Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft
File:                     HQDCg8qhqzzENxoqOE1isc1E-6c.mft (raw, json)
Hash identifier:          Xo/3VC8DnMKks9frvQlZ16wPgtzSh6oY7qIGSxvSb24=
Subject key identifier:   1B:E1:10:86:B0:C3:03:90:32:A8:9E:F4:A5:5A:C5:9D:D4:2D:8A:0C
Authority key identifier: 1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7
Certificate issuer:       /CN=A912F387/serialNumber=1D00C283CAA1AB3CC4371A2A384D62B1CD44FBA7
Certificate serial:       0153
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft
Manifest number:          0148
Signing time:             Fri 25 Jul 2025 04:37:55 +0000
Manifest this update:     Fri 25 Jul 2025 04:37:55 +0000
Manifest next update:     Fri 01 Aug 2025 04:37:55 +0000
Files and hashes:         1: HQDCg8qhqzzENxoqOE1isc1E-6c.crl (hash: 1oQHcLrVR1WEcj6jb2BG0CTSblvDldoouhrzakhzQB8=)
                          2: 9556705A2E6111EF9D743040C4F9AE02.roa (hash: RLnLzyrrcNZhWSbOgsksg70plHnwm/0y4IiOT7XePHI=)
                          3: FC34967C6C8611EFBF35D221C4F9AE02.roa (hash: g3qVGTL6N3Bx7PoU5ChuYFlVdWGCksOpw5qXnk0J/9I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl
                          rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 04:37:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 339 (0x153)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912F387, serialNumber=1D00C283CAA1AB3CC4371A2A384D62B1CD44FBA7
        Validity
            Not Before: Jul 25 04:37:55 2025 GMT
            Not After : Aug  1 04:37:55 2025 GMT
        Subject: CN=68830a23-dc4b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:f6:e4:7f:b4:27:0d:cc:95:df:68:68:19:25:
                    92:a9:77:04:47:ea:49:c0:60:e7:9b:0a:4c:11:a3:
                    e5:26:e9:b5:36:60:c8:02:5f:85:f3:4b:bf:17:5c:
                    d5:c5:4f:1a:39:8f:28:41:76:17:9f:e3:81:f0:43:
                    0a:34:1f:28:07:ed:39:a9:2c:ed:f6:9e:ff:b7:12:
                    be:52:e1:1f:32:90:de:28:3c:80:7d:6b:eb:ca:88:
                    e6:92:19:6c:91:98:89:a1:73:cf:51:cf:87:5d:49:
                    32:80:14:7d:e5:45:1b:ca:0e:a0:a2:a1:99:e2:e2:
                    d0:5c:54:ae:89:8a:f2:36:88:ff:48:4d:da:8b:ce:
                    74:3f:95:11:cb:ba:19:a6:fe:78:ec:5d:4c:3e:b2:
                    dd:49:74:c6:19:10:14:a3:c2:b5:39:a0:ff:f3:71:
                    50:38:e5:53:d8:64:d7:dc:76:b3:ec:97:e9:cf:33:
                    07:b8:da:01:03:b5:8d:46:c9:85:6c:36:d8:70:47:
                    83:22:39:d7:ab:66:42:93:c3:7c:36:6a:71:93:51:
                    d0:49:9e:7e:86:19:55:70:56:41:7b:22:50:c8:ee:
                    84:ed:8a:68:c8:b0:96:36:aa:eb:31:c8:d7:81:24:
                    38:21:bd:26:c4:fc:a7:3e:bb:a3:b6:0e:5a:5e:b3:
                    16:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:E1:10:86:B0:C3:03:90:32:A8:9E:F4:A5:5A:C5:9D:D4:2D:8A:0C
            X509v3 Authority Key Identifier:
                keyid:1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:81:4a:18:27:fe:28:c1:29:45:5b:8e:99:c9:66:66:92:6c:
         54:f6:03:df:89:9e:23:95:85:62:6f:3f:7d:dd:9a:d7:67:ed:
         8d:fd:7d:44:72:14:92:ac:4b:91:b5:42:c9:29:1b:6c:9c:0f:
         dc:96:d3:8d:cc:12:a0:98:4e:77:d8:ec:00:74:ab:42:e0:4b:
         3a:31:83:2f:9e:ab:ff:5a:f8:51:43:31:fa:dc:97:a1:f6:22:
         da:43:76:61:23:b4:f9:60:6b:93:51:e9:8f:cf:a7:78:68:8b:
         aa:81:38:22:37:4b:c6:0f:f9:fa:db:45:bc:a8:44:74:60:e4:
         42:f0:9b:1f:11:d7:c0:97:d5:17:2f:5a:23:44:c8:50:b0:5d:
         7c:eb:54:0e:21:60:67:5f:d1:0f:ef:ec:3b:7d:b3:c9:0d:78:
         c7:b1:13:54:c2:6e:1e:cf:70:2a:d6:13:0c:b7:37:8e:ae:62:
         e1:9b:e4:cb:14:56:37:71:b6:2e:37:6e:df:6c:17:dc:f4:e1:
         24:1f:ea:0f:33:a3:9d:4a:be:0b:42:28:a4:0c:10:ca:fe:dc:
         3e:87:02:52:e1:8d:74:b5:07:05:3b:9d:34:d4:26:fb:7e:53:
         fb:11:05:00:94:55:81:e5:3f:e4:03:ff:7d:82:27:0a:1e:c6:
         e4:55:a5:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 02:04:12 2025 by rpki-client