Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft
File:                     R4tJDpOd3d8hrKx4y5MZinuBRIU.mft (raw, json)
Hash identifier:          cVV8Qua99TnV2TlgeVCgOC0wslCS0hIpN2Tz58PDbog=
Subject key identifier:   16:F8:0C:75:0F:CE:8E:81:96:15:6F:D0:1A:5D:A9:29:7C:77:F0:4B
Authority key identifier: 47:8B:49:0E:93:9D:DD:DF:21:AC:AC:78:CB:93:19:8A:7B:81:44:85
Certificate issuer:       /CN=A91427E2/serialNumber=478B490E939DDDDF21ACAC78CB93198A7B814485
Certificate serial:       84
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4tJDpOd3d8hrKx4y5MZinuBRIU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft
Manifest number:          83
Signing time:             Sat 05 Jul 2025 06:57:29 +0000
Manifest this update:     Sat 05 Jul 2025 06:57:29 +0000
Manifest next update:     Sat 12 Jul 2025 06:57:29 +0000
Files and hashes:         1: R4tJDpOd3d8hrKx4y5MZinuBRIU.crl (hash: Ejs9mGUysdOr4tVo8Fv33H63+fBRgtDKkmGMDBcci20=)
                          2: 534DAEB2935111EF98AA8C86C4F9AE02.roa (hash: uOl4+NzZB6fPlXrYszF0PeNPfsE4Pp9BL5TML7ATF7Q=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.crl
                          rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4tJDpOd3d8hrKx4y5MZinuBRIU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 10 Jul 2025 03:15:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 132 (0x84)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91427E2, serialNumber=478B490E939DDDDF21ACAC78CB93198A7B814485
        Validity
            Not Before: Jul  5 06:57:29 2025 GMT
            Not After : Jul 12 06:57:29 2025 GMT
        Subject: CN=6868ccd9-8689
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:78:d1:0e:3c:fa:b2:5a:28:36:20:63:18:dd:
                    dc:d3:91:33:3c:fb:f3:5c:cc:40:ef:72:c6:fb:42:
                    a3:ea:f7:34:3f:bc:60:ce:7a:69:8e:d2:d5:c9:b9:
                    cf:17:ef:09:e1:7d:4c:10:76:ae:5e:12:66:79:0a:
                    ae:28:b5:89:c0:fa:cd:83:ff:1f:f9:01:09:4a:52:
                    31:f0:da:4d:f4:ba:01:ce:e3:19:b2:1c:e6:83:4d:
                    0c:26:18:6d:0e:6e:d6:32:72:16:b8:1d:06:bd:e5:
                    6e:23:1f:d9:d2:fc:c9:bf:34:2c:3e:ca:87:24:ca:
                    7f:7a:c7:95:19:ea:38:30:80:2c:12:e9:23:14:09:
                    22:d2:81:17:f8:39:14:a4:f1:17:39:89:4c:6f:ce:
                    6d:3d:aa:3f:03:d8:0c:bd:15:95:09:ca:64:f3:83:
                    45:57:be:b7:5d:ae:aa:c0:67:c0:9d:45:70:94:50:
                    50:1e:67:49:3d:72:be:09:68:bf:64:b4:ab:63:d8:
                    bd:93:fd:1e:46:ca:e5:c2:4d:b4:2b:3d:7e:d2:aa:
                    51:3a:d1:e0:0a:9d:0c:bc:6d:93:ab:17:8d:c1:40:
                    c0:f3:99:eb:4a:f2:74:f5:42:cc:af:3f:4f:ac:60:
                    02:f4:85:79:7f:d7:31:bb:25:f9:41:83:78:8d:22:
                    8a:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:F8:0C:75:0F:CE:8E:81:96:15:6F:D0:1A:5D:A9:29:7C:77:F0:4B
            X509v3 Authority Key Identifier:
                keyid:47:8B:49:0E:93:9D:DD:DF:21:AC:AC:78:CB:93:19:8A:7B:81:44:85

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4tJDpOd3d8hrKx4y5MZinuBRIU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:64:bf:49:79:2f:0d:5c:68:55:35:6d:ba:08:83:79:62:f9:
         1d:53:eb:e7:ab:1e:f1:d1:89:88:a5:fc:20:ee:15:dc:d2:d2:
         d1:fb:13:f9:69:48:d3:ba:ca:f1:46:e8:d2:6a:dd:bf:52:5f:
         49:25:36:c3:b0:94:e3:ce:3e:8b:4b:03:5c:6a:7d:6a:68:cf:
         ef:e5:aa:fd:d8:aa:b2:6d:41:fe:30:a1:0b:5a:67:e1:18:03:
         57:2e:0c:5c:ee:85:be:97:e2:ec:27:e2:b1:d1:1c:3c:3e:6b:
         b3:52:5f:bf:08:08:38:32:43:68:53:36:f5:f4:90:92:9a:0a:
         0a:2d:bc:ee:98:b5:7b:28:57:2f:d2:ab:5c:2e:62:6b:8b:46:
         4f:ea:d5:ba:a2:56:a2:0c:dc:c5:94:4c:c0:88:70:3f:d7:dc:
         e3:2f:71:a0:01:18:61:c0:62:f7:b6:be:7e:b0:6b:2c:a9:cd:
         ba:53:93:ae:1c:85:7c:15:82:7e:3e:8a:dd:51:c9:3e:29:5d:
         0b:7c:c0:b1:0c:da:c3:fe:0e:c5:0a:6b:5c:9c:f9:c6:85:b9:
         26:b6:0f:13:f1:88:a9:7d:2c:4b:d1:b2:3e:08:85:f1:e2:1b:
         68:33:40:4f:7b:a2:6b:8f:d1:26:da:b1:34:38:14:ab:62:66:
         07:fb:45:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 6 09:36:41 2025 by rpki-client