Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft
File:                     r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft (raw, json)
Hash identifier:          9HRUloK5SIqDADxIeXqsyEDdMLbp+BFkOUZtkS8Wo0Y=
Subject key identifier:   6A:51:1B:B2:EC:03:1A:FF:44:B3:58:10:44:31:5B:A9:B6:2C:16:06
Authority key identifier: AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B
Certificate issuer:       /CN=A91F5972/serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B
Certificate serial:       055B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft
Manifest number:          0555
Signing time:             Thu 12 Jun 2025 23:00:34 +0000
Manifest this update:     Thu 12 Jun 2025 23:00:34 +0000
Manifest next update:     Thu 19 Jun 2025 23:00:34 +0000
Files and hashes:         1: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl (hash: 3oMAy0f/KUw6/6G9Q2YLMX0laajYSgZ7KaVV8m2uXEQ=)
                          2: B52EA19A6E0B11ECA6057963C4F9AE02.roa (hash: sRAPrM6e/yJbsGZwUamXGzz2TWejjmVOjZsdsTU0i6Y=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl
                          rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1371 (0x55b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F5972, serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B
        Validity
            Not Before: Jun 12 23:00:34 2025 GMT
            Not After : Jun 19 23:00:34 2025 GMT
        Subject: CN=684b5c12-2a44
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:2c:7f:1d:05:3e:aa:3c:da:14:eb:f9:3d:47:
                    99:e1:14:7f:4f:ed:83:c3:98:9b:4a:7b:a5:02:1f:
                    77:a4:ed:94:eb:29:f6:fe:24:36:de:98:ae:67:b0:
                    ae:de:66:10:43:8d:48:38:c3:ca:fe:04:ef:a3:d5:
                    ee:eb:79:a6:5e:ee:cf:bc:08:7a:23:07:12:00:1b:
                    82:cd:b0:eb:b9:c4:86:a5:bb:90:e1:2c:f0:22:16:
                    4c:f7:d3:77:c9:ca:33:9b:6f:6b:14:4a:f3:db:16:
                    4a:16:28:49:ea:42:b1:cc:7e:26:34:81:c8:58:85:
                    ab:59:7b:f7:c6:6a:bd:59:80:dc:00:a3:0b:f7:14:
                    2c:4c:83:82:0d:f7:e3:e2:1c:a6:84:4d:55:84:8d:
                    48:88:f2:bc:d8:3c:82:52:cf:51:3a:5c:14:23:65:
                    52:83:c6:aa:14:f4:10:28:28:5c:18:bd:1a:7c:5b:
                    db:26:b8:c7:d8:e9:40:c3:81:39:7f:bb:ea:61:e0:
                    e1:0b:c8:9f:ff:c1:9b:0f:30:39:11:b8:4c:49:7c:
                    41:8b:d5:1d:c4:65:e3:cf:23:dd:34:ef:7a:28:80:
                    73:dc:00:5b:3b:ea:28:a8:8c:1f:ae:f8:59:47:ba:
                    50:c6:e9:97:57:e2:7b:1b:4c:9d:b7:ed:4d:98:69:
                    b8:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:51:1B:B2:EC:03:1A:FF:44:B3:58:10:44:31:5B:A9:B6:2C:16:06
            X509v3 Authority Key Identifier:
                keyid:AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:d0:89:a4:87:ac:16:3b:75:e2:c9:53:3c:4f:3d:bc:73:e8:
         24:69:45:a9:ef:ac:f6:87:cc:dd:2e:2b:7b:09:9d:a6:cc:75:
         25:9a:78:4c:4e:33:ef:3b:64:03:d2:e9:f0:3d:bc:61:a6:36:
         38:d0:2c:f1:72:0e:bd:7d:a4:28:ba:5d:fc:ff:85:fd:d2:a2:
         96:af:ef:1a:8a:d3:9d:28:ab:a1:da:46:c4:e7:0c:de:1b:8e:
         55:4b:19:ed:95:e1:14:ba:59:6b:de:2f:52:36:f3:92:f1:f1:
         b3:10:55:5a:04:ad:b9:1d:9f:3f:06:22:5b:1b:fa:af:77:a2:
         d5:d0:f0:81:fc:e3:61:fe:4e:cc:3d:29:3c:50:19:05:c4:59:
         f1:e8:bf:91:8a:c5:2e:55:e3:25:1f:77:ea:91:1f:be:16:ef:
         07:77:17:32:59:17:ad:7a:d0:c5:66:09:9d:97:71:89:c2:12:
         e6:78:02:68:1a:20:b7:8d:04:5c:c6:ff:1d:f8:e1:72:d9:15:
         9b:a2:13:a0:ce:e9:f0:ba:b7:ed:a0:96:3b:e6:07:ff:d6:12:
         17:06:40:79:e6:95:c4:fc:43:69:f2:be:51:91:b7:4d:28:e3:
         bb:0a:77:b4:e4:bd:25:48:f9:fc:63:05:9f:c0:6c:6d:d9:af:
         6e:a3:62:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 06:48:45 2025 by rpki-client