Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft
File:                     _dkd0w6bH-o7t-Eq73YhZigSmyM.mft (raw, json)
Hash identifier:          iYAUfRZ1N9pF1ac9y+Cl0Updo58WlPijcOqrqyoUIfw=
Subject key identifier:   08:7A:AA:43:1C:CD:B2:62:BD:FE:CD:9C:4F:EC:69:1C:A6:B2:6E:DE
Authority key identifier: FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23
Certificate issuer:       /CN=A9192B86/serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23
Certificate serial:       0115
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft
Manifest number:          0111
Signing time:             Wed 11 Jun 2025 04:19:02 +0000
Manifest this update:     Wed 11 Jun 2025 04:19:01 +0000
Manifest next update:     Wed 18 Jun 2025 04:19:01 +0000
Files and hashes:         1: _dkd0w6bH-o7t-Eq73YhZigSmyM.crl (hash: /vo1a+DVcx3QrdFVLxQzP1N3mBjp9A52RQcC3Y4fMWM=)
                          2: DECE1662A87D11EE882D7B6EC4F9AE02.roa (hash: C77jJoshdfxzPcbWVGuVdmC/Yt4X5b0+J8bsZe99ndM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl
                          rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 04:19:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 277 (0x115)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9192B86, serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23
        Validity
            Not Before: Jun 11 04:19:01 2025 GMT
            Not After : Jun 18 04:19:01 2025 GMT
        Subject: CN=684903b5-00e9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:79:50:49:b7:e9:b8:35:55:8e:a4:2b:f6:43:
                    ea:fa:3d:1a:5e:d8:da:07:a8:54:aa:93:11:9a:d1:
                    65:94:25:37:3d:07:d4:1b:86:db:54:58:1f:22:c9:
                    0e:25:fe:d2:3d:4d:32:ef:21:13:17:62:58:ff:8f:
                    b6:3b:3a:77:26:34:5c:bd:65:0c:6e:d7:91:fd:0c:
                    b9:ea:1e:4e:1e:64:23:30:99:ff:a4:72:38:0b:5b:
                    ba:01:67:ae:51:62:49:cd:f9:0f:ac:e4:d9:3d:68:
                    7d:cd:5e:8f:5d:63:cb:86:bc:f4:dc:5c:cf:b5:ee:
                    85:31:62:89:d4:2c:26:63:23:79:ad:47:c5:b1:37:
                    29:ff:88:e6:02:c6:fb:18:54:ab:3e:b9:6b:06:5c:
                    48:28:26:3c:35:4f:be:85:11:54:61:bd:fc:c9:66:
                    d3:a7:62:0a:15:8f:4c:c7:5f:a8:ed:f7:cd:da:72:
                    55:e3:b2:08:84:9c:8a:7d:ef:d2:0e:de:3c:bf:75:
                    f6:e3:14:18:64:75:fb:e7:9f:71:9c:fb:9c:dd:5b:
                    cb:9c:d1:8e:f6:ab:ee:a2:72:80:f0:a1:ff:08:6a:
                    6e:d2:6a:ee:72:ac:ac:c8:10:c7:c2:45:68:56:08:
                    4e:52:07:e5:15:b2:f1:65:d7:bf:1a:d5:40:8b:b9:
                    38:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                08:7A:AA:43:1C:CD:B2:62:BD:FE:CD:9C:4F:EC:69:1C:A6:B2:6E:DE
            X509v3 Authority Key Identifier:
                keyid:FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:d7:80:8b:3a:c6:a3:61:4b:af:0f:3a:1b:2a:ba:12:a5:db:
         26:05:ff:f4:0b:a8:a5:17:90:70:c5:6d:28:47:a4:01:82:0b:
         33:e7:b8:c8:0d:59:b2:5b:db:69:26:d3:95:44:02:cf:50:73:
         60:b5:3e:1b:21:66:38:91:19:60:d9:dc:41:cc:94:6b:3f:97:
         68:d3:f9:5c:fe:5d:5c:0d:03:59:a3:b3:99:d5:78:54:43:c8:
         c0:f1:6d:bb:cb:03:1a:c3:1e:db:47:ae:a5:a4:c4:54:3c:3c:
         ae:a6:86:93:cb:7c:ef:10:ee:26:12:af:f3:f4:e5:dd:d6:d5:
         f6:b5:5e:3e:1b:7d:ac:6d:15:87:fb:b8:a1:75:60:71:1c:b5:
         44:af:11:fb:b7:35:60:a3:f8:4c:03:ec:10:f5:8e:30:0d:87:
         71:18:b6:22:87:ec:46:83:e0:5f:f3:49:71:2f:7b:57:ba:30:
         c6:02:a9:21:07:5d:aa:b4:fa:a1:27:95:8a:26:5c:c3:18:9e:
         c9:55:a2:e7:f2:34:85:9f:5d:c2:61:9d:3d:5a:85:62:60:1a:
         ea:a5:f6:63:f9:a8:63:0e:68:a1:93:67:8f:ae:01:4c:e6:d9:
         9b:25:8f:f7:9f:ca:60:7c:f7:5b:1a:8b:a9:01:14:19:1e:76:
         5a:e1:32:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 14:03:15 2025 by rpki-client