Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
File:                     QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft (raw, json)
Hash identifier:          heLCawP9f7G2hEP9t+f1U81KX80Zp+F++HTuXDWifsM=
Subject key identifier:   DC:0A:AF:46:0B:7B:25:8A:53:C9:28:ED:97:85:3C:94:E7:92:B4:35
Authority key identifier: 41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B
Certificate issuer:       /CN=A91F4F4C/serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B
Certificate serial:       07CB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
Manifest number:          07C4
Signing time:             Tue 10 Jun 2025 21:00:57 +0000
Manifest this update:     Tue 10 Jun 2025 21:00:57 +0000
Manifest next update:     Tue 17 Jun 2025 21:00:56 +0000
Files and hashes:         1: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl (hash: kbYAwtys7nukpskj9wAUJZ9HuXFd9CqS9jSGd9H/qXI=)
                          2: 770BCA98F97A11EAB938DA5DC4F9AE02.roa (hash: fZBIeDUKsdRpTczFyA/tRXZpgobXbgClU9BqXFuQJMY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl
                          rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 17 Jun 2025 21:00:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1995 (0x7cb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F4F4C, serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B
        Validity
            Not Before: Jun 10 21:00:57 2025 GMT
            Not After : Jun 17 21:00:56 2025 GMT
        Subject: CN=68489d09-9606
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:ed:f2:f5:0b:9d:73:b6:3b:42:48:90:0f:a7:
                    4d:46:62:59:6e:85:c1:c6:aa:39:fd:60:78:c1:69:
                    ae:be:9b:4b:1c:94:87:79:1b:6c:42:b7:f9:5e:e3:
                    ba:b2:e3:e2:4a:1b:79:32:28:73:e2:a2:6e:e2:46:
                    26:fc:e2:7a:14:4b:2a:72:93:d9:01:d2:32:2d:d9:
                    d8:5c:17:76:11:53:f6:47:c9:d0:8f:c0:c9:ab:44:
                    8f:6b:b9:2e:41:1d:d0:aa:21:33:e0:14:e9:7b:b9:
                    5c:bc:87:10:ec:33:09:c9:d2:a0:28:3f:02:7e:36:
                    8f:ef:c7:5a:32:8d:d2:6c:b6:e5:bd:26:58:84:05:
                    19:8e:c4:79:87:60:9b:ae:1f:b3:ff:c4:fc:8a:73:
                    0a:d4:39:9a:61:8f:c0:2b:0e:fa:59:8c:80:c8:51:
                    41:7b:23:a1:83:dc:9a:e7:45:a1:44:7c:28:25:04:
                    fc:15:a5:8c:6b:20:86:b8:a6:ab:9f:2b:52:20:17:
                    3f:db:cd:2e:96:44:5c:08:b7:2a:7c:25:c1:a6:16:
                    d7:89:e4:88:7e:d7:ef:7e:9c:62:f1:65:4e:e6:30:
                    d8:1f:d9:75:67:df:3d:d0:ba:58:ef:d1:f5:06:5a:
                    7a:52:c6:c0:df:33:c0:ed:5b:c9:58:bd:47:6f:12:
                    44:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DC:0A:AF:46:0B:7B:25:8A:53:C9:28:ED:97:85:3C:94:E7:92:B4:35
            X509v3 Authority Key Identifier:
                keyid:41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:20:94:9c:71:79:2f:34:ea:c9:ad:b2:e0:c6:a9:7f:f9:55:
         bc:a4:44:80:3f:ec:dc:28:90:69:49:c9:5b:ba:8c:c9:43:4a:
         f4:e3:89:4d:42:08:cc:65:a6:4e:59:ec:73:20:db:d8:e7:a5:
         73:20:0d:47:07:af:37:ca:7d:b1:29:97:29:bf:b0:a5:08:34:
         5c:41:3d:44:91:3b:f8:57:e8:d8:59:49:e7:20:db:17:c2:a2:
         ae:44:5f:77:16:9d:67:38:fa:64:b5:51:b9:d4:f9:f5:9e:cb:
         b7:e6:c4:8a:31:a9:d4:87:a6:24:a5:f4:b3:f5:28:a4:13:55:
         ef:2f:35:20:fc:fe:c3:d5:0c:ec:0d:2c:39:e9:84:36:b2:61:
         8d:36:48:cd:be:25:bb:f6:af:ed:34:b5:61:1c:45:b1:9c:ab:
         43:71:d3:40:87:71:0d:2f:0e:22:03:7a:4b:d2:a1:a4:3a:51:
         61:5d:55:c1:ee:d1:c4:d9:eb:41:88:f3:5a:40:c3:26:c5:ad:
         0b:34:74:a1:4c:b8:45:a9:39:2c:62:f9:1c:19:1a:66:36:0a:
         ec:f0:7b:ab:66:7c:d3:06:73:2c:97:f0:10:5f:86:81:0a:a5:
         31:74:18:c1:9b:92:3e:17:94:87:29:c1:57:ee:1a:f0:a1:23:
         ae:e8:8f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 06:17:29 2025 by rpki-client