Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft
File:                     QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft (raw, json)
Hash identifier:          Gvx7wioGftnNq7TQpGxqJzlc39EvRxqjmqGgwtruRUI=
Subject key identifier:   FA:36:1E:E0:4E:D2:C3:99:32:8B:03:03:10:D1:BE:95:97:33:E8:1B
Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6
Certificate issuer:       /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6
Certificate serial:       0D0B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft
Manifest number:          0C3E
Signing time:             Fri 08 Aug 2025 19:18:43 +0000
Manifest this update:     Fri 08 Aug 2025 19:18:43 +0000
Manifest next update:     Fri 15 Aug 2025 19:18:43 +0000
Files and hashes:         1: QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl (hash: OLcXWpBrjbx0JC0fWLTF7i7vEegL1cixrUTHlxlApXk=)
                          2: 8CC1AF1417DC11EE959DE671C4F9AE02.roa (hash: bH9ZC4QgjmS/I58+FDGDPuH33W9RsPxq1Xz3UvWrsE8=)
                          3: 8DB5B2BC17DC11EE959DE671C4F9AE02.roa (hash: MTAUWchwVeKxoXJgsd9CSOqi1gXkAXO05abtX//8zz0=)
                          4: 8CA2C07889D111EFAFEB2609C4F9AE02.roa (hash: Bbke0XmmIxWIWeMRBoj+nBwWgM3xQtB71wXvSJ5bc/c=)
                          5: 65A78BCE535F11EE9BC85F83C4F9AE02.roa (hash: onKAfoZCCQvGFRb8T+pywq7Otmi4UdU6B4vavVOep80=)
                          6: A0F26482C9F211EF986EE370C4F9AE02.roa (hash: IncpLcKA56KouK4nJfe3cMJBEi1TzpOjSfCTV1wFUog=)
                          7: 8BF60AF817DC11EE959DE671C4F9AE02.roa (hash: kh4hhTCX8Fi9NA+V05arYqEhwsTNSKknNhiVN/VBtTs=)
                          8: 67F68132535F11EE9BC85F83C4F9AE02.roa (hash: 68PnU5mlOA06iDNZ5XmPFrp9fhXfwnla9MbcMx8d36I=)
                          9: 8D2CC3EE17DC11EE959DE671C4F9AE02.roa (hash: zZr/wa0m1rFLaToJf+3XeU5H/f8ci0Eq6bfOYc73d3k=)
                          10: 8F9A2E2817DC11EE959DE671C4F9AE02.roa (hash: sNGI4IjSttFM+bJq5CDyljE79J+Q6/JoAjLErm5ZlOg=)
                          11: 6688CA76535F11EE9BC85F83C4F9AE02.roa (hash: X9BJWqFkDoO3Z1AnX2rwWIVc/LG4OOcRfPspBGbkn40=)
                          12: 67023924535F11EE9BC85F83C4F9AE02.roa (hash: ddZXmXMp+inqC1tu9O/Re3vjJXmPn1T/+0+8I6WAPIc=)
                          13: 9B3FF0EC1F6D11F0BBEE756AC4F9AE02.roa (hash: 2GnDplQiwMAlUAy3xpN879Pw+i4tKoxvTJrAxvUorrE=)
                          14: 678847C6535F11EE9BC85F83C4F9AE02.roa (hash: Vs5JYwOpofezkqiiF2qwHaO1ji2DOr491xFoDKani80=)
                          15: 8B707C6C17DC11EE959DE671C4F9AE02.roa (hash: bv2/9mHV5hvQUwYa7AUUUWrf3R41IAn85lkqotp1enw=)
                          16: 48E219C209C311EEA9D88A34C4F9AE02.roa (hash: ojzmtYL5oSSSDRNMHS4oBfQHwOO76KE3+ooyFQgsmPI=)
                          17: 8AD3E23A17DC11EE959DE671C4F9AE02.roa (hash: obVSxBoAnqffXMDTd+Z9+Lr3d6TSTuDzUuAxF1nefiI=)
                          18: 8EADC8C617DC11EE959DE671C4F9AE02.roa (hash: qWKBqzVZNaIWfle8O0qZvhFMlwqBUkUBmN22bjyzZlw=)
                          19: 8F1DD9E017DC11EE959DE671C4F9AE02.roa (hash: arl4UC92qPVUXs/4JsFRSGmU8q2ljxGq2A9CpZD8w3Q=)
                          20: DE0563C21F7111F0A41C9D84C4F9AE02.roa (hash: /IpFXIthR5eSC7FyQ6j687IgRZDqYwU2/QUkyZynSVY=)
