Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft
File:                     k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft (raw, json)
Hash identifier:          D6SSlQRw0ZYtHIznAQdT8am0YlGwUGE63ogcegDDzNw=
Subject key identifier:   85:7F:5D:DA:8D:94:E0:DD:FB:43:6A:72:65:75:98:11:3E:48:13:C4
Authority key identifier: 93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9
Certificate issuer:       /CN=A91E3D15/serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9
Certificate serial:       13CC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft
Manifest number:          13B1
Signing time:             Thu 12 Jun 2025 16:54:21 +0000
Manifest this update:     Thu 12 Jun 2025 16:54:20 +0000
Manifest next update:     Thu 19 Jun 2025 16:54:20 +0000
Files and hashes:         1: k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl (hash: 8odSdGzOxTLletRvDnamCewdEVSeEXPBl/I12LaV/pg=)
                          2: A04E05E42CE911EC8F99F486C4F9AE02.roa (hash: bw4oyTaqoqfdp29e2lYAU370gy2twH+W8CpSCQrTXLg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl
                          rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 16:54:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5068 (0x13cc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E3D15, serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9
        Validity
            Not Before: Jun 12 16:54:20 2025 GMT
            Not After : Jun 19 16:54:20 2025 GMT
        Subject: CN=684b063c-d9d2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:98:5f:ac:0f:a2:93:a3:a0:01:5d:8b:5d:c8:
                    b5:e3:b5:02:7e:6c:09:db:d6:09:79:79:bd:e2:dc:
                    50:c2:ee:18:47:9d:38:3b:9d:33:e4:5c:7d:c5:8d:
                    ee:5c:a3:45:e5:b2:0b:f4:62:36:8b:8f:b3:a1:81:
                    a6:6e:60:b8:7d:44:28:90:9b:09:09:eb:33:7a:4c:
                    e0:e9:f8:8f:44:8c:c2:46:95:dc:3e:24:63:d2:b5:
                    c8:73:8a:4f:85:36:e1:ea:f1:b3:78:61:46:56:f1:
                    c6:88:9d:5f:f7:d4:4d:ad:67:39:39:47:f4:a5:02:
                    dd:da:92:8d:82:ea:45:dd:ae:ce:71:78:a1:6f:c5:
                    97:25:4e:5e:cf:b0:83:a3:a7:fb:9a:2a:ac:98:c7:
                    d3:72:17:83:36:97:7c:18:a8:42:33:af:05:fb:ae:
                    3f:fd:1d:13:df:a6:37:53:e4:8c:15:87:f9:03:15:
                    9c:d5:20:74:83:f0:71:39:fd:6c:21:0f:b0:c4:57:
                    1b:61:67:d2:57:b9:5a:11:cb:70:c2:bd:0c:f7:7e:
                    be:2e:db:d3:8a:3b:d7:52:bd:4c:e5:69:6e:4d:38:
                    16:5f:59:1b:2b:62:aa:66:89:b7:75:38:56:2a:f6:
                    f5:23:33:17:45:5d:36:14:84:2d:4f:a5:c3:99:e9:
                    ba:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:7F:5D:DA:8D:94:E0:DD:FB:43:6A:72:65:75:98:11:3E:48:13:C4
            X509v3 Authority Key Identifier:
                keyid:93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:2f:31:41:22:c5:29:4a:8c:67:5d:7b:e2:2f:11:fc:4f:5d:
         b6:8f:e5:71:da:a0:cc:91:f0:ae:75:ce:2a:de:83:b7:b3:c1:
         aa:07:68:13:16:79:08:c2:a0:d9:37:7a:6f:e7:ce:79:dc:b0:
         d0:50:b3:3a:84:80:8e:d9:51:0a:1f:70:18:c5:ba:b6:1c:df:
         04:99:c1:3f:40:ee:af:0a:e7:e3:fe:8d:23:49:3f:cd:2d:b0:
         c7:9f:a1:01:e5:cc:cb:d5:b4:4e:96:53:11:da:3f:f3:9f:7b:
         17:52:18:9f:87:ee:05:89:ef:73:47:05:f2:9c:26:3b:18:a0:
         da:4b:f9:2c:d5:5d:16:c1:a1:66:33:c2:39:d3:b1:82:3b:a1:
         26:20:16:b1:02:ba:ea:40:11:ca:90:26:2e:dd:61:09:c3:a8:
         10:e0:4e:5a:ac:46:35:fd:f0:22:06:cd:ae:d2:48:ae:58:d4:
         7f:b6:64:22:27:c3:1b:14:cc:b7:01:bb:40:05:70:f5:1e:52:
         3f:37:87:1f:73:8c:18:bd:c4:95:41:87:ac:87:93:91:78:4c:
         a3:66:54:0b:41:4c:1b:ce:a6:24:22:2d:88:87:d0:91:38:56:
         7b:8c:2f:d4:e9:14:38:93:0a:55:35:fa:2d:19:1c:ca:59:a4:
         7b:e6:a6:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 01:42:31 2025 by rpki-client