Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
File:                     pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json)
Hash identifier:          NggevIkot6sCEajOTgk/2HYxPigmEYiQIVcJQ5ji0Jc=
Subject key identifier:   D8:D7:59:13:86:84:54:F3:0F:B1:05:C6:65:AA:8B:19:E9:F2:0A:68
Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA
Certificate issuer:       /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA
Certificate serial:       013F
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
Manifest number:          013C
Signing time:             Tue 10 Jun 2025 19:12:32 +0000
Manifest this update:     Tue 10 Jun 2025 19:12:32 +0000
Manifest next update:     Tue 17 Jun 2025 19:12:32 +0000
Files and hashes:         1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: g54Ik3a47gwa20Rekn77r9RPKI5bhIdgKzrOQi8Paag=)
                          2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl
                          rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 19:12:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 319 (0x13f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA
        Validity
            Not Before: Jun 10 19:12:32 2025 GMT
            Not After : Jun 17 19:12:32 2025 GMT
        Subject: CN=684883a0-5ef9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:70:39:3d:24:f8:91:a0:35:f0:11:70:e5:5d:
                    8b:a8:25:52:0f:4f:ce:84:92:ff:af:e1:bc:d3:1c:
                    9f:9d:46:1f:73:02:d7:d4:41:5f:18:18:a2:24:51:
                    d3:cd:68:5d:2b:bb:88:f8:20:1b:bb:78:c2:a3:3c:
                    a1:12:27:fe:34:f2:fd:2d:73:8c:d9:4c:ed:81:c1:
                    77:c8:77:a0:22:69:ec:6b:82:ef:e9:51:9a:a0:a9:
                    08:28:e6:91:ad:37:67:77:0c:0d:54:17:79:8a:58:
                    d8:a0:52:ae:c8:a5:46:7e:bc:82:8f:ef:0b:d1:50:
                    b5:4a:a2:08:77:25:fb:bb:37:f1:55:07:c7:0a:6f:
                    ec:11:43:d7:8c:81:85:4a:4f:2f:ab:91:aa:c6:e9:
                    0b:9d:bf:b7:15:67:0d:d3:c5:39:6b:bc:ff:09:91:
                    7b:01:7a:1f:3c:a0:cc:b9:58:df:32:fd:cc:2f:93:
                    2f:e6:80:fc:a0:4a:76:24:bb:48:80:69:f5:9e:c3:
                    fb:03:ff:a7:66:2e:67:3a:69:69:14:32:19:01:3f:
                    65:31:a1:3d:30:93:68:e8:74:25:2d:7f:7d:15:26:
                    a9:84:77:54:15:0e:68:b6:e1:8d:7a:d0:ae:00:d9:
                    52:42:58:e8:3e:29:97:12:30:c0:20:e7:93:2f:2b:
                    ca:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D8:D7:59:13:86:84:54:F3:0F:B1:05:C6:65:AA:8B:19:E9:F2:0A:68
            X509v3 Authority Key Identifier:
                keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:d6:c0:3b:87:97:da:2c:42:f4:a5:2d:28:05:4d:4b:c0:fd:
         07:9f:b9:93:db:fa:78:53:a5:1c:bd:a3:e5:21:81:8f:50:4b:
         20:53:4f:7c:19:e4:99:96:94:ba:a5:82:11:03:fa:1f:91:db:
         ed:e9:6b:d6:53:a7:02:d6:6c:10:49:eb:50:d6:fe:b5:7e:82:
         39:9a:69:61:3a:e7:9b:e1:c7:8d:29:05:33:c3:f1:85:70:06:
         f5:00:69:10:ce:ce:59:54:6e:b7:2e:5f:15:28:85:48:b9:61:
         3e:c5:18:34:63:b4:65:58:e2:5b:76:85:81:ac:b1:17:7d:a3:
         75:b1:a8:ac:0c:ab:fc:d7:1a:ce:a9:1c:47:ae:e4:1a:30:93:
         be:ba:76:95:71:4c:3d:2f:a1:e3:54:43:fe:5d:c8:08:68:8b:
         bc:5d:25:5b:4c:d7:9a:a0:b3:ee:ef:c2:2c:c6:ab:ec:c9:88:
         b6:2c:c8:df:b4:6e:18:94:f1:92:61:a1:7a:a0:0c:f1:8c:a7:
         86:ce:2e:48:76:2d:6b:cd:46:a4:82:4f:98:c7:f7:ce:90:3a:
         5c:2e:18:0a:97:b3:c3:82:2c:4a:ac:86:bd:33:ef:f1:e1:0c:
         3e:2a:c3:65:bc:d3:ad:b4:c1:7d:f2:96:f1:91:b9:ff:8e:6f:
         db:ff:c3:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 21:18:16 2025 by rpki-client