Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
File:                     qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json)
Hash identifier:          wrB+z4WDXfmEBZaEInzgjOd9msg6TE46v0qCuWTAh64=
Subject key identifier:   F3:B1:AF:17:E4:49:4B:31:1C:01:75:5A:07:A8:7C:58:D8:F6:AA:0C
Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0
Certificate issuer:       /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0
Certificate serial:       7A
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
Manifest number:          79
Signing time:             Wed 09 Jul 2025 07:41:38 +0000
Manifest this update:     Wed 09 Jul 2025 07:41:37 +0000
Manifest next update:     Wed 16 Jul 2025 07:41:37 +0000
Files and hashes:         1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: SeAzhxgKSEcd1LtfG//ATaCOrM5OI7iQJ9NtprLREJg=)
                          2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: Lu7YmWMIdl1OwrJtUhBGFe6+OAHwy7pjCKEXO1Xq/dY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl
                          rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 16 Jul 2025 07:11:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 122 (0x7a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FDEFE, serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0
        Validity
            Not Before: Jul  9 07:41:37 2025 GMT
            Not After : Jul 16 07:41:37 2025 GMT
        Subject: CN=686e1d32-7e3e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:ed:e2:80:f1:cc:f8:b2:42:33:55:d4:85:39:
                    6b:dd:03:b1:e8:cd:29:f9:cd:6e:62:61:37:9b:2b:
                    94:75:f4:a9:97:2a:1a:8d:5d:85:94:0a:86:2d:b2:
                    d2:96:08:ef:c5:56:48:89:04:e6:d9:c1:14:36:63:
                    33:3c:88:74:12:b8:8b:39:f8:2d:f9:9c:24:22:a5:
                    22:32:3c:1b:f6:f6:6d:4d:fc:b0:77:f9:0b:e1:a7:
                    0d:8f:6a:d7:8d:84:15:9a:fb:6e:5e:04:29:3f:d2:
                    75:9f:bf:7e:7b:fc:63:f3:85:dd:8c:f8:9d:f9:0b:
                    88:ba:60:72:91:49:a7:d9:7a:ba:0e:cd:e2:d1:a0:
                    e7:72:f9:7b:93:32:8d:03:6a:9e:8b:07:fd:39:d8:
                    49:86:f7:42:95:9d:3b:8c:1f:7c:8c:ec:39:23:09:
                    f3:ef:bb:a6:68:af:7d:27:e8:df:8f:e9:e6:73:b9:
                    f2:dd:16:eb:81:18:45:cd:bc:6f:cd:40:f1:b2:a8:
                    5e:c5:fd:e0:d8:7a:39:0c:fe:fb:9f:b5:d5:8e:2d:
                    62:33:39:16:7a:fc:c8:bc:b4:15:02:a2:0a:7e:c6:
                    2a:ac:81:07:de:40:64:1d:cc:93:17:9e:de:11:d8:
                    67:f5:31:8e:7c:94:7b:ad:ba:80:aa:1b:25:fa:48:
                    f6:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:B1:AF:17:E4:49:4B:31:1C:01:75:5A:07:A8:7C:58:D8:F6:AA:0C
            X509v3 Authority Key Identifier:
                keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         27:f7:b5:df:7e:68:a0:16:13:4e:3d:2e:af:c3:e5:39:28:d7:
         71:9e:5e:b3:a8:c5:c9:20:f1:ac:19:81:a6:8d:f2:eb:5e:da:
         14:2c:72:2e:e3:fa:10:68:20:4c:73:20:e3:5a:a7:4b:c8:b5:
         2e:17:06:06:be:43:de:b1:8f:ef:db:e8:dd:12:28:60:a1:27:
         f1:ef:e5:0a:82:65:f8:68:ce:17:dd:2f:de:e7:66:c3:f9:54:
         f7:9b:9f:c5:5f:c5:9c:47:79:00:5c:f7:44:0b:e3:37:a4:25:
         5a:27:b1:1b:6f:3d:ca:22:dc:fb:85:9f:ef:01:fd:6f:94:4e:
         71:01:f0:e1:ff:10:72:14:e3:4f:eb:88:ea:3d:20:72:dd:5b:
         dd:49:d9:91:32:87:5c:a8:fc:c3:2d:49:f7:54:22:70:d1:a7:
         fe:18:e2:0e:62:6e:32:9d:28:8a:94:0c:87:a8:75:c5:84:07:
         0f:1e:ae:58:c6:66:57:cc:42:02:f9:87:fc:2d:e2:77:b5:2e:
         1e:86:da:92:6e:00:57:60:6d:a9:22:e5:89:06:8c:24:8e:b1:
         ed:87:7f:bb:ad:f5:6c:92:af:4a:19:f6:20:cd:7c:03:d2:65:
         50:c3:fe:32:1f:57:d5:9f:3f:14:bd:28:76:20:f3:b5:57:61:
         3d:9e:d4:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 9 09:07:51 2025 by rpki-client