Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft
File:                     aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json)
Hash identifier:          EduFE55w5hXeFbXDAx5x+15TPzM0eIYcbOvkRVRjvMo=
Subject key identifier:   60:94:C8:64:47:58:9B:8D:04:FC:7B:B9:67:4A:7D:15:22:B3:02:B8
Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F
Certificate issuer:       /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F
Certificate serial:       05BA
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft
Manifest number:          05A9
Signing time:             Thu 10 Jul 2025 23:39:47 +0000
Manifest this update:     Thu 10 Jul 2025 23:39:47 +0000
Manifest next update:     Thu 17 Jul 2025 23:39:47 +0000
Files and hashes:         1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: mb0a0K10dxinOxqxobgfR/IAQttksw72Fyx3KAMq6Z0=)
                          2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q=)
                          3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: 4sD3HQWKjSm5VjpYk8vQ01ZycYjzVEzhHz6+9q9It7w=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl
                          rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 17 Jul 2025 23:39:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1466 (0x5ba)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F
        Validity
            Not Before: Jul 10 23:39:47 2025 GMT
            Not After : Jul 17 23:39:47 2025 GMT
        Subject: CN=68704f43-4144
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:f1:e8:41:35:4a:c6:73:26:5e:85:62:ca:88:
                    1b:22:5f:b2:76:60:0c:ac:8d:06:d5:39:b3:11:6e:
                    e8:a2:7f:b3:a4:e1:c2:03:d6:c0:52:90:53:66:7e:
                    f3:fa:1b:09:96:af:38:03:84:a5:e5:04:78:43:61:
                    33:79:6e:41:48:cf:c1:32:fb:25:54:2e:f6:72:d1:
                    ba:67:05:b4:1e:6b:14:59:94:b1:8b:3a:c4:c3:9d:
                    0c:23:3a:97:dd:57:ca:05:c2:82:c7:9a:a4:e5:54:
                    e7:cd:5a:70:f6:3d:16:b3:df:df:1b:65:a6:dc:56:
                    91:01:ae:8c:c4:e1:44:86:96:6a:4e:07:9f:91:09:
                    8c:7d:00:e2:7b:29:38:c9:6f:08:a4:3b:a6:2e:82:
                    90:ef:73:6b:7d:f5:3a:0f:bb:92:4a:b4:b1:93:a4:
                    75:0b:43:07:24:b8:20:b8:71:9e:33:12:6c:19:15:
                    e3:b0:29:6b:8f:a1:f7:2f:ae:5b:20:12:68:82:23:
                    cd:39:26:b7:6f:e1:12:cc:24:ec:bd:88:05:43:8b:
                    43:4b:6c:b8:22:e3:74:b3:13:a6:71:c6:5f:c3:3e:
                    4b:f8:dd:75:d3:96:a5:cc:51:44:4d:eb:5e:68:5b:
                    d4:eb:23:37:6a:b3:59:70:2c:27:db:92:a7:9f:e9:
                    16:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:94:C8:64:47:58:9B:8D:04:FC:7B:B9:67:4A:7D:15:22:B3:02:B8
            X509v3 Authority Key Identifier:
                keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:4a:c8:41:31:5e:ed:a1:dd:09:59:5a:65:8c:41:9b:aa:2c:
         4c:2e:62:c9:73:32:ab:c6:ab:f9:a1:83:b5:5a:b4:1d:27:81:
         d3:4f:26:5a:ff:48:a8:59:50:ed:fb:7e:c4:df:a1:dd:09:66:
         8f:ef:5a:f3:d7:a7:d2:b5:05:dd:79:10:32:c1:5d:25:fb:5d:
         8f:0e:39:1e:7c:f7:ff:da:fd:ff:ec:b5:70:1c:14:36:31:c2:
         93:d2:3f:39:42:58:55:fb:11:63:97:84:24:56:fc:b0:bc:35:
         69:83:cd:eb:eb:d0:6c:62:c3:9b:3e:dd:6c:46:5c:ff:13:d1:
         30:47:33:ed:e4:50:ed:36:6e:bf:6a:c5:62:f0:64:7d:96:80:
         a7:8c:9d:15:62:70:2e:e1:22:09:f1:c7:b0:c0:06:5e:97:32:
         37:da:e9:0a:6a:e8:09:70:92:a5:04:81:07:e5:6b:e8:de:d6:
         b6:b9:93:e0:2f:f0:ed:5d:af:a7:38:17:6e:23:cd:60:95:5d:
         88:01:e9:ec:2e:ac:0f:db:a4:37:84:cb:9f:8b:b2:fb:a0:ee:
         38:bd:40:62:e8:28:25:de:11:23:9d:2c:f9:e1:cc:bf:ef:b7:
         dc:ab:6d:c3:56:72:ed:b5:ab:a2:0e:b7:4f:b3:8a:a7:bb:68:
         50:6f:7c:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 12 16:42:34 2025 by rpki-client