Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
File:                     R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json)
Hash identifier:          +wRVowunDrcHz2xjdZ2zSHmQwhV9gUxg7nbPYjOobmA=
Subject key identifier:   95:C0:28:9F:25:DB:23:D6:DC:3F:43:4C:81:13:85:3C:C3:25:6F:0D
Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3
Certificate issuer:       /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3
Certificate serial:       0D2B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
Manifest number:          0D1D
Signing time:             Mon 30 Jun 2025 18:15:37 +0000
Manifest this update:     Mon 30 Jun 2025 18:15:37 +0000
Manifest next update:     Mon 07 Jul 2025 18:15:37 +0000
Files and hashes:         1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: 4gMMlEBITTPWr1TeAdZEL7GvKer4ydLsXrI1+D4TdkQ=)
                          2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: O1kd0Y8YHGAuQNE1wq4lO26tfNPiZv4mNi6pAigMPUU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl
                          rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 07 Jul 2025 18:15:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3371 (0xd2b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3
        Validity
            Not Before: Jun 30 18:15:37 2025 GMT
            Not After : Jul  7 18:15:37 2025 GMT
        Subject: CN=6862d449-13ff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:57:a2:18:a0:4d:0e:47:5a:25:2a:a5:e7:37:
                    99:ff:48:e0:b1:b7:34:95:f6:08:da:57:92:d8:4b:
                    70:12:c9:84:5f:6b:de:50:82:49:88:d0:c4:7a:00:
                    51:43:d2:ee:8d:49:7d:85:57:b7:e3:6c:46:ee:4d:
                    c7:5d:67:fb:e7:56:bc:72:d9:35:87:a2:dc:bd:d8:
                    46:99:dd:52:82:0d:b4:1f:e4:9a:4d:b6:b6:d1:48:
                    b3:0a:6a:43:9e:8f:55:2a:47:b9:f8:16:e4:53:39:
                    aa:7b:10:6a:21:76:ba:c6:7a:75:0b:66:c3:ca:28:
                    9e:e6:36:37:0a:3d:0f:9b:2c:14:ce:df:59:a7:a4:
                    61:28:a7:c2:d4:85:75:96:3c:d1:b0:04:88:5c:95:
                    c3:cd:49:eb:03:57:f0:83:06:dc:63:77:f5:b4:35:
                    3f:d4:ba:9d:1e:d9:15:70:25:67:6d:ee:2a:dc:35:
                    57:cf:d2:5a:d9:1f:32:77:d3:bb:4b:90:9c:71:f9:
                    91:04:3d:d0:92:a4:66:2b:59:38:a9:07:56:79:d1:
                    cc:c9:9f:4c:0b:b9:4e:67:cc:5f:a8:c2:62:9d:ec:
                    f8:8c:a6:93:3f:8a:a4:a7:c3:51:be:fd:9c:41:f5:
                    12:9d:c2:d2:33:34:39:d3:21:6d:83:02:c0:ec:78:
                    65:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:C0:28:9F:25:DB:23:D6:DC:3F:43:4C:81:13:85:3C:C3:25:6F:0D
            X509v3 Authority Key Identifier:
                keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ae:31:36:e9:bf:97:8f:f3:64:0f:8a:5b:26:ce:26:72:0b:1f:
         f8:67:2b:31:30:78:92:ca:56:51:9f:48:82:58:8c:7e:fa:5e:
         81:06:39:42:40:5e:10:1a:96:86:2f:bb:88:9e:fb:83:e5:ab:
         7e:35:9d:77:51:41:0b:b2:e6:33:c4:d6:c7:1e:9b:14:b6:df:
         b8:9d:4a:6b:0b:07:f0:9f:41:15:d4:71:42:be:35:97:07:55:
         18:50:47:47:96:ad:c1:b1:5d:00:54:45:6d:6f:66:be:19:7c:
         11:e2:3b:13:ea:b2:0e:de:13:38:7e:ec:98:44:71:18:1b:c2:
         b3:e7:31:01:98:97:50:d1:ea:85:5e:34:bb:03:1e:55:3f:ad:
         f2:e1:8e:8b:bc:2a:a3:94:cd:cb:e9:7e:60:45:17:2c:c1:b2:
         f7:ad:db:6f:8c:dc:47:48:e6:33:66:17:41:db:00:9f:2f:f4:
         ae:75:bb:9a:f3:19:86:d5:9d:c5:c6:35:43:91:e2:ba:85:a8:
         7b:5b:5f:12:ae:78:62:b5:48:0c:b9:8e:78:ee:6c:20:3a:d4:
         f6:38:ce:05:9f:8b:09:a7:1f:9b:ab:c6:42:b9:87:95:1f:e0:
         24:3f:5f:0b:19:bc:a1:33:72:d7:af:0d:dd:54:e7:87:ef:94:
         72:6e:93:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 16:26:38 2025 by rpki-client