Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft
File:                     2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json)
Hash identifier:          64yKnPnMGJFnV/RoOo9FCs3oe6xDLtcySfQbtjAF2OE=
Subject key identifier:   D1:B1:7F:7A:22:1B:88:9C:C3:1C:60:85:FD:CD:F9:77:C1:0E:A1:B9
Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED
Certificate issuer:       /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED
Certificate serial:       13DF
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft
Manifest number:          13C2
Signing time:             Thu 12 Jun 2025 15:24:29 +0000
Manifest this update:     Thu 12 Jun 2025 15:24:29 +0000
Manifest next update:     Thu 19 Jun 2025 15:24:29 +0000
Files and hashes:         1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: yMZJt8VVPagNhYQDreq7k1B4/x7QI5d7MTWIaHSxwlE=)
                          2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: V/gOKs9LECUvwP7f76II+OxQFAc41Q7rou6YKiKk5l8=)
                          3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: kCVXgcVyC3mGVdPkmV42EUSht4RHcewllIn6s7mcD00=)
                          4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: 6y2+7m6fZBqF1vnJPBAlEhf0LTJdURa/vtEhojNLyMc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl
                          rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 15:24:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5087 (0x13df)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED
        Validity
            Not Before: Jun 12 15:24:29 2025 GMT
            Not After : Jun 19 15:24:29 2025 GMT
        Subject: CN=684af12d-b02c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:5b:f4:0c:c2:3f:1c:74:a3:a6:56:db:ef:47:
                    3d:62:a0:f4:9e:38:22:cf:16:f0:fa:54:f7:c0:84:
                    c4:d0:3a:a1:e0:b6:96:7f:35:20:4f:5e:82:ba:40:
                    7e:17:7b:27:79:a4:9c:95:89:ba:37:d3:68:2a:c0:
                    0a:e3:90:d8:95:be:38:cf:9c:ba:58:1b:a4:5f:73:
                    63:76:af:d3:03:ef:09:64:b4:1a:96:cb:37:ac:95:
                    bc:73:a1:43:86:11:f3:3e:fb:d8:a8:51:e2:8c:5c:
                    eb:08:06:6c:e3:27:de:e0:d6:ef:96:6d:03:ac:d0:
                    f3:74:2d:b3:47:6c:bc:16:7d:6d:0e:35:27:45:7b:
                    fb:43:ca:3b:75:ae:11:d0:db:d8:42:9d:1a:52:90:
                    7e:e3:5e:5a:ea:2a:73:da:43:79:ea:80:12:96:ff:
                    b5:47:63:67:2e:98:36:3f:2f:c1:f5:00:dd:12:15:
                    fa:a9:20:ef:79:61:03:2b:47:51:ca:4e:58:56:32:
                    b6:53:80:a4:c1:5e:27:12:09:05:53:06:3b:78:d2:
                    ba:70:00:76:99:86:36:dd:50:69:6c:29:47:7b:34:
                    96:65:a3:3e:9f:7f:15:88:06:25:ed:92:0d:e2:e2:
                    45:26:b4:74:1b:b4:18:32:83:c8:32:8e:ac:93:da:
                    cf:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D1:B1:7F:7A:22:1B:88:9C:C3:1C:60:85:FD:CD:F9:77:C1:0E:A1:B9
            X509v3 Authority Key Identifier:
                keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:1d:8d:e8:d3:bd:68:cb:83:98:66:71:d4:5b:92:e9:d0:16:
         7e:e5:b9:87:d2:f1:9f:a6:57:4c:6d:5b:b5:57:e3:78:a6:a9:
         f2:90:71:31:8b:09:dc:19:a8:1c:b3:96:ef:fc:1a:fb:7f:22:
         d7:c9:4f:bf:dd:d4:3f:94:da:6d:c8:e1:e8:06:4e:82:d9:c5:
         ba:e8:a0:2c:c2:4c:97:57:99:c9:9c:a8:8b:16:a8:2d:b9:b9:
         c1:7c:5d:bd:3e:5f:d8:05:40:55:55:99:20:6b:2d:7b:36:e3:
         b4:af:d1:69:15:db:5b:2f:72:cd:65:8a:56:fb:d4:49:7a:19:
         b7:37:0a:59:77:c7:4a:62:30:60:01:af:14:f6:a5:f1:7f:e4:
         10:c7:39:24:3a:27:46:01:fb:64:26:af:75:06:14:87:1d:10:
         b3:21:94:44:54:27:6b:1e:79:de:e0:54:28:87:76:45:19:56:
         df:6a:4f:26:1f:c0:4e:0f:71:64:31:ee:51:7b:1e:b7:f9:d7:
         d0:87:2d:7f:d1:ff:7d:14:90:9c:a5:08:93:5d:40:74:09:39:
         eb:b0:10:79:33:46:30:b3:fd:9f:5d:58:18:76:3e:49:9f:f3:
         bc:cd:79:2b:eb:16:31:5e:45:d7:3b:57:69:fe:16:c4:0b:26:
         c5:5f:a9:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 01:43:09 2025 by rpki-client