Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft
File:                     Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft (raw, json)
Hash identifier:          5bZoasS4AW+rjvbi4ya7XoRtfmfgvLDJpC1kmuhmLVs=
Subject key identifier:   3E:CF:B7:93:1C:65:AE:F2:DD:81:A9:16:E0:2A:7C:CC:8B:3D:FC:B8
Authority key identifier: 52:BF:6F:62:EB:CA:26:B1:DC:42:7F:BE:AF:E7:20:FB:B0:97:C2:1B
Certificate issuer:       /CN=A91F9C95/serialNumber=52BF6F62EBCA26B1DC427FBEAFE720FBB097C21B
Certificate serial:       0BB8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft
Manifest number:          0BB2
Signing time:             Sun 08 Jun 2025 18:43:48 +0000
Manifest this update:     Sun 08 Jun 2025 18:43:47 +0000
Manifest next update:     Sun 15 Jun 2025 18:43:47 +0000
Files and hashes:         1: Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl (hash: FyDJyShmyJHswLcxXaNwj+rrGBRaVFYBfoM9+w/aim8=)
                          2: C7F8C83C217311EA93A29F82C4F9AE02.roa (hash: r5uWTU+sYs/vGgm5oMxXApeoTDyzrDhvLimJL0rhlzg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl
                          rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 18:43:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3000 (0xbb8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F9C95, serialNumber=52BF6F62EBCA26B1DC427FBEAFE720FBB097C21B
        Validity
            Not Before: Jun  8 18:43:47 2025 GMT
            Not After : Jun 15 18:43:47 2025 GMT
        Subject: CN=6845d9e4-d545
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:cd:a0:01:19:aa:82:cf:3c:56:cb:c3:18:9a:
                    da:6e:b7:ee:a2:e0:86:2d:08:b4:3f:d8:e8:3b:aa:
                    02:85:2e:0f:62:b8:26:53:f2:9e:49:57:c2:57:44:
                    63:37:3f:fa:9c:cc:f3:e7:bf:c7:5d:ef:54:90:3f:
                    06:17:9f:cd:af:db:3c:1e:2e:98:37:9d:ec:df:e0:
                    1a:13:66:1d:04:b0:59:6b:38:d4:4a:1b:60:fe:0d:
                    1b:43:cd:0b:e5:94:06:1c:7f:e7:53:1b:1e:5a:0c:
                    68:3b:0c:5b:14:06:29:20:84:44:5c:22:1b:41:fc:
                    2d:98:38:67:fb:24:f9:0f:77:dc:79:1a:38:9b:01:
                    3f:26:9e:24:36:30:f2:1b:91:19:c9:87:fc:46:28:
                    8f:bd:97:e9:d9:a5:18:bb:65:70:aa:51:97:81:b1:
                    3b:47:b9:e1:59:70:13:da:01:2c:29:b4:59:16:b7:
                    46:53:64:31:d8:33:ef:a9:ae:bc:8e:36:a3:80:a9:
                    76:9c:ed:bd:fd:01:d9:cb:31:c8:d7:5a:02:36:71:
                    69:49:aa:3e:72:ee:df:33:9f:2d:45:de:0c:a6:21:
                    6b:8e:a9:00:9b:95:1c:22:31:1c:4e:e3:12:79:8a:
                    86:32:77:fe:e9:86:72:db:16:75:51:18:12:da:04:
                    9a:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3E:CF:B7:93:1C:65:AE:F2:DD:81:A9:16:E0:2A:7C:CC:8B:3D:FC:B8
            X509v3 Authority Key Identifier:
                keyid:52:BF:6F:62:EB:CA:26:B1:DC:42:7F:BE:AF:E7:20:FB:B0:97:C2:1B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:83:02:ff:f3:d8:e5:c3:db:72:37:8d:d7:45:a3:a0:ae:37:
         1c:5f:84:9b:bd:46:1f:59:57:0a:bf:a3:68:07:4b:28:f2:5d:
         c5:16:bf:16:90:b3:e5:e7:40:24:71:56:2a:93:0a:d3:88:e5:
         6e:d9:20:5e:f4:29:aa:4d:f5:0b:97:b2:57:e4:8f:72:72:ed:
         ed:e9:19:e9:fa:26:bd:b4:bd:0c:34:3d:8e:e5:60:6c:d8:b9:
         8e:00:08:8a:f1:b1:6e:08:09:b0:9a:8d:57:06:a5:02:70:df:
         8c:6d:e9:7f:98:c8:db:d4:47:de:a7:76:d5:49:61:42:e8:70:
         f1:b8:8f:db:06:63:7c:8b:99:8e:d2:77:2a:12:2e:f4:94:e2:
         01:83:3b:03:6e:51:03:70:0f:b8:d2:6c:7a:6b:72:8d:13:d0:
         74:63:56:79:84:fa:51:2e:84:2d:a4:7b:b3:c5:06:31:15:75:
         40:7c:d1:b9:f8:e6:be:0d:e1:1c:ed:e1:e8:2a:3a:d4:d2:34:
         7b:31:c8:0b:ad:3f:87:22:ad:7f:86:b5:31:24:5e:36:93:20:
         97:54:82:bb:ce:68:1f:1e:29:ff:ea:b4:02:c0:27:f0:45:14:
         93:e6:4b:49:7b:2d:80:48:52:27:99:0c:1f:82:09:70:60:b2:
         18:c9:aa:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 15:46:09 2025 by rpki-client