                          21: 041A5B042C6911F098B91B76C4F9AE02.roa (hash: 7InJtR6Cn1ch7c1XpQQ6/w3PhjmqyqgTlZD0H0dlaLQ=)
                          22: 9005E6F417DC11EE959DE671C4F9AE02.roa (hash: nX+JdTppyQxuLXZd5ew3GC3f/sbog2Yk6PdmM9yWumY=)
                          23: 651E60A6535F11EE9BC85F83C4F9AE02.roa (hash: 4i6VJPAbegLRPG1TiRgqleRdlv3u9kO2DBkdXwrkMys=)
                          24: 8E2676DC17DC11EE959DE671C4F9AE02.roa (hash: 6WaRYsNX6RMzPE3WdzfKlbLBu0LngwxXI10OdHloqKc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl
                          rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3339 (0xd0b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6
        Validity
            Not Before: Aug  8 19:18:43 2025 GMT
            Not After : Aug 15 19:18:43 2025 GMT
        Subject: CN=68964d93-6f7b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:78:ad:a0:7c:2a:d6:e7:bb:45:d3:0c:53:5e:
                    a1:f6:6e:ff:64:09:db:42:c7:59:f5:fd:c2:09:7c:
                    f5:16:9f:4b:e1:48:6c:72:a4:15:35:24:8e:3c:be:
                    4e:f4:9a:da:f9:3d:d4:95:4a:f6:de:c8:97:02:cc:
                    f0:c0:ba:27:de:b9:f6:83:f8:73:0a:c1:d7:dc:ff:
                    77:f9:18:a1:fc:24:33:bc:24:0f:eb:71:20:f3:e1:
                    d4:ff:6f:66:2a:4a:99:b8:cc:82:8c:cd:bf:db:6a:
                    82:0b:62:c2:2d:0d:ae:32:04:69:99:38:6a:fe:21:
                    4e:73:c7:11:74:35:f9:a7:51:d9:99:5d:4d:d6:03:
                    06:e3:7d:a9:c5:89:ec:0b:90:f9:d5:e1:2b:1b:fd:
                    aa:68:88:92:e0:26:eb:0c:25:c4:fe:db:dd:bb:0a:
                    c8:1e:f1:b1:c2:4a:ff:1c:b2:5f:9b:ed:69:7c:51:
                    4c:d2:00:da:c8:e3:51:e1:55:99:de:14:34:0e:aa:
                    24:07:f6:7d:7d:e2:d1:9e:36:3c:be:8b:b4:1b:7c:
                    40:02:f4:58:31:f0:46:f1:f9:f9:fb:54:6b:6c:70:
                    de:3e:09:73:f6:9b:c9:75:51:cf:9f:47:6a:d6:fb:
                    1b:98:b7:ad:fc:3e:6e:47:09:98:15:17:c1:a6:27:
                    c3:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:36:1E:E0:4E:D2:C3:99:32:8B:03:03:10:D1:BE:95:97:33:E8:1B
            X509v3 Authority Key Identifier:
                keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:79:b5:81:4e:5b:79:96:de:0b:c6:35:bb:55:20:78:93:b7:
         c5:1a:f4:cc:c3:e0:7c:7c:1b:f3:c1:60:66:a7:0f:82:6e:c3:
         f2:18:af:8d:ce:2c:57:08:d9:58:aa:2c:48:ca:61:1c:29:ed:
         94:34:c0:59:ca:61:14:55:b3:f3:18:7c:8c:3a:3c:04:1f:d4:
         fa:ae:b0:a5:ae:5b:b5:09:bc:ad:24:58:84:54:9a:21:f7:41:
         01:a3:8e:60:62:bb:9b:a3:c6:1f:18:6b:04:2a:4a:63:ad:ef:
         66:78:9f:41:0f:b3:e1:3d:38:03:bc:26:9b:37:f3:bf:b2:bc:
         c8:3e:e8:77:fb:98:2b:f5:39:64:3c:a3:14:d3:da:ab:8c:65:
         f1:26:14:fc:f9:b4:67:2b:c5:11:ac:a1:2d:31:7f:dc:a3:d2:
         9e:5d:11:5f:b4:a7:03:57:43:85:2f:3e:54:d2:05:34:86:bc:
         e1:38:25:e7:64:1b:ac:78:e0:27:ba:95:dd:84:de:81:ee:bc:
         fc:85:2d:44:b0:de:0a:df:c6:60:36:63:ea:37:a0:ec:41:70:
         bd:a8:f2:a2:93:11:ed:b1:d8:ff:09:62:ab:74:fc:ef:98:ab:
         71:cc:ae:d8:ce:91:a1:da:f6:bd:00:18:1d:b0:f4:99:c7:60:
         f3:d5:97:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 23:10:23 2025 by rpki-client