Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft
File:                     5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft (raw, json)
Hash identifier:          5FcGRGWQi+Q3uaGqe4efHCcz0efTh2mXWxFv9KRn7z4=
Subject key identifier:   0F:8B:A6:44:B9:2C:79:0B:84:2F:F2:08:7F:D8:C2:DC:29:0A:54:8F
Authority key identifier: E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE
Certificate issuer:       /CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE
Certificate serial:       071B
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft
Manifest number:          21A7
Signing time:             Sun 20 Jul 2025 15:58:54 +0000
Manifest this update:     Sun 20 Jul 2025 15:58:54 +0000
Manifest next update:     Sun 27 Jul 2025 15:58:54 +0000
Files and hashes:         1: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl (hash: y94palYS1PHG9Pqe6OmfCeh/yJset03WJ9hEyFA/JZo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl
                          rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 27 Jul 2025 15:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1819 (0x71b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FCEB1, serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE
        Validity
            Not Before: Jul 20 15:58:54 2025 GMT
            Not After : Jul 27 15:58:54 2025 GMT
        Subject: CN=687d123e-fd55
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:35:81:b7:dd:b8:70:af:72:83:93:c9:05:98:
                    82:ab:a7:93:6b:e1:20:45:20:ce:a3:7b:24:55:36:
                    90:63:92:b2:af:d4:4e:56:87:f9:84:5d:cc:85:25:
                    e7:79:3f:a5:07:d4:dd:7a:a8:af:1d:71:a6:7a:d5:
                    d8:b9:3e:06:f0:1c:47:9a:f0:b4:6e:91:62:6c:97:
                    aa:4a:20:d2:f0:48:56:13:62:b3:60:f6:79:bd:6e:
                    4d:35:40:b4:26:c3:94:14:54:8c:42:32:38:d0:8a:
                    ba:f1:20:84:0a:25:90:c9:24:55:15:47:df:3a:ff:
                    94:5f:ce:d3:1e:56:9b:24:6e:cd:5c:91:97:2e:a4:
                    ec:ad:4b:cd:0f:38:14:2e:93:42:57:7b:c6:d4:18:
                    87:6a:e6:ea:a1:4d:18:dd:07:e3:7a:dc:e2:e2:cd:
                    90:40:e6:fd:11:b2:05:4c:e0:9c:31:46:29:00:bd:
                    81:9b:fd:4e:c1:6d:e9:09:3b:48:78:1b:96:ed:8a:
                    71:f7:29:5c:12:ba:7a:c4:7d:89:a2:a0:b4:13:2a:
                    68:f4:80:f8:ee:10:cf:06:21:4f:13:e7:9e:cc:42:
                    39:0b:af:f5:d1:59:ba:5f:f0:9a:21:32:5c:a9:9e:
                    4d:59:89:f8:22:cb:cb:61:62:e9:d3:80:a4:f3:92:
                    16:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:8B:A6:44:B9:2C:79:0B:84:2F:F2:08:7F:D8:C2:DC:29:0A:54:8F
            X509v3 Authority Key Identifier:
                keyid:E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:d0:51:3e:95:84:9e:82:c6:4a:de:d0:e6:69:63:95:5d:0b:
         48:0c:03:eb:4c:8a:5a:3e:33:e6:7b:83:af:07:b5:59:f6:45:
         c8:b1:4b:e3:0d:ec:1b:51:c3:5a:2f:13:fb:a9:46:b6:33:a2:
         0d:20:21:ac:15:13:da:fb:8d:6a:c1:f8:8f:d0:ca:1f:79:22:
         06:3d:b9:ca:6b:6b:f2:f4:f1:b2:82:c0:9f:68:59:a0:b9:ad:
         34:69:2e:32:46:61:dd:21:1c:ce:6f:27:44:4d:27:5b:59:c4:
         ab:c6:38:a7:78:8f:e2:40:15:5f:b7:e2:84:c9:79:37:6e:b7:
         5d:e1:6b:27:a4:59:17:f6:dc:af:3d:53:f7:89:4d:1e:39:c2:
         8a:e8:94:b0:bd:9f:2b:14:5a:c5:31:a7:f3:ee:a9:bd:9d:95:
         09:86:fd:79:ff:66:6a:23:a3:85:09:c2:7a:17:51:ac:0a:c7:
         c9:db:4e:0f:57:8f:28:bf:7e:7e:48:57:23:78:e7:a4:15:29:
         6b:cf:49:a6:0c:60:d1:f2:5b:58:e7:9c:74:43:f2:99:d8:24:
         39:4c:4f:5f:67:25:72:c0:e7:2d:cd:fa:af:a2:bd:e0:20:10:
         3d:bf:88:0d:f6:3d:cd:66:c6:03:46:00:dc:e7:c4:a5:6c:61:
         07:43:66:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 18:20:22 2025 by rpki-client