Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
File:                     QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft (raw, json)
Hash identifier:          PZtCUsZvBKR0zxQjRugA6UNQpG5MDz/KkCFUia1Ct24=
Subject key identifier:   11:93:08:12:C4:D3:E6:52:34:F9:0D:73:4F:80:54:1E:C8:D9:DE:63
Authority key identifier: 41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B
Certificate issuer:       /CN=A91F4F4C/serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B
Certificate serial:       07CA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
Manifest number:          07C3
Signing time:             Sun 08 Jun 2025 20:48:22 +0000
Manifest this update:     Sun 08 Jun 2025 20:48:21 +0000
Manifest next update:     Sun 15 Jun 2025 20:48:21 +0000
Files and hashes:         1: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl (hash: i9ti2fMdZjVrMNYkwI1nq+NV/XRwyIGeCXjo2gJL6J4=)
                          2: 770BCA98F97A11EAB938DA5DC4F9AE02.roa (hash: fZBIeDUKsdRpTczFyA/tRXZpgobXbgClU9BqXFuQJMY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl
                          rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 15 Jun 2025 20:48:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1994 (0x7ca)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F4F4C, serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B
        Validity
            Not Before: Jun  8 20:48:21 2025 GMT
            Not After : Jun 15 20:48:21 2025 GMT
        Subject: CN=6845f715-e3fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:4d:f8:4d:6b:82:21:55:3e:1d:ab:b1:e0:15:
                    b3:5d:9d:6c:67:3d:eb:a7:69:d6:04:42:38:e0:06:
                    e1:3f:7d:30:7f:df:ac:e0:2a:24:13:28:31:27:3b:
                    34:0f:3f:6e:f6:1b:9d:c9:49:ec:c8:29:04:f8:2b:
                    8d:bf:06:09:8b:6a:27:40:69:b9:d2:e1:a6:f3:8b:
                    20:3b:28:23:10:8e:5e:b9:8e:79:1d:45:bf:2a:46:
                    06:1a:b3:ce:ba:7c:59:0d:c6:fb:64:13:a9:e1:82:
                    4f:d6:1d:a5:84:da:90:10:a4:49:3c:69:29:a4:d8:
                    de:2e:c8:52:f7:f2:58:ed:ef:e5:9c:e1:f1:6d:25:
                    b3:ce:96:75:32:48:57:e8:f6:38:5c:25:ef:8f:c5:
                    bd:53:3d:fc:55:cb:6a:3b:49:60:b8:fc:de:1b:22:
                    07:6a:65:51:de:7d:0d:08:e9:bc:2a:85:13:16:73:
                    8c:c8:25:26:5c:5c:44:12:ad:fd:eb:21:b8:0e:90:
                    ea:04:da:66:df:f1:bd:b4:85:7c:94:f5:d2:44:1b:
                    c8:fa:d1:9c:0a:5c:91:fe:e9:82:bb:ae:6b:34:12:
                    5f:5a:cf:ef:28:54:cb:08:4b:e2:bc:d0:e7:d0:3c:
                    15:5a:26:43:a9:43:67:4b:db:47:7b:d9:6d:c8:4e:
                    34:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:93:08:12:C4:D3:E6:52:34:F9:0D:73:4F:80:54:1E:C8:D9:DE:63
            X509v3 Authority Key Identifier:
                keyid:41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:0f:36:a1:11:bb:6f:70:42:65:17:3b:5f:26:8c:ba:2d:8f:
         40:64:e3:b9:00:4f:d4:14:85:10:3c:50:7d:c2:e0:b1:d5:41:
         b2:22:2a:61:e3:4c:a7:8b:20:c5:b6:18:bc:89:21:f5:24:cf:
         3f:c0:fb:04:3c:ea:5f:a3:97:b8:80:b6:29:f7:ad:97:28:e2:
         73:b3:d5:68:92:89:8f:f4:35:60:23:74:28:a4:98:46:91:1e:
         3b:5d:c1:d2:60:7d:93:1a:59:14:99:53:6f:1a:c6:25:e1:44:
         4c:62:5e:a3:89:06:f3:09:31:56:a9:4c:ba:d2:b8:f9:ae:76:
         20:77:56:42:00:c7:45:58:2e:df:76:a1:a5:78:10:73:c4:47:
         19:b0:9e:23:e7:fd:44:43:27:d6:fe:b2:1e:f2:ae:cc:fa:71:
         ef:d8:77:33:36:e6:eb:f6:0d:31:dd:9b:22:56:40:70:63:bc:
         b1:3b:49:78:39:09:41:c3:cc:0d:5b:6f:52:77:ee:a6:f1:76:
         3b:52:88:b7:e6:79:07:76:f4:ef:3b:f9:bd:01:91:92:15:9f:
         22:f7:6d:73:3e:c4:e8:54:87:ed:48:3e:c8:b8:06:ad:b4:75:
         ec:79:fc:be:76:d1:25:31:22:2e:16:82:8f:2f:1f:4b:66:50:
         a1:a9:bb:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 04:21:59 2025 by rpki-client