Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
File:                     qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json)
Hash identifier:          Pl5onJlkFPVBm/6i207i+7ivHtMAvNxsKJ1I6ECCkn0=
Subject key identifier:   37:A7:18:75:A9:91:1D:04:16:7D:ED:41:AF:6D:B7:3C:B4:6D:DD:0F
Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0
Certificate issuer:       /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0
Certificate serial:       6D
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
Manifest number:          6C
Signing time:             Fri 13 Jun 2025 05:50:51 +0000
Manifest this update:     Fri 13 Jun 2025 05:50:51 +0000
Manifest next update:     Fri 20 Jun 2025 05:50:51 +0000
Files and hashes:         1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: /TOrJJ24QIXNgN2LzBeVlx2nSGHULAH++wuAaSaFws8=)
                          2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: Lu7YmWMIdl1OwrJtUhBGFe6+OAHwy7pjCKEXO1Xq/dY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl
                          rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 05:50:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 109 (0x6d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FDEFE, serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0
        Validity
            Not Before: Jun 13 05:50:51 2025 GMT
            Not After : Jun 20 05:50:51 2025 GMT
        Subject: CN=684bbc3b-5281
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:b7:f2:6b:50:a4:b2:f7:bc:50:1c:f0:6f:c8:
                    1f:73:f1:cf:08:16:8c:41:b6:ce:19:69:29:81:ab:
                    e9:79:d6:20:e7:fa:26:bd:3d:5e:a0:6d:b2:12:29:
                    b4:7e:e6:20:fa:6e:05:61:4d:8a:4c:7b:06:57:5d:
                    df:1d:b0:a4:1c:bd:dc:6a:ac:a0:d9:2c:cc:87:df:
                    ce:33:65:22:c6:3f:43:02:f1:ab:1d:25:5c:29:00:
                    3c:3b:53:fb:a9:29:ba:41:be:30:08:fd:da:e0:78:
                    c1:1b:a7:27:3b:49:88:eb:6b:b4:21:cd:01:e9:2a:
                    e3:55:ec:4f:b2:39:19:c4:0c:b5:af:49:70:76:d0:
                    06:3d:62:48:7c:4d:13:a1:31:f8:14:b3:c5:48:0e:
                    84:a8:ea:fa:1e:75:c9:a9:99:13:4f:34:4b:4c:3f:
                    e2:c1:9f:d3:ec:ca:d5:dd:4b:4e:40:ba:66:28:56:
                    cb:a4:d6:0d:f4:09:7e:04:b6:41:e0:24:81:7b:47:
                    5e:93:70:78:5d:6f:05:62:f2:5e:8a:53:d7:80:5e:
                    37:3d:c7:44:58:8a:83:07:0d:7d:4a:5c:8b:43:9c:
                    9e:9c:c9:a0:e2:cc:7a:bc:4d:55:c5:2d:94:88:0f:
                    ab:59:25:1e:43:90:f8:97:8c:8a:d0:ec:7f:73:e6:
                    3b:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:A7:18:75:A9:91:1D:04:16:7D:ED:41:AF:6D:B7:3C:B4:6D:DD:0F
