Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft
File:                     QgBM9ryh-lZCT17qJPYqkrJc3s8.mft (raw, json)
Hash identifier:          gHd38xCtm4w4XBcCv6YQ8MOk62vVf7iI8T0kEH8Jg/Q=
Subject key identifier:   81:52:87:AC:34:23:6D:AB:B4:79:19:A8:A2:43:11:85:78:86:C0:F6
Authority key identifier: 42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF
Certificate issuer:       /CN=A919960D/serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF
Certificate serial:       01CE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft
Manifest number:          01C9
Signing time:             Mon 09 Jun 2025 02:06:25 +0000
Manifest this update:     Mon 09 Jun 2025 02:06:24 +0000
Manifest next update:     Mon 16 Jun 2025 02:06:24 +0000
Files and hashes:         1: QgBM9ryh-lZCT17qJPYqkrJc3s8.crl (hash: eYpGMDklnnUwbxTqc3bwEKz+EPjLljq/djpvRG8zcbE=)
                          2: BE9174768DDE11ED97AFDA82C4F9AE02.roa (hash: L+V30ULZZ1KBiifHC7zDGdNJ17lrpWMv8iHx76Nc92w=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl
                          rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 02:06:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 462 (0x1ce)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919960D, serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF
        Validity
            Not Before: Jun  9 02:06:24 2025 GMT
            Not After : Jun 16 02:06:24 2025 GMT
        Subject: CN=684641a1-8428
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:3b:ec:67:64:21:98:3d:73:81:4f:0a:d0:80:
                    81:31:e8:63:c4:db:01:1c:48:58:c3:a4:da:5c:99:
                    8c:c2:3a:ea:4e:4a:f8:66:d4:6f:a6:c3:c7:e2:03:
                    8b:e8:a7:49:a2:5b:e4:68:b8:cd:19:cf:60:d1:58:
                    e3:0b:76:be:c3:f1:73:9d:08:5f:2b:e3:e1:0e:1d:
                    4f:3f:cd:4c:60:de:b9:b6:43:cb:0a:e1:ce:4a:7f:
                    f0:a0:56:a6:60:97:d9:e0:5a:01:ac:dd:eb:91:ae:
                    8c:5c:b8:8d:a5:5b:60:68:95:83:d0:e2:3e:88:d1:
                    f2:8e:66:9a:c0:59:15:25:71:fa:6f:ec:0d:be:76:
                    75:d5:20:1d:ca:e6:b8:6c:63:ad:90:28:91:2f:47:
                    6c:3c:68:d6:3d:03:77:a9:11:ae:89:d8:a0:a6:8a:
                    d6:f0:09:12:b7:a0:cd:5d:71:34:e5:75:01:81:88:
                    84:c2:cf:0c:c3:e8:4b:8e:57:34:44:0e:22:52:73:
                    68:53:03:54:01:45:a1:4d:38:55:fc:fd:1d:c9:4c:
                    8e:b9:84:0a:fa:29:1b:d2:be:f6:a7:4a:4f:65:31:
                    50:fb:f1:e1:ed:7e:72:88:f2:e8:76:5f:77:df:1c:
                    eb:bb:90:11:3c:67:f2:07:2a:5a:ad:20:0d:ef:2e:
                    3d:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:52:87:AC:34:23:6D:AB:B4:79:19:A8:A2:43:11:85:78:86:C0:F6
            X509v3 Authority Key Identifier:
                keyid:42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:bc:bf:30:4b:90:44:ad:1d:20:2c:39:3f:88:09:03:59:41:
         b0:d8:d2:8a:f1:8a:cc:81:4a:1b:00:0d:4e:b6:6d:43:2c:dc:
         40:e4:4b:9c:8f:0a:1c:9b:a1:30:d2:45:ee:f3:ac:69:e1:41:
         19:1d:86:68:5b:46:42:fc:93:23:64:5f:6d:1d:bc:a5:d8:f3:
         45:7a:77:13:bc:0c:90:1b:00:85:f1:f6:c5:62:d0:41:54:68:
         e7:78:0a:7e:84:e0:d5:63:ef:1a:dd:18:08:41:7c:31:f4:33:
         cd:75:70:0f:18:f4:50:5a:b6:39:fa:01:08:d0:07:c7:48:2a:
         45:87:79:86:e4:3b:26:b0:38:25:04:33:a3:50:a9:fd:25:e4:
         f3:80:bf:7e:7d:0f:ff:d7:b3:10:48:5d:72:a9:f1:da:12:66:
         ce:ae:a1:5c:9f:c2:86:cb:12:58:ae:55:b7:53:8e:12:a2:27:
         ed:02:2b:5a:c9:d9:10:5f:a1:97:4f:e5:a8:71:9c:47:e1:87:
         30:49:7f:90:6d:b4:5d:45:96:be:33:17:5e:2c:4b:a3:12:81:
         6a:e2:4c:de:f0:53:1a:a6:25:b8:ee:55:1e:4a:59:35:22:0d:
         e2:6e:06:c7:f1:30:b5:83:ad:49:69:e9:83:30:47:c7:e3:60:
         78:6f:86:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 02:03:25 2025 by rpki-client