Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft
File:                     Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json)
Hash identifier:          a3xAeS1yHxrdIKizpF3Pyih58Tp4VK4rzikLqIh7sSI=
Subject key identifier:   19:CC:93:83:4C:41:1C:E0:9C:96:16:27:C5:2C:96:0D:FC:7D:35:92
Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0
Certificate issuer:       /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0
Certificate serial:       B9
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft
Manifest number:          B7
Signing time:             Wed 09 Jul 2025 06:47:29 +0000
Manifest this update:     Wed 09 Jul 2025 06:47:29 +0000
Manifest next update:     Wed 16 Jul 2025 06:47:29 +0000
Files and hashes:         1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: lj/KYJdUFz1bFhLX7dIwjgNXGXK8T1cuvHkwHY5XSwo=)
                          2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl
                          rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 16 Jul 2025 06:47:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 185 (0xb9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0
        Validity
            Not Before: Jul  9 06:47:29 2025 GMT
            Not After : Jul 16 06:47:29 2025 GMT
        Subject: CN=686e1081-5c67
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:32:ec:7a:df:28:f2:57:07:c8:98:26:83:c3:
                    76:ae:e5:a8:f2:e5:d6:bd:cd:5d:a2:33:92:ce:8c:
                    18:c4:37:36:24:1a:85:9e:93:61:15:25:02:67:5c:
                    bb:ea:27:3d:d0:9a:5b:46:b2:09:34:7d:bb:e5:9d:
                    b3:ed:20:3b:10:4a:b0:cc:5e:64:41:6e:70:f3:42:
                    6e:e2:f8:f3:ad:3e:b9:2a:a0:ef:35:eb:b4:f0:83:
                    05:cd:80:8e:ff:15:cc:03:6f:f4:25:0d:79:4d:79:
                    31:3d:36:55:56:c6:6b:24:63:06:82:e5:be:8d:f1:
                    5a:13:05:f5:70:97:ca:c1:cb:b5:ad:5e:17:35:91:
                    af:9c:48:d5:52:29:95:62:fa:11:dc:f1:4f:8c:52:
                    a7:34:98:ad:3b:dd:67:d0:a1:fe:94:24:80:4c:b1:
                    6f:dc:dc:d8:06:9a:98:7b:6e:4e:76:0a:7c:c6:98:
                    b4:3c:38:54:57:0d:be:11:7a:d2:00:65:a8:86:c8:
                    23:c7:b3:46:c3:92:e4:3a:94:a6:9e:58:8b:b7:55:
                    da:bb:72:ca:a8:99:06:f9:f6:45:23:29:d5:79:a4:
                    26:8b:be:1b:7e:0f:88:49:8b:d4:41:ba:cd:ed:86:
                    5e:c0:bf:cb:96:07:99:27:e0:72:9b:3f:f4:72:08:
                    0a:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:CC:93:83:4C:41:1C:E0:9C:96:16:27:C5:2C:96:0D:FC:7D:35:92
            X509v3 Authority Key Identifier:
                keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:4e:6f:7f:b2:02:dd:58:31:d6:8f:f3:89:9f:e0:73:19:41:
         d9:3d:82:57:5e:bb:40:c3:af:2b:d4:97:1f:1a:f0:69:18:5e:
         9d:42:8e:72:22:1c:89:a6:5a:33:56:52:e0:2f:15:a2:07:8f:
         8f:88:11:c4:ae:07:2e:3d:45:16:86:82:0f:04:c2:8e:ff:66:
         fe:ef:be:cd:64:89:81:e5:26:0e:69:a2:f4:ed:06:10:0c:f2:
         55:f7:99:43:3c:f6:e4:fa:8c:03:90:8d:20:df:69:18:01:5f:
         78:13:e1:09:1d:97:84:23:5b:3d:22:1e:b7:ec:1f:2b:b8:11:
         13:f7:64:61:3f:41:50:73:97:c6:02:4e:02:93:ee:7d:95:1e:
         e6:a6:9a:b4:11:31:d3:79:4b:45:9c:32:83:26:ec:22:b2:b8:
         be:f6:e7:50:82:37:79:6e:fd:4c:87:80:b4:22:8f:9d:0b:96:
         b5:ca:df:1c:ab:b5:f6:cb:7f:ed:72:87:32:f7:ba:d9:38:10:
         3f:e2:4c:88:10:2c:60:e0:67:d2:78:63:3f:6b:69:64:68:20:
         5f:ac:eb:9b:55:e8:d6:2f:65:5f:e3:2d:77:95:54:22:fc:ae:
         ac:20:ae:6f:08:24:b6:66:99:2b:21:2b:28:4e:bf:45:42:13:
         90:67:28:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 9 09:46:39 2025 by rpki-client