Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
File:                     qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json)
Hash identifier:          +bazCgq6WfY+2KKP003DdGfujCr+B2nV2muCqQlEFTk=
Subject key identifier:   DD:7E:5E:26:29:72:26:A2:9E:AC:37:A1:89:72:C2:E5:F3:B3:99:DC
Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0
Certificate issuer:       /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0
Certificate serial:       6C
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
Manifest number:          6B
Signing time:             Wed 11 Jun 2025 06:19:50 +0000
Manifest this update:     Wed 11 Jun 2025 06:19:50 +0000
Manifest next update:     Wed 18 Jun 2025 06:19:50 +0000
Files and hashes:         1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: /0KaXfpHCU6VHx4J4vAWks0PUE8J0N0uyMFEiSF0xn8=)
                          2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: Lu7YmWMIdl1OwrJtUhBGFe6+OAHwy7pjCKEXO1Xq/dY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl
                          rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 06:19:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 108 (0x6c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FDEFE, serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0
        Validity
            Not Before: Jun 11 06:19:50 2025 GMT
            Not After : Jun 18 06:19:50 2025 GMT
        Subject: CN=68492006-44f2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:4b:a9:51:da:19:91:2d:b2:1a:81:4f:b5:44:
                    55:9a:3e:fa:29:28:a9:79:9b:6a:b6:84:24:7e:e4:
                    ac:14:44:24:35:d4:30:f6:8d:06:8a:c2:5e:ff:78:
                    56:f7:1d:df:c1:df:ec:2a:d5:72:22:6a:5f:4c:57:
                    ba:db:bd:5f:44:9f:25:a6:a9:51:dd:ec:2f:6c:bb:
                    fe:b6:46:ea:fb:f3:74:c6:96:d1:7a:2f:b6:83:ea:
                    de:57:ad:c4:08:ae:2f:11:d7:8d:b6:40:69:69:7f:
                    14:41:31:2b:6e:3e:8f:3c:36:d5:07:0d:11:f8:da:
                    34:ac:3e:62:77:50:2d:35:b0:46:e7:55:3d:4e:89:
                    70:12:0f:9b:bd:0c:7e:86:23:6d:eb:5a:1f:86:4d:
                    5c:ff:55:d3:6a:e6:d8:36:3f:0d:69:d5:ac:ad:05:
                    aa:3b:bf:57:f0:89:bc:c7:e6:41:3b:9c:34:8a:95:
                    ce:4b:4e:cf:f3:15:33:38:b7:28:ab:d4:64:6e:d4:
                    4c:85:f0:3e:5f:8d:a0:f9:12:1c:ec:76:22:f8:2b:
                    85:39:c5:97:8f:23:a2:7a:f3:a3:90:53:76:18:e0:
                    64:73:a4:7b:04:5d:64:24:72:4a:c1:67:94:86:8d:
                    5f:eb:9b:dc:81:14:86:bd:74:a3:50:23:70:d4:31:
                    77:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DD:7E:5E:26:29:72:26:A2:9E:AC:37:A1:89:72:C2:E5:F3:B3:99:DC
            X509v3 Authority Key Identifier:
                keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:f0:f9:3e:ce:46:6a:70:9a:c6:91:db:ea:21:19:36:da:0f:
         a8:b0:87:90:9e:c4:6a:9c:8f:25:33:39:b9:06:fa:76:ab:3e:
         30:6a:21:05:da:82:c4:1d:9b:58:16:27:e7:37:9c:4b:27:e1:
         c3:51:0d:7a:7e:de:87:26:4e:0c:06:c1:6e:b4:8c:9e:2a:9b:
         35:fe:4a:d2:d8:0d:d6:eb:d9:f1:f3:bb:09:49:92:56:76:2a:
         b2:88:d3:b1:49:cc:8b:61:6d:62:4e:cb:6b:65:d9:ef:95:96:
         ae:71:88:77:67:53:55:8b:33:ac:d7:f4:08:93:7c:9d:bd:cc:
         6d:a6:fb:1d:f2:85:49:95:00:4a:84:5b:1a:b4:5c:6e:93:22:
         db:ae:fb:3c:03:ed:c7:25:ae:ed:5b:5e:8f:f5:40:ee:0a:d4:
         68:60:cf:9a:83:75:e1:47:83:42:8e:a4:f7:5d:7d:8b:0a:2f:
         ab:0d:b0:11:3b:c2:21:a6:47:b7:c8:83:3d:70:c0:be:73:f7:
         79:5a:4f:6e:b0:d5:e2:06:d3:86:57:c3:59:df:43:34:5c:d7:
         0d:a3:0a:8a:4e:16:5d:63:c7:1b:d1:85:7f:2a:dd:22:64:ee:
         d7:85:7b:fb:d5:68:9d:5d:a3:cf:b4:27:2b:f1:95:b6:b6:1b:
         a9:87:f8:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 14:35:06 2025 by rpki-client