Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
File:                     1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft (raw, json)
Hash identifier:          kD1EISnYD9BPTtKkIFzxCRmuKewFw2dyY52Glvvcdl0=
Subject key identifier:   22:41:5A:C6:07:74:0F:20:81:8B:12:FB:C2:9B:D7:BB:36:76:37:BE
Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89
Certificate issuer:       /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189
Certificate serial:       6A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
Manifest number:          61
Signing time:             Wed 11 Jun 2025 06:34:19 +0000
Manifest this update:     Wed 11 Jun 2025 06:34:19 +0000
Manifest next update:     Wed 18 Jun 2025 06:34:19 +0000
Files and hashes:         1: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl (hash: 5ju59OEkQooGiHQic//noUApYvVhdGE98yEvOaWbybI=)
                          2: 1363F5E60E8E11F082304B42C4F9AE02.roa (hash: hu1JiBFiyTnMySrt80yNdScgCjSfSkHINTEYjzYfdUg=)
                          3: E90F04F4114711F0B6E44E12C4F9AE02.roa (hash: PlQx8+H4QWwRWOJyC7w29KW+ohdqt59u/vmKToMRgGo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl
                          rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 06:34:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 106 (0x6a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189
        Validity
            Not Before: Jun 11 06:34:19 2025 GMT
            Not After : Jun 18 06:34:19 2025 GMT
        Subject: CN=6849236b-cf18
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:2a:b4:35:c5:aa:72:a8:33:64:9c:53:0a:37:
                    5b:87:fd:c4:38:3f:db:4f:a9:eb:06:ca:4a:72:91:
                    63:8e:a0:07:d0:ef:b7:38:22:01:80:b0:c3:d7:8f:
                    d9:3f:51:3e:6f:e7:4d:b9:02:b0:be:ed:e7:ac:01:
                    39:fa:ea:31:a4:60:49:e3:eb:76:9a:82:69:f1:88:
                    95:55:24:10:3b:b1:6e:2d:60:8f:f4:d3:84:bb:3a:
                    da:df:e2:b9:f0:79:c2:10:9c:81:42:78:b7:c2:cc:
                    ea:a1:23:53:c7:db:61:6a:9c:40:0b:00:5d:0b:45:
                    ef:43:33:8d:2e:d0:eb:54:12:41:95:a3:d2:c6:6e:
                    d8:01:27:e4:7d:98:cc:46:cc:66:09:fe:e2:74:83:
                    9c:aa:af:a3:b1:dd:c1:37:51:33:b5:4b:62:fa:6e:
                    ec:e3:5f:6a:42:73:b2:54:9a:16:2c:56:57:4f:f7:
                    7c:db:92:95:a4:78:57:da:f6:09:a1:2e:4a:c9:80:
                    a0:07:56:c5:9b:d4:1a:89:88:34:a9:f4:cb:4c:b2:
                    d4:ac:c3:35:34:27:6a:bd:7a:11:ea:2f:bc:60:f4:
                    45:f0:a8:43:95:08:19:1c:38:ba:80:03:29:ae:6a:
                    cc:67:0a:fe:bd:a8:4a:b1:c1:4e:ff:64:6d:c4:2e:
                    74:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                22:41:5A:C6:07:74:0F:20:81:8B:12:FB:C2:9B:D7:BB:36:76:37:BE
            X509v3 Authority Key Identifier:
                keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:cb:f1:5d:ec:13:a8:89:a8:a5:85:ab:15:fa:1b:bb:85:69:
         f0:b2:a7:e3:4b:dc:08:ca:69:6d:33:0c:21:9e:f0:74:9f:23:
         1d:e8:f2:c4:26:3b:47:12:62:ba:fd:50:cb:74:8c:8d:bb:5b:
         0d:30:a2:d2:f1:25:1d:8a:be:8a:75:cd:4f:09:e7:0e:20:67:
         95:06:b1:cb:dc:37:3e:96:f7:5f:38:85:d2:fd:20:7d:67:98:
         25:c3:e1:6e:83:b0:5d:e9:ea:77:a6:e3:41:62:9a:7b:a6:37:
         cc:01:c8:ed:e6:93:2f:19:11:e7:55:ff:d7:f6:92:4b:d7:12:
         3c:a9:90:1f:c9:8b:d9:19:77:c7:04:07:07:15:a8:9b:ff:01:
         41:42:87:84:63:61:75:1f:7d:6c:1f:b0:0c:39:65:f1:ff:d6:
         e3:3c:05:9f:ab:68:93:89:92:5a:7b:fa:35:4e:5e:5f:76:79:
         55:b3:ec:00:f4:b2:95:cc:03:72:01:f0:50:ce:b1:9b:c6:27:
         05:23:d9:1b:6c:77:87:fe:ff:ca:f6:b0:4d:5f:08:b9:83:23:
         78:c0:37:cf:71:c9:1f:08:fe:53:dd:24:25:a5:6f:fc:32:7b:
         86:4e:70:25:c8:82:de:4d:fb:ec:b0:c0:30:6b:c9:a9:1f:dc:
         86:8e:47:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 20:42:25 2025 by rpki-client