            X509v3 Authority Key Identifier:
                keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:cd:25:54:9d:db:37:57:3f:ae:6f:58:b2:29:28:5a:8d:fa:
         27:24:c0:3d:1d:a1:21:f6:d1:7a:60:07:b6:65:38:0c:ff:b7:
         f6:4c:4a:77:c8:b7:b3:f8:5d:a8:5e:0e:3e:64:60:ca:1d:1b:
         5a:09:78:5e:8f:c6:77:6c:fd:7d:15:df:52:2d:5e:0c:63:8b:
         65:51:ce:17:0f:3b:c8:d9:8e:2b:ec:7f:66:eb:96:3f:58:19:
         d1:2c:d0:0c:cc:c7:e6:37:c8:a7:3e:b3:7f:a1:07:f4:aa:b9:
         71:f2:a4:a8:06:96:3f:54:bb:81:60:9e:77:d9:1b:60:d2:31:
         35:eb:a2:fd:20:ee:0b:84:bc:50:a8:4b:27:24:15:06:6a:7d:
         90:9a:36:6c:ee:43:91:9c:ff:60:ae:b7:a3:d5:96:ab:c6:2a:
         87:38:6e:34:84:aa:40:b9:83:73:b7:07:9f:4e:1e:9e:93:58:
         23:50:5b:07:9d:6a:33:69:b2:ed:02:a3:da:31:78:76:ae:be:
         10:4f:1b:ce:8b:86:70:22:d6:55:ed:83:b3:c3:2a:90:9c:1b:
         2b:5a:53:ed:91:cf:b5:dd:b3:8e:62:34:40:1a:98:b0:a0:ef:
         07:58:13:2a:24:10:3b:60:8d:ac:6b:d6:ca:86:52:ce:80:48:
         83:f9:de:05
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG
REVGRTExMC8GA1UEBRMoQTgyOTJGNjIwNEM4MjEzRDc5MUZBNkNDQUFGNTc4NTE5
NEVGODFBMDAeFw0yNTA2MTMwNTUwNTFaFw0yNTA2MjAwNTUwNTFaMBgxFjAUBgNV
BAMTDTY4NGJiYzNiLTUyODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCbt/JrUKSy97xQHPBvyB9z8c8IFoxBts4ZaSmBq+l51iDn+ia9PV6gbbISKbR+
5iD6bgVhTYpMewZXXd8dsKQcvdxqrKDZLMyH384zZSLGP0MC8asdJVwpADw7U/up
KbpBvjAI/drgeMEbpyc7SYjra7QhzQHpKuNV7E+yORnEDLWvSXB20AY9Ykh8TROh
MfgUs8VIDoSo6voedcmpmRNPNEtMP+LBn9PsytXdS05AumYoVsuk1g30CX4EtkHg
JIF7R16TcHhdbwVi8l6KU9eAXjc9x0RYioMHDX1KXItDnJ6cyaDizHq8TVXFLZSI
D6tZJR5DkPiXjIrQ7H9z5jtxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUN6cYdamR
HQQWfe1Br223PLRt3Q8wHwYDVR0jBBgwFoAUqCkvYgTIIT15H6bMqvV4UZTvgaAw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZERUZFLzExNjRDQUUwQTUx
NjExRUY4OTBFQ0QzRUM0RjlBRTAyL3FDa3ZZZ1RJSVQxNUg2Yk1xdlY0VVpUdmdh
QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG
RDFGRjIvcUNrdllnVElJVDE1SDZiTXF2VjRVWlR2Z2FBLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZE
RUZFLzExNjRDQUUwQTUxNjExRUY4OTBFQ0QzRUM0RjlBRTAyL3FDa3ZZZ1RJSVQx
NUg2Yk1xdlY0VVpUdmdhQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAFXNJVSd2zdXP65vWLIpKFqN+ickwD0doSH20XpgB7ZlOAz/t/ZMSnfI
t7P4XaheDj5kYModG1oJeF6Pxnds/X0V31ItXgxji2VRzhcPO8jZjivsf2brlj9Y
GdEs0AzMx+Y3yKc+s3+hB/SquXHypKgGlj9Uu4FgnnfZG2DSMTXrov0g7guEvFCo
SyckFQZqfZCaNmzuQ5Gc/2Cut6PVlqvGKoc4bjSEqkC5g3O3B59OHp6TWCNQWwed
ajNpsu0Co9oxeHauvhBPG86LhnAi1lXtg7PDKpCcGytaU+2Rz7Xds45iNEAamLCg
7wdYEyokEDtgjaxr1sqGUs6ASIP53gU=
-----END CERTIFICATE-----
Generated at Fri Jun 13 11:15:24 2025 by rpki-client