Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
File:                     qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json)
Hash identifier:          CSvkRagUmJmFfa49nlJ7KP1q3Um/xV4ceZrz1i1iPl4=
Subject key identifier:   87:A5:64:59:18:44:4A:35:E9:4A:6A:22:3E:BC:CE:EB:DE:CD:67:D7
Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0
Certificate issuer:       /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0
Certificate serial:       6B
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
Manifest number:          6A
Signing time:             Mon 09 Jun 2025 05:54:53 +0000
Manifest this update:     Mon 09 Jun 2025 05:54:53 +0000
Manifest next update:     Mon 16 Jun 2025 05:54:53 +0000
Files and hashes:         1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: iyb2dncZ1oD6YuFYpWd0rZvgzsAkjcBbdziL6lXDDKg=)
                          2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: Lu7YmWMIdl1OwrJtUhBGFe6+OAHwy7pjCKEXO1Xq/dY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl
                          rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 05:54:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 107 (0x6b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FDEFE, serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0
        Validity
            Not Before: Jun  9 05:54:53 2025 GMT
            Not After : Jun 16 05:54:53 2025 GMT
        Subject: CN=6846772d-1644
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:b4:dc:67:a3:01:dd:f6:88:9c:44:1d:f3:41:
                    8d:9e:47:4c:66:c4:a5:51:f9:1d:a0:ca:f1:04:28:
                    83:cc:48:7b:5e:83:01:e2:3d:37:45:ec:4a:95:0d:
                    fd:3e:0a:3d:9e:da:65:65:85:08:34:18:9e:a9:c0:
                    9a:7a:fd:29:dc:f9:f0:fd:e3:fa:de:e6:bc:5a:33:
                    45:fe:8f:41:d6:1d:4a:b6:fd:65:10:ff:e6:de:ed:
                    43:f9:13:8b:96:7f:59:42:82:e4:a2:de:83:9a:11:
                    69:93:44:64:64:5a:c1:a8:ee:34:b2:0f:58:2c:0d:
                    86:c7:6b:7f:8f:54:77:18:52:d1:1b:cc:f9:9b:81:
                    12:a5:34:d6:41:2b:e4:77:0d:50:c7:cd:36:da:8a:
                    5f:f2:e7:e9:bf:9d:43:ed:a4:89:c4:96:12:5e:76:
                    8d:d7:aa:d1:78:96:d7:5c:cc:69:54:f5:f8:61:fd:
                    ca:f9:9c:46:61:84:17:4e:ae:b6:c1:cb:b9:46:1a:
                    6a:a5:cc:d9:8e:c0:7c:24:d8:3e:1d:01:18:ed:ec:
                    5a:36:77:3d:6a:55:ae:d9:38:f8:c8:be:bd:44:32:
                    db:19:eb:ef:e2:e6:db:f4:8d:dc:20:2c:16:47:3a:
                    d6:d5:8c:fa:66:fa:35:97:d3:71:8c:7f:69:da:b5:
                    ab:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:A5:64:59:18:44:4A:35:E9:4A:6A:22:3E:BC:CE:EB:DE:CD:67:D7
            X509v3 Authority Key Identifier:
                keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         97:ea:bc:7a:d2:58:ae:c9:33:f5:46:eb:ec:cf:a1:44:7c:60:
         2f:6d:91:93:44:22:2b:d8:f8:61:ed:f2:aa:d7:e5:ec:06:e9:
         63:27:76:f5:09:69:39:56:5c:72:60:7b:79:98:df:5a:0d:7c:
         4c:bc:77:3a:6b:be:24:34:47:a9:bf:b0:e8:60:e9:1f:70:d5:
         e5:3b:53:00:50:73:a6:ec:fa:ff:25:25:a8:8e:61:5d:5d:43:
         28:1f:b5:20:4b:1f:21:c0:a8:b2:ac:5b:e3:89:42:82:cd:74:
         30:30:fc:72:e1:80:a9:73:09:20:ab:af:01:a7:66:7e:12:34:
         57:51:13:96:5d:10:bf:ef:42:3a:2f:46:f6:0d:ea:c1:39:1e:
         58:78:e7:14:e9:80:5d:57:c9:aa:ab:94:d4:a1:82:86:5b:aa:
         4f:70:6c:cd:ae:10:ba:10:cb:32:0a:ad:f6:a4:2a:48:cb:73:
         a5:4b:c7:94:2f:02:ba:3a:7b:f3:ed:12:9b:3c:ec:80:5c:ea:
         61:e7:45:53:8d:bc:58:35:b3:cb:ee:64:21:d2:c0:6b:b6:2b:
         58:39:7e:7f:70:b0:bf:21:26:7f:19:fc:2c:cc:5e:c4:36:de:
         87:71:c2:34:cf:4b:95:e1:a9:d6:1e:34:27:32:84:c2:6d:76:
         24:30:d6:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 03:41:59 2025 by rpki-client