Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
File:                     Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json)
Hash identifier:          pfUmHoDISALf7ueJWjpPFRqf58egnsYENIShIzG8q64=
Subject key identifier:   F4:06:BA:C4:77:92:22:AC:5B:9C:29:AC:2E:1D:04:22:89:38:FC:86
Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC
Certificate issuer:       /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC
Certificate serial:       62
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
Manifest number:          5D
Signing time:             Sat 19 Jul 2025 07:25:29 +0000
Manifest this update:     Sat 19 Jul 2025 07:25:28 +0000
Manifest next update:     Sat 26 Jul 2025 07:25:28 +0000
Files and hashes:         1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: yHFKKKminJFAgvQB2bIqq+4X7LXDi8m8bkDDLxMsNzE=)
                          2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: KpVW4cQhj8alBR7jcPtqJ2dq3s1eufaG57nwvRNG5IA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl
                          rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 26 Jul 2025 07:25:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 98 (0x62)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F8357, serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC
        Validity
            Not Before: Jul 19 07:25:28 2025 GMT
            Not After : Jul 26 07:25:28 2025 GMT
        Subject: CN=687b4868-73e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:5b:c3:1a:4f:c0:fe:ce:c2:cb:63:c3:f6:b6:
                    f2:90:31:15:3e:39:bc:d7:4d:45:99:f8:87:a3:59:
                    13:14:07:73:7f:92:5a:4f:87:2f:9e:bd:7f:c9:9b:
                    2d:2f:0a:be:09:dd:90:b7:a8:1e:cf:3e:d8:5c:e1:
                    28:7f:ef:61:62:13:d2:55:f3:3c:47:1d:96:55:aa:
                    22:3f:79:dd:2f:a5:be:54:a2:af:03:34:7a:57:db:
                    fd:c1:f2:2c:56:2e:57:c4:0b:bd:b8:ac:06:6c:71:
                    34:91:17:68:d5:f3:a3:15:fb:4f:64:b4:56:51:0a:
                    c5:6d:04:a1:00:60:18:54:e6:14:7e:2d:e6:81:0a:
                    44:b9:8c:0e:36:22:5b:91:35:f5:2c:bc:e5:e7:af:
                    b5:e2:47:25:61:ce:36:cb:d9:d1:88:5d:3b:56:ef:
                    ad:dc:cb:d3:94:18:4e:06:fb:2a:c4:84:1c:22:47:
                    e7:7b:3c:79:a5:e0:ba:07:d6:ec:b7:6a:f7:44:e4:
                    2d:dc:e7:01:24:a5:07:98:7f:e2:1e:fb:61:17:ae:
                    88:73:f4:20:96:48:bd:ca:25:6a:bb:9a:fe:a7:24:
                    a9:4e:01:98:27:bf:f8:9a:1c:78:0c:77:9f:c7:17:
                    98:01:a8:62:8e:aa:fc:73:a5:f9:8a:c3:85:57:6d:
                    0b:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:06:BA:C4:77:92:22:AC:5B:9C:29:AC:2E:1D:04:22:89:38:FC:86
            X509v3 Authority Key Identifier:
                keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:2b:d7:e4:ae:1b:df:9e:55:52:a7:0b:cb:40:69:f7:18:92:
         bd:72:b9:cf:e8:2e:50:6e:b7:68:43:1a:7f:bc:00:f5:04:23:
         8c:b8:eb:a3:61:96:3a:4e:d9:92:ec:d3:49:f7:c6:c4:5c:4c:
         69:7d:44:f4:42:27:61:b0:6a:39:55:06:4d:f0:3c:cf:43:72:
         62:fa:b9:80:38:df:34:2c:f9:1f:2d:01:ee:a6:9c:22:f9:ee:
         b1:cd:d8:4d:18:61:2b:2b:17:90:17:6f:08:86:10:00:3c:a4:
         92:52:53:c0:db:8c:3e:17:c6:b9:b8:31:25:5e:c9:55:a9:ba:
         6a:78:e7:12:00:70:0f:82:79:39:01:0f:9e:66:87:2a:1d:75:
         6d:52:b4:f3:07:7c:91:5e:83:a5:6a:37:1f:87:66:2f:c3:e3:
         d3:87:c3:00:8a:ed:8e:65:1d:b4:fc:2a:84:e5:b7:0b:a1:c3:
         64:a8:d8:ce:e1:bd:75:1d:e7:77:37:4f:06:99:de:79:82:ab:
         70:62:ad:d2:46:78:d1:08:2c:93:d9:2b:e7:79:4d:65:ae:e3:
         c5:56:53:26:62:4f:19:8d:d0:d2:77:1b:d3:33:c8:9b:ca:69:
         94:b6:d7:a7:49:98:c8:fb:7a:84:65:62:2a:51:8b:e7:95:ae:
         05:ff:7d:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 19 21:19:39 2025 by rpki-client