Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft
File:                     QgBM9ryh-lZCT17qJPYqkrJc3s8.mft (raw, json)
Hash identifier:          pRD/L2oUg1okLbZ+ueUL72cu4wmyDRA396mhH4wKAio=
Subject key identifier:   46:8D:02:49:09:4D:A2:C4:D5:EF:8B:02:3C:F2:E3:2B:E7:99:77:C3
Authority key identifier: 42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF
Certificate issuer:       /CN=A919960D/serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF
Certificate serial:       01D0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft
Manifest number:          01CB
Signing time:             Fri 13 Jun 2025 02:00:46 +0000
Manifest this update:     Fri 13 Jun 2025 02:00:46 +0000
Manifest next update:     Fri 20 Jun 2025 02:00:46 +0000
Files and hashes:         1: QgBM9ryh-lZCT17qJPYqkrJc3s8.crl (hash: 7sroBoF+CPiVAn0Qe4lSgxfEqiLQHNpGXHcJZf9NJqo=)
                          2: BE9174768DDE11ED97AFDA82C4F9AE02.roa (hash: L+V30ULZZ1KBiifHC7zDGdNJ17lrpWMv8iHx76Nc92w=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl
                          rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 02:00:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 464 (0x1d0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919960D, serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF
        Validity
            Not Before: Jun 13 02:00:46 2025 GMT
            Not After : Jun 20 02:00:46 2025 GMT
        Subject: CN=684b864e-f05b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:eb:bb:ec:94:2a:56:8c:3d:7a:6c:c5:90:1e:
                    e4:da:01:74:79:65:47:be:12:95:eb:d6:18:39:28:
                    8d:df:94:1c:0a:16:af:04:71:c9:d9:2b:1f:dc:ce:
                    80:74:d1:9d:2d:b2:09:18:ef:6f:a3:ac:5e:41:ba:
                    5c:94:ae:2f:80:23:70:c4:49:af:cc:a7:50:40:ec:
                    4a:98:3d:c5:94:8b:47:f9:eb:90:f2:02:a2:30:0b:
                    33:77:fa:c9:f8:7c:eb:15:3e:ad:15:37:78:61:b1:
                    c6:62:1c:fb:2a:56:9b:e9:64:be:fc:6d:f4:2d:fd:
                    ea:1d:55:92:c8:8f:8e:17:46:80:0f:68:ea:45:3f:
                    c9:9b:bf:fe:5f:b7:81:74:98:55:ec:41:8c:1a:b9:
                    cf:86:76:87:f2:ca:d4:3f:8d:c2:58:7f:36:74:38:
                    ab:0e:df:cb:82:b4:b5:28:41:9c:54:cc:e6:72:e1:
                    e4:4e:33:a0:bd:3a:80:6c:93:37:95:f1:24:84:c0:
                    3c:62:7c:ec:06:f3:a6:26:b2:f4:42:ad:56:69:8f:
                    24:e8:9f:bb:1e:4d:b5:71:cb:51:74:7d:4d:30:26:
                    a2:52:65:fd:cf:e8:8b:c9:9e:1a:e7:32:ef:4c:69:
                    78:a3:f4:dd:70:37:3d:f4:12:e5:c4:73:35:32:75:
                    9b:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:8D:02:49:09:4D:A2:C4:D5:EF:8B:02:3C:F2:E3:2B:E7:99:77:C3
