Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft
File:                     KN1yVzxbraKIuDKzmB_0yYsvjFE.mft (raw, json)
Hash identifier:          iJyCdvm9Q+Go0NKDTFwPfvX4Gr6bu0KC5o6EuLCLUb4=
Subject key identifier:   B5:7B:74:9A:93:83:9A:17:43:C6:01:95:23:33:A9:90:92:2B:A2:DB
Authority key identifier: 28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51
Certificate issuer:       /CN=A9180174/serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51
Certificate serial:       04FC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft
Manifest number:          04F6
Signing time:             Tue 10 Jun 2025 23:37:57 +0000
Manifest this update:     Tue 10 Jun 2025 23:37:56 +0000
Manifest next update:     Tue 17 Jun 2025 23:37:56 +0000
Files and hashes:         1: KN1yVzxbraKIuDKzmB_0yYsvjFE.crl (hash: mSEdcVVXpU7Tfg/Eza9XErRnJQjBDwJ0q4y0N4e37J4=)
                          2: F6750B60168D11EC89C9CB5DC4F9AE02.roa (hash: 9is5aeB2FzFVh9EnamHZGKMz2wLecoiTResPsgf3D2Q=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl
                          rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 23:37:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1276 (0x4fc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9180174, serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51
        Validity
            Not Before: Jun 10 23:37:56 2025 GMT
            Not After : Jun 17 23:37:56 2025 GMT
        Subject: CN=6848c1d5-cb04
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:a9:16:b4:01:b1:e6:7c:6e:0b:22:1d:54:82:
                    b2:c2:06:f9:8b:6d:a0:4a:e4:d7:d0:b8:ae:1b:14:
                    64:b1:97:ca:43:da:66:5f:b6:c4:7a:ab:33:25:24:
                    38:7b:de:fa:57:7d:f8:8d:b0:b9:22:b4:90:9d:4e:
                    7c:2e:68:e0:06:cb:ce:78:49:f2:8d:3b:00:c5:05:
                    b4:6e:1e:95:2d:53:4f:e1:f1:03:27:7a:bb:ef:35:
                    44:2b:70:2c:be:2f:96:e4:3d:2e:97:c2:a3:65:0d:
                    a2:45:a2:1f:57:e8:3a:e7:f6:12:f6:57:f9:b3:0e:
                    33:ea:a3:b3:70:8f:1c:72:4e:9f:19:45:9d:fa:b2:
                    54:ae:d5:e1:61:30:87:94:79:3c:3d:5a:7a:12:37:
                    6f:84:ae:1b:17:c2:f5:4d:80:58:42:33:61:7f:81:
                    16:40:8d:2b:86:cd:92:8f:09:fe:79:42:bf:f7:84:
                    6c:11:b6:a5:e5:49:2b:e5:52:8d:98:0b:1c:c4:15:
                    57:94:b8:0d:bb:8c:89:5d:68:c0:a0:d9:93:d3:02:
                    4f:05:30:59:9a:53:8b:6c:43:ed:ff:22:42:cf:da:
                    d3:ef:a7:0a:14:d9:54:19:cd:a9:da:c2:70:ca:39:
                    10:89:2d:85:64:c9:2e:71:00:7e:59:9c:5b:33:ed:
                    92:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:7B:74:9A:93:83:9A:17:43:C6:01:95:23:33:A9:90:92:2B:A2:DB
            X509v3 Authority Key Identifier:
                keyid:28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bb:26:23:19:f5:73:00:11:2c:b4:34:e1:58:4c:4c:0c:d8:bb:
         c7:89:20:00:60:17:1f:d5:1c:42:f3:9b:2f:8f:e6:40:aa:07:
         68:70:0a:bf:cb:35:64:96:2d:b8:5a:30:57:d1:df:b2:dd:96:
         8b:93:21:9b:87:7b:2f:c6:6a:5a:5a:20:31:df:d7:24:48:af:
         8e:32:7d:77:64:6b:b7:87:47:56:be:ce:52:5f:9e:d9:c2:14:
         9f:85:37:a7:4f:49:6c:67:2f:93:2c:2a:54:e9:f7:0c:e8:02:
         b3:d2:ed:85:f7:ed:b4:8e:71:69:bc:7b:81:b8:b6:be:da:4e:
         16:39:32:87:e5:8a:52:da:06:de:05:47:86:59:4d:27:71:f0:
         36:7d:17:d3:f2:c0:75:3b:ba:66:d1:f6:89:fa:37:65:60:76:
         33:dd:0a:9c:33:87:83:36:a3:27:e1:00:97:be:13:97:7e:ed:
         a2:b9:a5:03:b8:b4:9f:f8:ce:f8:72:c6:08:a1:75:f0:ee:f4:
         90:1a:b7:97:63:95:bf:f4:90:ef:68:b7:54:c0:8f:b3:17:a5:
         b6:b3:9a:e2:00:34:3a:58:38:b0:a9:40:63:08:b9:fb:ab:94:
         6b:5e:0b:c4:ff:2f:b4:af:6e:80:90:2d:39:2c:52:c5:65:d2:
         02:1b:e2:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 19:26:47 2025 by rpki-client