Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft
File:                     Qyo25tVwCwvKzOD0FXauaxPK08A.mft (raw, json)
Hash identifier:          a6qcdqxeIAztPDvPgQAHOSNECqcSi3KHvLoCaS8mjXE=
Subject key identifier:   88:23:FB:B7:87:B6:2F:66:76:23:AB:75:FF:A3:63:19:E6:D9:6D:BF
Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0
Certificate issuer:       /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0
Certificate serial:       0127
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft
Manifest number:          0125
Signing time:             Mon 09 Jun 2025 03:41:32 +0000
Manifest this update:     Mon 09 Jun 2025 03:41:32 +0000
Manifest next update:     Mon 16 Jun 2025 03:41:32 +0000
Files and hashes:         1: Qyo25tVwCwvKzOD0FXauaxPK08A.crl (hash: qX2kxvJozfQaFg0whwzX+d9LAjCbGoyxBhl38Bawk9w=)
                          2: 3ED152FE82A411EE87690C58C4F9AE02.roa (hash: +vHH0mUjaHjNGLcgyypJ8y/RcZMmCEJZHVNAnsairms=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl
                          rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 03:41:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 295 (0x127)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91627B1, serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0
        Validity
            Not Before: Jun  9 03:41:32 2025 GMT
            Not After : Jun 16 03:41:32 2025 GMT
        Subject: CN=684657ec-fddc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:a7:01:90:0a:3a:bf:d0:8b:cb:ef:43:ff:5f:
                    5f:e6:ba:ce:83:86:bc:d6:eb:08:b8:f1:37:c9:a5:
                    2c:b9:c4:50:2d:60:66:73:cc:e8:42:fa:b1:82:97:
                    93:57:47:85:c6:e9:ed:85:21:c7:af:cb:26:fa:1b:
                    5b:00:b5:d6:6c:39:80:e5:66:cd:0e:7b:95:9c:e6:
                    06:ba:f5:82:1f:42:a1:48:e7:d0:a8:2e:81:f9:a8:
                    8e:19:00:84:da:6e:a6:89:aa:db:bc:c1:b8:ca:82:
                    05:73:bd:14:72:31:36:31:a2:2e:6f:98:04:f7:37:
                    b6:7a:7b:50:18:e9:ad:72:44:e6:51:fd:0b:1a:65:
                    c1:0d:65:ee:d1:44:79:13:bf:0f:25:03:f2:b1:3d:
                    0e:7a:56:64:f0:9d:72:93:56:03:24:38:ee:37:3d:
                    22:fb:d0:f6:e8:26:1b:e1:83:fb:c4:38:42:cc:df:
                    a8:4c:f9:54:e9:ba:f6:c6:3a:d9:7f:fb:74:19:ca:
                    85:c4:9e:aa:0d:5e:23:8d:62:e8:96:cd:eb:b6:00:
                    cf:b7:5d:2f:6b:bb:bf:56:aa:02:12:a5:7c:14:59:
                    12:82:32:22:66:14:ae:20:54:7c:cb:23:6b:41:b3:
                    51:75:2d:3e:6a:3d:c6:30:2c:b6:58:ca:8a:4d:3f:
                    e5:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:23:FB:B7:87:B6:2F:66:76:23:AB:75:FF:A3:63:19:E6:D9:6D:BF
            X509v3 Authority Key Identifier:
                keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:40:3e:df:15:a4:35:84:62:cf:2d:da:1b:30:7b:6a:60:47:
         a7:22:5f:fb:c3:12:74:91:84:ff:7e:c9:76:ba:bd:e1:68:28:
         ec:19:ad:72:10:2d:0a:aa:b3:a1:14:9c:04:2c:e2:a5:b7:0e:
         c4:4b:98:ff:e7:da:93:86:16:b3:9b:87:e4:78:87:a8:ea:a5:
         2b:30:d6:f8:ea:76:21:19:81:da:48:c2:c9:51:c3:36:21:2d:
         34:48:78:f7:32:8c:43:1a:45:57:0f:04:ba:6f:ce:1f:73:f4:
         70:32:7f:e0:24:84:66:64:e3:c4:a1:89:ec:bd:99:0c:d8:cc:
         9e:07:70:44:9c:f7:88:5d:41:96:c2:73:5a:ce:ed:fd:8c:d8:
         54:3d:b5:1b:cb:76:e5:de:ea:02:b6:49:5c:30:85:9d:2f:71:
         cd:20:f9:47:de:ac:f5:82:1a:3b:a6:2b:df:54:a7:fe:84:41:
         3c:4f:a2:6b:3f:02:0f:9b:ff:05:5f:36:19:ef:4e:12:60:d2:
         92:6e:e1:43:a6:59:45:93:19:78:49:05:17:70:21:fd:09:35:
         66:79:79:c4:a4:c6:b7:a2:d3:c2:d0:a0:59:51:45:29:90:d1:
         8a:f3:bc:b9:ca:13:6b:86:74:3b:89:82:49:5c:59:b3:4f:0e:
         3e:9d:11:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 06:51:46 2025 by rpki-client