            X509v3 Authority Key Identifier:
                keyid:42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:e0:77:0f:95:3f:c0:cb:6b:6e:4b:a2:0c:56:68:f7:c4:bc:
         eb:8e:37:f0:8b:d1:db:48:4a:98:9e:9d:84:9d:15:eb:1a:f8:
         ac:5b:a5:35:e5:b5:5c:30:a6:e8:87:d5:51:fc:19:82:eb:3a:
         f5:a5:3e:35:4f:a3:6a:db:24:b7:bb:d4:58:29:d9:3f:ca:74:
         9f:b7:14:4b:c4:38:8f:59:52:01:3f:14:8e:4c:f9:fb:38:b6:
         03:19:9f:f0:c7:32:37:93:49:7a:61:40:cd:57:47:56:1b:de:
         3e:aa:94:93:b6:7a:1b:e3:0f:b3:51:8c:53:f1:60:e0:68:7f:
         41:46:b0:4c:e6:dc:ba:a1:29:59:31:7a:66:e7:fc:5e:6b:96:
         88:6e:e6:45:da:d0:70:52:e8:cf:c9:a9:c3:78:c3:ba:5c:b9:
         e8:e0:09:b1:3f:eb:87:16:46:33:56:d4:4e:d0:fd:a3:44:e9:
         6a:69:12:ef:fd:9f:a6:94:c3:3e:0d:c3:ad:e2:e6:51:cd:f0:
         79:bb:3e:71:e3:26:b7:34:d3:a5:af:40:21:33:57:0e:c5:47:
         92:65:02:65:e1:c0:d4:70:cc:19:42:94:99:b9:20:5f:a3:6e:
         40:66:d6:f9:49:1a:7a:69:cc:8d:e7:cd:cd:9a:30:e0:e0:72:
         87:b3:e3:e2
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTk2MEQxMTAvBgNVBAUTKDQyMDA0Q0Y2QkNBMUZBNTY0MjRGNUVFQTI0RjYyQTky
QjI1Q0RFQ0YwHhcNMjUwNjEzMDIwMDQ2WhcNMjUwNjIwMDIwMDQ2WjAYMRYwFAYD
VQQDEw02ODRiODY0ZS1mMDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApOu77JQqVow9emzFkB7k2gF0eWVHvhKV69YYOSiN35QcChavBHHJ2Ssf3M6A
dNGdLbIJGO9vo6xeQbpclK4vgCNwxEmvzKdQQOxKmD3FlItH+euQ8gKiMAszd/rJ
+HzrFT6tFTd4YbHGYhz7Klab6WS+/G30Lf3qHVWSyI+OF0aAD2jqRT/Jm7/+X7eB
dJhV7EGMGrnPhnaH8srUP43CWH82dDirDt/LgrS1KEGcVMzmcuHkTjOgvTqAbJM3
lfEkhMA8YnzsBvOmJrL0Qq1WaY8k6J+7Hk21cctRdH1NMCaiUmX9z+iLyZ4a5zLv
TGl4o/TdcDc99BLlxHM1MnWbNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEaNAkkJ
TaLE1e+LAjzy4yvnmXfDMB8GA1UdIwQYMBaAFEIATPa8ofpWQk9e6iT2KpKyXN7P
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTYwRC9CRDBCNjRDNjhE
REExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1sWkNUMTdxSlBZcWtySmMz
czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1FnQk05cnloLWxaQ1QxN3FKUFlxa3JKYzNzOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
OTYwRC9CRDBCNjRDNjhEREExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1s
WkNUMTdxSlBZcWtySmMzczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCD4HcPlT/Ay2tuS6IMVmj3xLzrjjfwi9HbSEqYnp2EnRXrGvisW6U1
5bVcMKboh9VR/BmC6zr1pT41T6Nq2yS3u9RYKdk/ynSftxRLxDiPWVIBPxSOTPn7
OLYDGZ/wxzI3k0l6YUDNV0dWG94+qpSTtnob4w+zUYxT8WDgaH9BRrBM5ty6oSlZ
MXpm5/xea5aIbuZF2tBwUujPyanDeMO6XLno4AmxP+uHFkYzVtRO0P2jROlqaRLv
/Z+mlMM+DcOt4uZRzfB5uz5x4ya3NNOlr0AhM1cOxUeSZQJl4cDUcMwZQpSZuSBf
o25AZtb5SRp6acyN583NmjDg4HKHs+Pi
-----END CERTIFICATE-----
Generated at Fri Jun 13 10:21:39 2025 by rpki-client