Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft
File:                     HQDCg8qhqzzENxoqOE1isc1E-6c.mft (raw, json)
Hash identifier:          ajDOVO+Ly/Gn8JCBLbKE7rtUFoqlTT6t6dsmwR3UrbM=
Subject key identifier:   EA:BB:ED:A0:44:6A:2C:7A:9E:6F:CB:69:77:BD:FC:85:4A:48:4C:76
Authority key identifier: 1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7
Certificate issuer:       /CN=A912F387/serialNumber=1D00C283CAA1AB3CC4371A2A384D62B1CD44FBA7
Certificate serial:       0152
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft
Manifest number:          0147
Signing time:             Wed 23 Jul 2025 04:39:55 +0000
Manifest this update:     Wed 23 Jul 2025 04:39:55 +0000
Manifest next update:     Wed 30 Jul 2025 04:39:55 +0000
Files and hashes:         1: HQDCg8qhqzzENxoqOE1isc1E-6c.crl (hash: 77Myqy7YUZtXuqpJQLHa7gRgscZOY9hx0VPKk7vCDSQ=)
                          2: 9556705A2E6111EF9D743040C4F9AE02.roa (hash: RLnLzyrrcNZhWSbOgsksg70plHnwm/0y4IiOT7XePHI=)
                          3: FC34967C6C8611EFBF35D221C4F9AE02.roa (hash: g3qVGTL6N3Bx7PoU5ChuYFlVdWGCksOpw5qXnk0J/9I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl
                          rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 04:39:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 338 (0x152)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912F387, serialNumber=1D00C283CAA1AB3CC4371A2A384D62B1CD44FBA7
        Validity
            Not Before: Jul 23 04:39:55 2025 GMT
            Not After : Jul 30 04:39:55 2025 GMT
        Subject: CN=6880679b-1708
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:9b:70:0c:75:21:c1:bc:29:90:86:2e:3f:7f:
                    bb:eb:5f:42:3f:3b:bf:7f:fd:7a:a2:39:3f:93:c5:
                    cc:02:f2:04:eb:8d:d0:bb:d4:08:47:f1:94:05:e3:
                    db:db:32:6b:88:89:ac:06:ed:59:7e:b3:c8:c3:da:
                    6e:31:c1:4c:83:77:7d:4e:4b:47:67:a0:4f:5c:e5:
                    3f:db:42:0d:05:09:11:cc:71:39:d4:eb:e9:ee:61:
                    74:fd:25:ef:f6:0a:65:ce:e0:9b:89:d3:2e:68:00:
                    e1:15:29:2f:46:9c:90:4b:9d:f9:b7:2e:63:8f:48:
                    e6:21:9f:30:a4:24:7b:c9:93:60:fe:de:01:ce:03:
                    5b:40:e3:9c:05:f9:bc:b4:fd:b2:b9:72:cb:25:bd:
                    58:82:6e:d4:98:90:4d:86:9b:b3:88:ae:27:e4:23:
                    2f:e0:16:26:80:e2:46:7d:8c:0a:e3:55:59:01:f6:
                    18:ce:a0:54:53:43:5a:3d:ca:70:d8:74:02:ac:47:
                    8e:1f:58:08:60:0f:fa:87:a3:03:76:91:8a:30:48:
                    6b:ac:a3:17:11:f5:4e:f0:26:7d:c2:37:37:7e:0f:
                    5e:a7:92:bf:be:58:90:d9:8d:6f:da:30:dd:88:ea:
                    82:b1:91:e8:62:fe:05:fc:2c:ab:24:b3:4f:39:e4:
                    ad:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:BB:ED:A0:44:6A:2C:7A:9E:6F:CB:69:77:BD:FC:85:4A:48:4C:76
            X509v3 Authority Key Identifier:
                keyid:1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:7e:63:f7:99:2b:eb:a8:18:c4:90:92:82:40:12:51:bf:0d:
         05:4d:65:18:37:2a:d8:2f:d2:81:9a:00:e8:31:8a:5e:50:a4:
         2e:52:95:b2:a0:88:b5:9c:69:90:1b:33:fe:0c:79:38:79:0f:
         7e:b9:c8:da:97:d8:22:e6:39:f6:d5:b8:e6:a4:27:03:08:38:
         fe:ad:08:42:c2:fb:c3:b0:92:1b:20:2a:99:4e:fc:44:bc:32:
         51:18:d0:66:df:b2:8b:37:b1:33:b6:cb:ed:f9:b6:6a:83:76:
         9e:75:bd:70:1d:9c:35:7a:2c:d1:fd:01:31:a3:61:c7:6e:44:
         eb:fd:38:ff:22:eb:9d:db:20:7f:2b:bc:27:e5:66:a2:23:75:
         75:c0:ac:e4:5d:3f:7d:68:25:86:37:aa:08:ec:61:67:07:ed:
         15:18:8a:1d:c0:a3:86:1c:04:20:28:20:d0:79:73:19:c9:23:
         9b:f6:e4:b4:9c:b2:ee:6e:11:fc:43:30:85:50:bb:67:a2:b3:
         14:8d:a3:3e:6d:9e:9c:fd:41:2f:3a:07:10:c1:cb:99:26:21:
         32:4f:d3:cb:86:95:74:b9:83:37:01:74:db:b8:5e:36:51:5a:
         63:88:0e:fc:3b:5f:f1:f7:c0:d0:ed:ce:c2:45:76:83:15:a6:
         8b:e1:6a:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 03:58:38 2025 by rpki-client