Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft
File:                     -QbZf3qofIbamQOdI27NtR0jH3o.mft (raw, json)
Hash identifier:          ob30VSoJtE3uqwc7JdO/WGlk1t30GkfgwHHUf9ovp3w=
Subject key identifier:   38:77:E0:A4:28:A6:AA:11:9F:DB:EF:39:15:8E:BF:B6:1A:9E:ED:91
Authority key identifier: F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A
Certificate issuer:       /CN=A919FE97/serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A
Certificate serial:       0692
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft
Manifest number:          0689
Signing time:             Thu 24 Jul 2025 22:32:22 +0000
Manifest this update:     Thu 24 Jul 2025 22:32:22 +0000
Manifest next update:     Thu 31 Jul 2025 22:32:22 +0000
Files and hashes:         1: -QbZf3qofIbamQOdI27NtR0jH3o.crl (hash: C5TphyV7QANe5sV6gTkmbtuoH5snh+cnEdYjXF3o9Ts=)
                          2: 06EFF1D07D4B11EBA736017DC4F9AE02.roa (hash: ACBayas3sWm8LRkAgsG4BLCCWR0NJPgThMvDEl+trzE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl
                          rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 31 Jul 2025 22:32:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1682 (0x692)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919FE97, serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A
        Validity
            Not Before: Jul 24 22:32:22 2025 GMT
            Not After : Jul 31 22:32:22 2025 GMT
        Subject: CN=6882b476-e560
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:20:b7:e3:db:63:32:09:82:f4:f6:96:ac:82:
                    3d:4b:8f:ff:b4:da:9e:32:c4:94:c0:58:c6:8b:c8:
                    d8:79:ba:ec:4a:4a:a7:63:84:57:d7:6f:fe:26:f6:
                    c0:c1:0d:25:31:95:33:54:de:00:7c:72:e0:ae:8d:
                    63:ae:11:d4:aa:cf:28:64:ca:95:1a:b9:54:4f:68:
                    0a:5b:e7:d9:cc:43:db:e7:b4:55:5a:6c:d7:c8:25:
                    22:30:d2:83:83:4b:a2:1f:0f:98:c2:46:af:fd:9b:
                    dd:1d:89:51:f9:16:da:b8:32:54:c9:f7:0a:76:58:
                    29:57:f6:ee:b1:6a:41:14:cd:37:b8:dc:6a:fa:95:
                    1d:a3:c6:50:4b:55:54:c4:d6:7d:ec:96:4d:9b:dd:
                    7d:74:3c:c7:74:2e:5f:e1:a0:97:a2:8f:09:dd:4f:
                    ef:d4:62:f3:bb:13:73:90:c7:43:30:13:74:e8:e9:
                    7c:17:e3:01:8d:b0:d1:a8:7b:55:4f:8f:f9:2c:af:
                    bb:55:b8:3b:e8:7a:ca:f0:f6:94:0a:c7:92:b9:5b:
                    02:bf:23:6e:f9:02:cf:96:8a:25:bd:1e:bf:7e:8c:
                    4c:47:ce:61:01:ef:b8:e0:04:86:8d:f3:af:ba:dd:
                    bf:ec:11:9f:f1:b3:70:93:0b:7f:63:4b:a7:0d:7b:
                    7f:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:77:E0:A4:28:A6:AA:11:9F:DB:EF:39:15:8E:BF:B6:1A:9E:ED:91
            X509v3 Authority Key Identifier:
                keyid:F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:96:93:43:93:95:1a:25:6e:d4:e3:24:54:97:91:14:54:6b:
         78:e6:49:59:fc:83:ab:70:ef:29:29:ce:28:ed:6b:f1:3e:b1:
         d9:22:29:37:20:cd:54:d2:73:fa:8d:83:37:16:c6:c7:15:be:
         3d:ff:d6:19:99:ea:3e:32:a4:59:0a:af:ba:62:92:f7:77:08:
         0f:91:72:35:84:01:19:e0:65:16:a0:b4:8a:71:da:04:a8:57:
         f4:c6:5a:fd:ae:7e:73:b5:2c:13:87:b6:78:97:32:c8:ac:3d:
         e0:92:1a:31:27:58:13:c2:0d:d2:0c:94:e4:12:1e:b6:9b:06:
         32:8b:b6:41:8b:e6:3e:ef:75:9d:0f:ef:9b:e9:04:5e:5f:d3:
         f4:36:43:53:72:db:24:a3:4f:ea:db:38:4b:ef:35:68:a6:95:
         07:15:8f:d3:9f:fd:d8:04:2e:8a:1f:4d:ad:d1:47:a7:b2:f3:
         e1:ba:e8:b1:ab:c7:dc:f6:38:69:70:c7:a8:f4:aa:ec:27:6a:
         ef:54:58:49:59:3a:1a:a6:6a:18:b9:7e:db:ea:00:f1:f1:f6:
         a4:3a:51:ad:67:22:ac:fc:41:81:1b:c2:75:b5:df:fc:c5:1f:
         ca:3b:7c:be:d4:09:4f:52:ca:76:f3:cf:41:8a:d0:b9:45:61:
         6b:78:8a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 07:09:15 2025 by rpki-client