Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
File:                     QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft (raw, json)
Hash identifier:          YlKPdemBwz8pOsIt+7hnMfKw3frRK+23/o9324WBUoU=
Subject key identifier:   41:26:CD:DF:7B:1F:E3:FA:0F:29:FB:A7:3E:91:E1:72:06:DA:6F:6B
Authority key identifier: 41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B
Certificate issuer:       /CN=A91F4F4C/serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B
Certificate serial:       07CC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
Manifest number:          07C5
Signing time:             Thu 12 Jun 2025 20:50:09 +0000
Manifest this update:     Thu 12 Jun 2025 20:50:08 +0000
Manifest next update:     Thu 19 Jun 2025 20:50:08 +0000
Files and hashes:         1: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl (hash: e/8KKcq9XTUBsFhc1/OdItqzxyaqgoYWSmYOJXJbDcE=)
                          2: 770BCA98F97A11EAB938DA5DC4F9AE02.roa (hash: fZBIeDUKsdRpTczFyA/tRXZpgobXbgClU9BqXFuQJMY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl
                          rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 20:50:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1996 (0x7cc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F4F4C, serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B
        Validity
            Not Before: Jun 12 20:50:08 2025 GMT
            Not After : Jun 19 20:50:08 2025 GMT
        Subject: CN=684b3d80-75ae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:cd:69:c4:ef:fd:6d:d6:7d:56:1d:3d:e8:23:
                    58:09:e1:d0:01:b6:c9:58:05:d8:2a:69:cf:06:fe:
                    43:03:6e:93:62:a7:c5:a7:b3:1d:9b:d0:3f:14:76:
                    c3:52:bf:e0:ec:ef:8c:7b:3c:dc:9b:27:03:f9:9a:
                    ca:80:d4:15:7d:ea:92:a8:90:27:01:a4:94:67:8e:
                    69:3d:e1:5b:45:87:f8:08:e0:56:4e:e7:e7:be:68:
                    89:bd:0f:f4:0b:b7:33:b6:b3:16:3e:1e:b6:db:f4:
                    9d:d6:c1:07:29:46:a2:41:a7:3a:fc:91:9a:97:d9:
                    b0:d7:5a:ea:e5:ac:07:59:35:2c:97:e2:44:dc:bd:
                    1a:5a:a4:92:d6:0a:9e:fd:dd:de:44:bd:0a:df:ac:
                    9a:62:67:98:be:b0:58:cf:c6:1a:e2:ca:ea:bd:ad:
                    07:1b:8b:43:7c:b8:9f:18:08:e3:93:c5:37:5a:7c:
                    b0:2d:25:94:49:d1:93:ad:92:70:59:bc:08:1e:2c:
                    50:8c:a7:c1:f4:dc:11:b6:53:a1:33:43:a4:d3:d8:
                    7b:e5:92:f7:42:2c:54:99:3f:10:6a:6e:01:9e:0c:
                    1f:8e:f1:1a:77:c6:db:f8:27:c6:8c:48:b3:cc:db:
                    20:b6:42:81:ee:4b:16:d1:89:c5:40:63:4f:d6:87:
                    4c:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:26:CD:DF:7B:1F:E3:FA:0F:29:FB:A7:3E:91:E1:72:06:DA:6F:6B
            X509v3 Authority Key Identifier:
                keyid:41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:1b:9c:9a:ec:ee:5a:fc:ae:12:a2:29:c9:c5:7e:24:ab:59:
         76:a4:2a:82:a0:31:7e:99:22:07:f1:69:c0:54:75:a5:09:92:
         7e:1e:82:35:22:72:55:7f:83:14:64:f7:5a:55:8b:7a:88:32:
         6a:a7:77:b0:a5:68:b9:5a:f0:f9:92:13:e9:d0:07:fc:66:d7:
         91:ad:0b:4f:84:55:ed:64:bb:a1:a5:8b:f1:d5:cb:6e:22:8c:
         f1:a5:1c:0a:b9:26:4e:d8:65:58:cf:52:93:6d:26:3e:95:3a:
         3f:aa:e1:8d:44:54:d3:69:38:74:18:db:2c:49:a8:7a:48:7c:
         7e:00:31:79:5a:91:13:30:69:48:d9:35:0e:2f:d8:0b:78:61:
         8c:ef:08:a3:a4:30:58:ff:2e:ee:a9:9b:eb:31:23:4d:a6:ee:
         8c:90:f4:5b:90:86:71:2e:fc:9a:ed:2f:46:39:64:90:b6:1e:
         e6:c4:2a:17:e9:5f:a7:b6:97:60:05:74:56:1a:42:75:31:9a:
         b0:0e:15:d6:43:30:d1:2f:21:31:3d:71:62:4d:80:94:9d:4b:
         08:51:60:54:c8:03:84:2a:49:00:39:c0:dc:bf:76:11:ce:f3:
         9c:f5:16:fc:6f:1d:ca:23:60:a3:52:a3:c2:b9:a9:81:f3:84:
         e5:e2:5f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 01:59:36 2025 by rpki-client