Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft
File:                     ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft (raw, json)
Hash identifier:          9uReQMaWw5R8XPyMERINVueJX1Vd3iVxRjxTp9pGVks=
Subject key identifier:   B0:78:18:2B:72:48:36:B2:DA:78:D5:10:55:A8:1D:5B:DB:2F:C5:D7
Authority key identifier: CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09
Certificate issuer:       /CN=A919B5BB/serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309
Certificate serial:       20E3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft
Manifest number:          20D8
Signing time:             Mon 30 Jun 2025 16:01:47 +0000
Manifest this update:     Mon 30 Jun 2025 16:01:46 +0000
Manifest next update:     Mon 07 Jul 2025 16:01:46 +0000
Files and hashes:         1: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl (hash: XJvhV6JhbV6/AglX1xHPsXri9mO5SOfqP/DiXzfyDJg=)
                          2: C49E2E22FF0111E591C15659C4F9AE02.roa (hash: 8rysbZt21FvuQ0omuoFXFp8YfdP5EnJpmuu61zguRxM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl
                          rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 07 Jul 2025 16:01:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8419 (0x20e3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919B5BB, serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309
        Validity
            Not Before: Jun 30 16:01:46 2025 GMT
            Not After : Jul  7 16:01:46 2025 GMT
        Subject: CN=6862b4ea-ca89
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:88:80:20:48:6e:13:00:2d:fd:3e:d9:eb:0d:
                    33:a0:7e:9e:aa:34:8f:20:91:fb:94:95:46:68:1c:
                    c4:e2:86:3d:2b:cd:50:f9:39:d4:a7:82:2a:37:c1:
                    22:75:44:16:9b:c6:22:00:df:27:7e:6a:3d:5b:a6:
                    66:72:d6:7c:9b:6b:6b:4f:21:26:a6:d9:85:d7:ce:
                    df:95:b2:95:e7:da:f0:53:5c:5e:48:6e:ec:ff:50:
                    8d:29:55:f4:5f:22:13:34:00:90:f1:1c:8c:95:da:
                    6b:38:da:4b:71:f2:67:52:04:8c:27:cf:76:08:c2:
                    03:5c:bf:97:48:22:32:2a:2e:6a:f7:21:02:4f:98:
                    f3:ef:83:c1:af:1f:34:e3:70:55:8e:cf:80:aa:ba:
                    b7:df:bf:26:77:68:67:6c:1d:73:8d:aa:7c:a7:d3:
                    83:58:5c:ac:18:c5:72:72:9c:a2:aa:18:89:0c:7f:
                    2b:28:3b:4c:a4:5d:59:a6:f0:a2:f8:10:0e:9c:36:
                    5e:cb:2c:bc:f3:a0:48:fb:63:71:48:b3:69:b3:9c:
                    7c:01:da:64:49:dc:75:83:2b:bd:c6:66:29:7c:f3:
                    ab:33:01:29:98:1e:11:63:c3:1e:4e:b1:dd:54:18:
                    3c:46:de:2c:4f:fa:e2:45:a7:11:b6:81:e7:36:60:
                    ec:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:78:18:2B:72:48:36:B2:DA:78:D5:10:55:A8:1D:5B:DB:2F:C5:D7
            X509v3 Authority Key Identifier:
                keyid:CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:30:c5:76:42:2c:d7:a1:87:d7:c9:00:9c:d5:7c:0d:12:2c:
         9e:79:dd:77:be:9f:7b:38:2d:61:64:7f:12:5b:ac:16:9c:ed:
         59:67:52:a9:b6:82:8d:45:c0:dd:ee:ae:53:1e:c2:8b:40:61:
         8b:f5:36:77:f0:36:bf:df:fb:f3:7c:28:d6:9a:a4:54:5f:48:
         7b:dd:56:10:ba:22:a4:2f:65:98:e7:68:16:94:97:2a:8c:93:
         8e:99:f2:1e:e3:25:b3:f3:ed:29:39:b1:9e:0f:fe:25:d6:b9:
         90:44:ef:e5:f8:33:20:50:fa:dd:7d:fa:dc:ec:3b:39:00:dc:
         3c:6d:29:f8:b3:14:3a:d3:24:ad:cd:96:a4:80:41:55:08:b9:
         97:50:72:a5:0a:26:2d:d3:93:00:51:17:ec:d0:ed:62:50:de:
         02:af:e7:33:20:2e:58:d2:17:08:98:3c:5f:a2:e7:49:8f:2e:
         0e:b4:2f:cf:ab:c9:7c:ad:70:d8:8f:29:ba:79:1b:e7:60:60:
         b7:1d:c1:5c:7b:cf:8c:34:f4:dd:af:9e:12:31:98:30:cb:ac:
         6f:65:cf:fb:42:e3:0e:39:5b:46:2a:92:32:3e:f2:fe:7a:89:
         72:60:2e:3d:f8:ca:77:3b:53:43:f7:bc:b0:15:03:b5:67:7b:
         d5:32:30:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 05:08:16 2025 by rpki-client