Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft
File:                     oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft (raw, json)
Hash identifier:          NmoMiEKUMbcYu/A0UpHG/95efxdBtz88zKJqCgqZL9E=
Subject key identifier:   3F:DD:F8:EF:FA:66:08:F6:F0:D8:9B:27:D6:0C:AD:21:F9:67:DF:F2
Authority key identifier: A3:21:53:71:25:37:60:0D:71:34:2E:C0:69:A5:7F:3E:ED:60:D7:0C
Certificate issuer:       /CN=A918D771/serialNumber=A32153712537600D71342EC069A57F3EED60D70C
Certificate serial:       0775
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft
Manifest number:          0761
Signing time:             Wed 02 Jul 2025 21:54:43 +0000
Manifest this update:     Wed 02 Jul 2025 21:54:42 +0000
Manifest next update:     Wed 09 Jul 2025 21:54:42 +0000
Files and hashes:         1: oyFTcSU3YA1xNC7AaaV_Pu1g1ww.crl (hash: vN6FgCYkbXLgF9g9mzk0JTV5cR+rWWRdAsGeJqIush4=)
                          2: B10AE62CBC4711EFAB43324BC4F9AE02.roa (hash: Cg9ICYE9I7QHfG+L0DGU6D2Wt92m7BQcheqj3kGMwFs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.crl
                          rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 09 Jul 2025 21:54:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1909 (0x775)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918D771, serialNumber=A32153712537600D71342EC069A57F3EED60D70C
        Validity
            Not Before: Jul  2 21:54:42 2025 GMT
            Not After : Jul  9 21:54:42 2025 GMT
        Subject: CN=6865aaa2-71a0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:9f:a4:59:8c:da:dc:a3:83:b4:33:fd:6d:7a:
                    94:bf:a0:28:42:56:d0:f1:0c:44:52:df:a5:6a:7f:
                    c7:3e:53:fd:af:ba:6b:71:8f:92:36:42:cd:56:a9:
                    6c:65:35:cf:27:d9:18:03:f4:2f:66:b8:49:2c:dc:
                    6d:c7:7c:4e:07:90:90:4e:72:2d:ce:f5:a3:43:7b:
                    99:c8:9a:83:92:9e:a2:3f:54:97:b8:62:a4:79:de:
                    55:02:54:e1:28:b1:3f:3f:ae:44:0e:0e:97:93:18:
                    98:65:35:87:df:e7:86:71:08:e3:7e:3e:74:f7:7f:
                    67:23:6a:9d:d0:cf:46:0f:b0:b6:49:f2:fc:01:20:
                    c6:ab:58:d5:b9:4f:61:ba:c2:1f:81:34:0b:32:51:
                    02:f6:25:da:bf:66:49:25:96:bd:06:52:0b:ad:f9:
                    ec:ed:f7:47:6d:ea:ab:4a:cb:1e:aa:03:b7:4a:9d:
                    f9:5e:ed:22:c5:5b:1c:05:86:0c:34:a3:09:19:95:
                    2d:9f:1f:6d:a2:ec:58:20:e4:69:07:59:b0:00:6f:
                    e2:ba:3e:f2:b5:00:fc:e4:cf:bf:c8:82:73:e2:78:
                    34:95:9b:11:6f:40:c2:1c:e7:f2:ee:86:07:11:de:
                    17:34:37:a1:e0:22:ec:57:53:04:13:e1:10:00:48:
                    0d:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:DD:F8:EF:FA:66:08:F6:F0:D8:9B:27:D6:0C:AD:21:F9:67:DF:F2
            X509v3 Authority Key Identifier:
                keyid:A3:21:53:71:25:37:60:0D:71:34:2E:C0:69:A5:7F:3E:ED:60:D7:0C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:91:63:d7:b7:d7:2c:4e:22:b1:07:a7:01:bd:a9:c4:61:a9:
         18:24:fa:b7:24:e3:d0:44:0d:f2:5c:fb:e8:67:53:12:4a:1d:
         50:33:63:f0:37:d1:d9:c8:c7:e3:80:17:a5:be:cb:6b:91:62:
         85:49:b6:ea:d5:bf:4f:fc:cc:72:15:2b:06:f4:84:43:b6:16:
         1e:fb:e0:4d:5c:f5:4e:e2:80:0c:2a:b0:66:40:4c:27:50:c8:
         a3:c9:37:04:35:cd:90:e5:84:1b:6f:bd:91:12:a6:e9:43:95:
         4a:14:8b:64:8b:db:58:95:ec:30:07:8e:7e:8e:31:32:7e:a8:
         51:29:50:62:fb:cc:42:f8:5b:47:c6:6a:77:1d:cc:43:da:a8:
         da:a6:9d:ea:0f:dd:2d:ff:9a:f0:83:74:5d:0d:8b:9f:22:94:
         c7:ab:3b:5c:d9:36:6b:53:65:40:4f:e9:8d:b0:30:13:75:7b:
         1e:ea:41:bf:e9:1c:e6:b2:50:1b:72:cb:31:35:f6:5e:dc:96:
         40:b2:73:a0:0b:71:f1:c4:6e:bd:1d:7a:68:8d:2d:6e:ec:fe:
         f6:e6:b2:6e:36:62:6c:53:c2:93:c7:ba:28:04:bb:4e:0b:ab:
         ef:86:72:13:20:d2:66:bc:ec:00:81:29:61:08:ef:df:0a:c2:
         60:64:e3:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 14:57:50 2025 by rpki-client