Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft
File:                     BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json)
Hash identifier:          xw3sDT8aJEaVnRrDUY6pb7uX+IXQMnsjQoG028MFaqM=
Subject key identifier:   5C:E8:99:4D:FC:F1:EA:34:54:82:FF:B6:57:33:F3:18:CE:51:FD:25
Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57
Certificate issuer:       /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57
Certificate serial:       06E7
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft
Manifest number:          06CB
Signing time:             Tue 22 Jul 2025 22:00:52 +0000
Manifest this update:     Tue 22 Jul 2025 22:00:51 +0000
Manifest next update:     Tue 29 Jul 2025 22:00:51 +0000
Files and hashes:         1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: jWyCh+Z56DR1SO5Uwsu+WOd/Nh3yRIWLnQ6xyViHBbo=)
                          2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: k3Hyvnta3NTSihzOI6GhNOzxp4Li4ZxAgK0C//8NE4o=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl
                          rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 29 Jul 2025 22:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1767 (0x6e7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57
        Validity
            Not Before: Jul 22 22:00:51 2025 GMT
            Not After : Jul 29 22:00:51 2025 GMT
        Subject: CN=68800a14-f590
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:e8:ef:7e:60:0f:34:cf:fb:81:00:bb:0b:ad:
                    d8:de:64:ef:3c:68:ea:1f:68:33:9b:65:91:05:c9:
                    62:e0:cb:76:c8:53:7b:43:54:bb:de:a2:c1:86:88:
                    4e:21:ef:06:56:5d:51:c4:34:03:d3:3a:a8:1e:bb:
                    ca:98:bf:0e:53:4e:f0:ed:97:a1:3c:bd:62:b9:b0:
                    7a:2b:88:90:2c:d2:67:66:35:3b:0b:13:81:e4:61:
                    c8:b7:74:2f:cd:54:0f:05:4d:53:15:4f:6d:2e:64:
                    7b:99:d2:8a:37:84:bd:15:1f:ee:2c:ef:75:5f:0b:
                    91:09:62:5e:04:3d:c9:f2:e2:b3:18:45:62:68:f7:
                    b4:61:b0:a4:3f:f6:cc:56:a8:b8:79:d2:6f:23:b2:
                    5a:d6:1c:19:78:00:55:a2:d6:ea:82:d1:7b:e9:f4:
                    58:3e:36:ed:e9:1f:c7:cc:02:b8:d1:1d:df:e6:44:
                    da:24:7d:d6:f8:35:2d:35:b2:cf:84:2d:52:16:33:
                    ed:c7:41:ab:f0:aa:af:a3:46:f7:32:4c:10:a2:e6:
                    f8:37:20:c5:6c:41:84:aa:da:bc:b8:fb:8a:d4:02:
                    37:a3:69:78:39:74:6c:74:f6:49:49:88:43:b4:6e:
                    29:e9:ab:7b:0d:b7:ed:bb:74:34:5e:01:db:1f:f9:
                    1e:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:E8:99:4D:FC:F1:EA:34:54:82:FF:B6:57:33:F3:18:CE:51:FD:25
            X509v3 Authority Key Identifier:
                keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:8e:22:0d:95:3c:b0:17:3d:94:60:c5:93:e8:47:26:c5:ee:
         63:4a:12:f3:be:38:7c:d6:2b:07:2d:2f:be:8d:d0:8e:aa:ef:
         ef:f6:b2:9b:90:d4:45:84:39:15:2c:73:46:56:e5:ed:9b:ef:
         73:fe:a9:df:7c:22:fb:29:c3:dc:d1:f8:bc:b9:e6:a7:b4:ba:
         35:48:17:9e:4d:64:ed:f4:9a:cb:8e:24:4e:72:5a:79:58:2b:
         5c:ba:94:c9:63:c7:72:b8:7c:e5:6b:e4:91:04:f2:d2:9f:be:
         b3:33:ee:7c:5d:32:f4:a2:20:79:cd:07:e7:57:f5:d9:65:f1:
         ee:09:25:b4:92:bb:b4:17:0b:bb:74:c0:a8:ad:3b:15:36:03:
         61:6a:da:ee:ec:58:e4:de:2e:96:1f:a3:1b:f2:5b:66:51:69:
         71:4e:3a:d5:83:ec:c0:7d:7f:8e:4d:a3:d3:25:97:0b:d0:e7:
         01:df:46:b7:68:05:a1:ee:12:9f:26:b3:d8:ab:7e:40:0c:48:
         87:cb:91:e1:a0:c8:3e:b3:1d:8c:48:b4:ae:e4:3a:bc:1e:16:
         a9:77:b8:8c:bd:4f:5a:04:1b:c8:fb:ad:a6:82:f0:1f:13:1c:
         49:44:df:72:dd:f9:74:db:2d:f8:bf:a1:45:75:e0:9a:ae:12:
         ed:95:b6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:33:01 2025 by rpki-client