Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft
File:                     sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft (raw, json)
Hash identifier:          tlRynHYOErAEcMvYzj9erj++hA/YV6poa8LnDS4P91g=
Subject key identifier:   ED:73:F3:84:0E:B6:D0:BC:24:6F:67:8D:62:D1:27:91:67:F7:39:A7
Authority key identifier: B1:91:AE:20:68:14:6F:9C:73:9B:EA:6C:D5:9E:79:2C:4F:89:7B:76
Certificate issuer:       /CN=A91D5320/serialNumber=B191AE2068146F9C739BEA6CD59E792C4F897B76
Certificate serial:       0175
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft
Manifest number:          0170
Signing time:             Thu 03 Jul 2025 03:58:22 +0000
Manifest this update:     Thu 03 Jul 2025 03:58:22 +0000
Manifest next update:     Thu 10 Jul 2025 03:58:22 +0000
Files and hashes:         1: sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl (hash: iWPDaXnZ5rU5s6bcaDiOMdFu1IWl6OvBGmIgsOIZil4=)
                          2: E7B472CE2DC811EEBADF8E61C4F9AE02.roa (hash: 54qHC7QVMBwoC0O3cMcEci4Yy+Xl8hxRZfIa8v1MHj8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl
                          rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 10 Jul 2025 03:15:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 373 (0x175)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D5320, serialNumber=B191AE2068146F9C739BEA6CD59E792C4F897B76
        Validity
            Not Before: Jul  3 03:58:22 2025 GMT
            Not After : Jul 10 03:58:22 2025 GMT
        Subject: CN=6865ffde-37da
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:12:47:fe:55:78:6b:2a:37:64:6f:56:b8:7a:
                    b5:c0:72:1e:d1:ed:5b:3e:75:04:e2:e5:fd:c3:f8:
                    d2:59:4b:db:cf:f2:3c:6a:29:cf:cf:b1:f9:31:a0:
                    70:e9:6d:d3:9e:bf:c4:e5:38:4b:9a:78:a0:4f:3b:
                    2b:47:ba:fc:e5:c2:5e:d1:a7:17:34:c4:74:40:6c:
                    d5:4d:38:c6:7d:e8:23:82:ac:3b:05:14:07:bc:24:
                    f7:fc:dd:1b:09:82:4f:fc:69:6d:4a:bc:b4:9a:21:
                    d1:a0:8d:31:d9:46:86:5a:d3:1b:d3:05:da:3c:a2:
                    94:76:d9:e7:51:d6:f3:6d:2f:ce:3a:f2:25:27:cb:
                    f5:89:a4:9a:9c:48:96:91:72:f5:a6:58:43:7b:d0:
                    9e:11:c3:05:d2:4a:8c:1a:93:7b:83:f2:4f:7c:d6:
                    4f:94:b0:33:56:cd:e8:32:23:db:87:48:fc:b0:6a:
                    bc:d9:c8:39:bc:0d:82:dc:b8:a0:74:eb:9e:88:47:
                    ec:b1:50:29:5c:f5:c5:94:a6:02:73:0f:8a:2b:76:
                    60:43:ef:8e:08:dd:e4:e6:d9:c4:82:52:ce:b8:40:
                    0f:67:ca:1a:6f:c7:40:86:d1:cd:ba:36:87:76:ec:
                    2f:e3:ce:c7:f7:f9:0d:0e:75:44:6f:f9:db:e9:b8:
                    84:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:73:F3:84:0E:B6:D0:BC:24:6F:67:8D:62:D1:27:91:67:F7:39:A7
            X509v3 Authority Key Identifier:
                keyid:B1:91:AE:20:68:14:6F:9C:73:9B:EA:6C:D5:9E:79:2C:4F:89:7B:76

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:98:44:d2:34:fb:5a:91:b2:fa:c5:c6:c5:b4:e4:2a:dc:82:
         1e:94:30:8e:0d:fb:e4:f6:e8:99:4a:6d:75:bc:18:ba:42:76:
         ee:73:ba:2c:81:6b:e0:53:b5:ce:00:a5:a2:31:a7:46:08:a7:
         94:fe:4d:6b:38:ff:e9:94:7f:dd:a0:ba:78:41:2a:be:a8:8a:
         4e:e7:3e:09:59:6d:ce:5e:d2:86:3d:4a:f1:8c:11:61:0a:e1:
         ab:03:8d:f7:53:2f:49:b7:1e:b4:82:08:44:a1:ae:95:e3:e2:
         c6:7a:16:3a:83:8f:de:a2:ba:aa:6a:62:31:3c:95:63:71:e1:
         b1:bb:e2:21:54:0d:f7:c6:46:5b:5d:ad:9c:68:56:1f:e8:5b:
         aa:5a:18:4c:c8:7e:43:fe:79:8f:0a:cb:27:0d:da:9f:9f:bc:
         d4:54:f7:4e:6a:6b:61:80:3d:e7:e5:3f:0e:da:1a:05:4e:74:
         05:b7:56:fd:e5:b9:f2:f3:d6:41:0a:15:d5:18:3a:2f:17:b2:
         46:3c:41:f6:c4:1d:ef:9b:33:49:cc:45:0a:ee:82:d3:45:3a:
         93:38:2f:66:78:96:be:14:b0:f0:86:67:b0:87:99:d7:8f:86:
         20:8b:bc:00:bc:9f:16:74:32:05:ac:8a:99:2a:c7:fd:55:a0:
         83:96:fd:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 07:02:10 2025 by rpki-client