Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft
File:                     Qyo25tVwCwvKzOD0FXauaxPK08A.mft (raw, json)
Hash identifier:          TAb4v9Ei2QXj/fpqQJb78ULTF1oBn35SBfVhiZx2uAc=
Subject key identifier:   52:2C:59:6A:D6:57:5E:F3:D1:7D:6F:2C:33:AB:A2:55:2D:8E:0A:2E
Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0
Certificate issuer:       /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0
Certificate serial:       012A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft
Manifest number:          0128
Signing time:             Sun 15 Jun 2025 03:47:14 +0000
Manifest this update:     Sun 15 Jun 2025 03:47:14 +0000
Manifest next update:     Sun 22 Jun 2025 03:47:14 +0000
Files and hashes:         1: Qyo25tVwCwvKzOD0FXauaxPK08A.crl (hash: PLnDQ/CSkKRFOTMUJpDBdsg2dlfZKB5HdH8SPZUu10c=)
                          2: 3ED152FE82A411EE87690C58C4F9AE02.roa (hash: +vHH0mUjaHjNGLcgyypJ8y/RcZMmCEJZHVNAnsairms=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl
                          rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 22 Jun 2025 02:50:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 298 (0x12a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91627B1, serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0
        Validity
            Not Before: Jun 15 03:47:14 2025 GMT
            Not After : Jun 22 03:47:14 2025 GMT
        Subject: CN=684e4242-a63f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:d9:c7:54:47:d5:34:1d:df:0e:e9:d2:85:33:
                    6b:b7:e6:39:3a:01:66:27:aa:7f:64:73:d8:bc:7b:
                    97:10:ac:2f:66:fb:71:f2:4d:8f:7a:66:6f:92:a5:
                    9b:f2:2a:75:7b:c1:7d:5d:ce:dc:e0:9e:27:98:03:
                    e2:de:92:f7:e2:a3:2f:69:25:f7:17:7e:39:18:5b:
                    44:15:da:95:20:30:c2:6e:19:e9:a9:0f:97:04:41:
                    b3:8e:43:b8:4a:0f:b6:ce:40:3b:4b:f7:c2:81:82:
                    8b:97:8a:c9:25:71:dd:fa:40:d1:82:74:34:6e:3f:
                    34:5f:82:04:f1:8d:19:85:8c:07:c4:34:05:98:a2:
                    a0:ed:50:33:89:a6:13:1e:79:60:f7:48:70:0b:f7:
                    21:77:0e:d7:6b:36:d9:77:a5:b4:77:95:ec:43:a4:
                    e3:7c:43:8b:78:1f:22:7b:6f:d1:b3:39:bb:d7:10:
                    d2:66:c4:36:ec:bc:51:ee:d8:51:7c:a7:3b:92:63:
                    2c:26:c3:fb:83:54:da:5b:c1:a4:cc:ab:d3:0d:ed:
                    e6:aa:d4:f4:f4:ef:2f:fb:82:da:9f:3c:16:4e:9d:
                    ad:58:f4:56:40:56:ec:f9:91:00:46:6b:29:2c:e0:
                    86:89:9b:85:4a:36:21:76:7a:d1:99:c3:bd:fb:3d:
                    82:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:2C:59:6A:D6:57:5E:F3:D1:7D:6F:2C:33:AB:A2:55:2D:8E:0A:2E
            X509v3 Authority Key Identifier:
                keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         51:d1:58:3a:79:16:0c:13:df:2f:60:2e:2b:cb:34:17:ec:38:
         06:b0:5a:90:59:d3:b5:4a:fc:27:65:46:82:dd:2c:22:e9:6a:
         d0:3a:e8:27:10:cd:a1:3a:ac:8f:3d:1c:f5:53:5f:d0:65:e4:
         66:f0:8c:86:62:fb:41:9a:53:31:00:1d:19:d4:03:42:08:5d:
         69:79:e8:7e:bb:d2:ff:25:e5:9f:7b:73:ed:35:d9:f2:6c:71:
         18:13:24:a8:48:13:04:4a:a6:6a:09:e3:78:d2:6d:45:e7:4a:
         1b:0a:8e:3c:7e:4f:6c:88:cf:24:e5:03:ca:bd:59:80:fa:72:
         f5:5c:ad:81:c6:64:9a:8b:d7:f2:a1:56:af:d1:60:dc:19:19:
         a1:18:9d:a0:97:25:ee:42:d6:ba:f4:9c:01:1f:27:c2:a2:9f:
         a4:50:eb:0e:0f:99:b6:19:44:50:03:69:f5:0a:59:a3:52:63:
         c1:d9:f3:7b:80:0b:11:7d:c5:57:33:bf:b4:f0:3f:61:17:88:
         f1:51:13:07:4b:54:b1:07:3d:5a:da:2d:b8:9f:4d:10:6e:94:
         d2:67:8f:7a:a6:ba:fe:e8:38:40:30:df:9c:6f:fc:e7:bb:4a:
         da:a4:47:ca:cc:a9:be:2b:00:40:c6:b7:73:f3:2d:1f:20:68:
         20:56:d9:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:17:49 2025 by rpki-client