Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
File:                     qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json)
Hash identifier:          5Qq9TqKGPY3IxfSTaQZXaTNgJq3XEPNY6PLvAnHTk3o=
Subject key identifier:   A9:05:82:0A:A0:9B:44:55:BB:ED:0C:BE:C1:7C:BB:02:2C:16:7D:0F
Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0
Certificate issuer:       /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0
Certificate serial:       84
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
Manifest number:          83
Signing time:             Tue 29 Jul 2025 07:10:23 +0000
Manifest this update:     Tue 29 Jul 2025 07:10:23 +0000
Manifest next update:     Tue 05 Aug 2025 07:10:23 +0000
Files and hashes:         1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: ZBbSNMt48erGBHToCIGvtBuYtStMe2cNjBDyRJaO6iU=)
                          2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: Lu7YmWMIdl1OwrJtUhBGFe6+OAHwy7pjCKEXO1Xq/dY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl
                          rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 05 Aug 2025 07:10:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 132 (0x84)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FDEFE, serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0
        Validity
            Not Before: Jul 29 07:10:23 2025 GMT
            Not After : Aug  5 07:10:23 2025 GMT
        Subject: CN=688873df-7626
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:80:91:71:9f:33:4a:e4:50:c4:ab:e2:4d:02:
                    18:d2:12:e2:60:87:83:b9:00:df:39:67:05:f5:1d:
                    f5:56:3a:9a:55:ca:b0:42:24:9c:0c:34:0d:00:73:
                    ff:a6:c0:4d:3c:0b:65:7c:e6:93:50:64:49:df:46:
                    24:4d:38:f5:61:23:50:8b:fe:dd:a5:23:41:67:9a:
                    73:97:99:07:85:b6:19:39:08:0e:0f:67:31:83:ff:
                    0e:60:6f:01:4d:67:01:81:70:a9:4f:7e:d1:e3:7c:
                    9b:f2:cb:a9:f5:aa:e8:b1:c2:1a:3b:33:56:66:f7:
                    93:43:c1:21:b2:a1:ab:f4:0e:e6:94:26:6a:57:98:
                    07:0b:5e:40:1a:7c:63:b8:ea:54:a6:4d:86:1f:dc:
                    8a:f1:16:10:e1:0b:50:c8:38:d3:09:c7:7f:ec:05:
                    56:89:7b:15:e2:e4:9b:b3:15:d9:69:b9:82:b7:96:
                    75:c8:a8:56:b9:dd:7a:26:e3:1b:8d:18:33:7c:f5:
                    fe:41:b2:a0:71:56:15:a4:c3:ed:d1:60:73:08:8c:
                    5b:33:85:cd:18:1a:ba:33:d6:32:31:58:d8:67:44:
                    61:50:62:c5:a0:72:a1:4b:19:a6:cf:f7:cd:e1:aa:
                    91:d1:fc:9a:c5:71:6e:e4:0f:84:85:b2:9e:b5:6f:
                    1a:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A9:05:82:0A:A0:9B:44:55:BB:ED:0C:BE:C1:7C:BB:02:2C:16:7D:0F
            X509v3 Authority Key Identifier:
                keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:ab:63:e1:c2:37:05:00:06:18:99:c7:b1:50:63:b6:30:c1:
         c5:7e:3f:a5:e5:bc:eb:2f:26:1f:fc:c8:6f:7e:59:3e:df:b1:
         dc:41:22:80:1d:95:17:1e:4c:83:7d:da:34:66:5b:09:e7:54:
         36:cf:55:bb:30:85:e1:d7:39:fb:7c:61:f0:3a:cc:49:37:77:
         82:57:ff:9f:21:2e:be:29:41:7b:39:bb:99:fa:e2:40:a8:fe:
         81:e2:ac:a6:21:78:35:a8:6e:7f:e2:33:da:45:51:a7:17:cf:
         d3:38:9b:8c:c2:5e:ec:83:e5:a9:63:82:3e:4e:56:8d:fc:c1:
         92:75:48:d0:0f:ba:79:8d:cb:da:ae:e6:65:af:49:bf:52:76:
         84:c6:09:c7:7a:f3:fb:44:e4:1d:15:9a:12:a6:35:38:38:89:
         1c:8e:a1:36:66:4f:72:bd:11:ea:b9:8c:3a:ed:3e:9d:c8:ae:
         aa:6e:42:20:89:f6:96:3d:17:34:8e:fa:2e:bd:a0:12:bb:e7:
         b1:b6:24:01:69:a8:50:d3:50:f9:72:d1:af:a7:83:0c:91:fa:
         2a:48:1b:d0:1f:82:e4:3b:ef:e0:c6:3f:38:ff:ca:ad:35:06:
         fe:b6:f0:71:11:94:10:3c:a8:a1:45:ce:e9:e5:14:5f:fb:84:
         93:9c:73:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 07:40:42 2025 by rpki-client