d5:04:74:d0:
         51:b7:d4:f0:9a:fa:55:5c:44:4b:91:a1:02:5f:8d:ba:b3:93:
         96:30:94:4c:70:16:fa:80:a4:4b:65:9c:29:67:03:2f:8a:47:
         b9:bb:18:ea:e8:78:35:95:36:9e:02:fe:0b:f2:25:c0:79:86:
         ee:6b:c6:7a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw
MTJBOTA2RDIwHhcNMjUwNjA5MDE1MzM5WhcNMjUwNjE2MDE1MzM5WjAYMRYwFAYD
VQQDEw02ODQ2M2VhMy1jOTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1bgUkKL41ZemVDe43f4twUw7GnRSUJN2H5fQoCV6xNWFBLtDghWmXpUEbXJl
e3macC9xV0yNSKT6C2MjndCtE9Y/lqHRHkXIVRJTY4ZJsoQkj9EIURBYhzdBfPXD
piP+DxLb1iNpsIvwJOqlMzm7AX4fj6yCOfsboTZUhvMO6V1CxkNKY1C2u5KRwd2c
ur7DpNCHMHhJJ9bMOl7UJkZZciq8qAcF42G6uVSd64EIUKzZKh9VRiOXjtHLl9oe
wneTOrrqzMh+aj2Bdlo5G5NeyHime6lTN175Gx9KcL2pGJLUCRJOOfaFPa2tvrKQ
hH3wZM3x8KuFUkfODoDW200dWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmwdZGg
SR7GQ2NfKkxroaXhXhjeMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF
RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC
dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm
SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCOByYUIaHrLzm4GnDC4dGcNuGd69Po9n04Pr/UKPehYAwWq9x7hAtd
ZMbAcPC/r8RnR5D1ES1rzMn8u0RPCQW+nBVmgKwhTC4rVvsruMa6IRhA8rkWIKL+
7gyLo0mW4wrfw7eKcvMRUM7/6tHkMidzVKZ2xz7bGZ+28erjfzT3J1EoALnGk+5+
b87NIrpkhHTh+katW72ZfiPB6wUwdInItIKU5vcMi+gPhNQnvvqUqJCbWMpLO732
eLODju1Oxq4Fn9UEdNBRt9TwmvpVXERLkaECX426s5OWMJRMcBb6gKRLZZwpZwMv
ike5uxjq6Hg1lTaeAv4L8iXAeYbua8Z6
-----END CERTIFICATE-----
Generated at Tue Jun 10 06:05:19 2025 by rpki-client