Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft
File:                     rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json)
Hash identifier:          C5FCMhpqFBjK43mbH+NUyNKyWqlVwX0XiEYWMippGt0=
Subject key identifier:   90:11:D8:74:B3:77:94:F1:21:00:7A:13:E9:89:BC:75:3E:D9:C1:AE
Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5
Certificate issuer:       /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5
Certificate serial:       097B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft
Manifest number:          096C
Signing time:             Sun 08 Jun 2025 19:54:15 +0000
Manifest this update:     Sun 08 Jun 2025 19:54:14 +0000
Manifest next update:     Sun 15 Jun 2025 19:54:14 +0000
Files and hashes:         1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: NzWQ0dSdm26EK4tWhj7DLxQqZfdxCEP6TFBvmBpxrKo=)
                          2: 34E183809E5F11EB97709628C4F9AE02.roa (hash: 6TUVFO2Ivu/tY1JvgLaKV+3n0wexlzOCwMKMpOyQlPA=)
                          3: E7F141609E9911EBB4117632C4F9AE02.roa (hash: nwk0Qb0D2pWgRwQM08AvCns/X8x+3fZwLOgEyevfH8w=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl
                          rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 19:54:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2427 (0x97b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5
        Validity
            Not Before: Jun  8 19:54:14 2025 GMT
            Not After : Jun 15 19:54:14 2025 GMT
        Subject: CN=6845ea66-841e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:1b:92:fd:24:a0:ab:6a:4f:a7:7a:22:56:e6:
                    94:5c:43:cf:77:ac:e3:83:b8:66:e1:52:68:c5:81:
                    32:a9:04:cc:ea:cf:e3:7c:97:09:24:a5:54:b9:00:
                    39:de:3c:e1:52:83:e9:eb:80:e2:f2:3c:b5:11:0d:
                    24:b7:ee:38:e7:ad:89:fe:0a:58:4f:d3:24:8a:24:
                    a9:44:1b:95:37:a9:df:76:df:16:ce:68:be:ae:d5:
                    76:99:dc:ee:99:50:f4:ba:a4:ee:ab:08:7f:42:48:
                    04:31:61:55:73:46:a4:5f:02:f7:0b:fa:dd:a2:90:
                    e7:05:70:e5:02:8d:96:c2:74:b6:76:01:6f:8b:87:
                    88:92:1d:0e:e5:27:08:9e:ca:b8:8b:ff:30:9c:64:
                    81:04:91:07:47:94:63:55:28:73:3e:ed:67:c5:37:
                    1b:4a:5f:df:5e:09:da:b9:5b:81:62:4c:8b:6d:44:
                    14:6f:3b:6e:9c:f9:f1:bd:6a:d8:42:27:9d:eb:39:
                    26:0e:70:a3:7c:49:df:d2:95:40:c4:d1:56:b6:21:
                    61:05:e1:f2:65:c6:b0:70:e9:ca:03:e9:f4:e4:25:
                    ee:a9:1e:d1:cc:1f:eb:ab:4f:b6:8f:54:53:3a:6a:
                    aa:f9:f4:89:25:67:7c:22:e5:16:1e:4f:1d:85:c9:
                    cb:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:11:D8:74:B3:77:94:F1:21:00:7A:13:E9:89:BC:75:3E:D9:C1:AE
            X509v3 Authority Key Identifier:
                keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:77:23:de:9c:07:66:2c:f6:95:26:af:ff:bb:e6:9b:7f:9a:
         c1:b6:42:c1:91:f3:4c:1a:7c:3c:83:14:77:0e:a2:10:9c:cc:
         39:fa:24:70:6c:8f:8e:88:8c:5b:1f:d5:39:f7:b3:60:aa:f0:
         a6:e4:be:0c:3e:f4:9d:81:fb:5d:30:ad:53:25:e6:9f:7b:4b:
         8c:e0:02:c2:5d:ff:af:ef:15:5b:c1:d7:c9:12:88:79:e4:3b:
         58:6f:ea:da:8f:05:bb:e1:7a:35:2a:66:7d:a4:d7:1f:b3:87:
         16:21:af:50:09:a1:a6:48:57:c7:80:a5:c4:09:f0:35:53:df:
         99:9b:0b:fe:4e:24:6c:f0:61:3f:03:a0:07:4b:9e:c9:a6:dc:
         49:9c:a8:17:11:32:12:d6:42:e2:a9:4c:62:cd:49:3c:2c:50:
         a9:3d:b4:d1:0d:33:75:9e:9a:0d:b3:06:d2:65:e2:6f:fa:59:
         aa:6e:66:9b:89:ad:cd:e0:8f:5a:49:eb:b6:42:df:06:32:b1:
         05:77:d4:71:4a:0c:f9:85:44:dd:d2:0a:b8:59:62:2b:0d:b1:
         3d:26:1d:cd:ba:f3:2b:6b:6a:4f:06:dc:85:06:97:04:c9:43:
         0f:a1:df:ed:be:1e:9d:3d:f0:66:00:d8:cc:0e:46:d2:dc:9e:
         59:b4:9b:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 06:49:24 2025 by rpki-client