Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft
File:                     0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json)
Hash identifier:          XDIoPTcTmq0kopSKCL8FNSCFHe6PS5GcHl0H7tNE76k=
Subject key identifier:   76:E5:A2:1A:F8:40:4C:6F:ED:5F:DE:CB:21:4F:9D:0E:E3:E0:E1:A7
Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64
Certificate issuer:       /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064
Certificate serial:       0648
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft
Manifest number:          062F
Signing time:             Sun 10 Aug 2025 23:01:49 +0000
Manifest this update:     Sun 10 Aug 2025 23:01:48 +0000
Manifest next update:     Sun 17 Aug 2025 23:01:48 +0000
Files and hashes:         1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: j6h7aWrOjZSYBD09y4szQy78rWvqoxrdHIyv6IdUgEY=)
                          2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: hq9Cmc+FMjaTTTyQea1uvJO7rYKBgVJ1Xbylz3DiiHI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl
                          rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1608 (0x648)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064
        Validity
            Not Before: Aug 10 23:01:48 2025 GMT
            Not After : Aug 17 23:01:48 2025 GMT
        Subject: CN=689924dd-674b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:e1:88:c6:9d:53:06:27:dd:e1:4f:f0:1f:ff:
                    f0:7c:c3:97:ee:af:2e:77:58:f2:91:a7:37:96:a5:
                    32:b8:5d:2a:c3:9b:3c:a9:34:3c:12:b4:2f:06:5f:
                    0d:ec:d6:8d:4a:8d:ac:27:51:23:4c:c1:15:10:f4:
                    4d:28:bf:b5:0d:bb:16:4e:b7:d0:f0:bf:9e:12:25:
                    42:fa:4c:c0:c3:09:02:b2:e7:3c:09:14:02:ae:d4:
                    39:41:46:35:4b:c4:cf:aa:1e:8c:91:42:f0:32:19:
                    70:92:2e:07:cd:de:4f:2a:59:27:e4:85:7e:73:03:
                    e1:86:a1:0e:9f:75:2e:fb:99:4d:33:ab:8c:a8:c8:
                    04:d0:a2:50:a7:d6:88:1b:7c:5e:2e:61:3a:49:59:
                    a5:5f:6e:0e:8b:d5:0f:27:83:a5:52:d9:c3:4f:0f:
                    e8:7e:ba:25:e8:da:d5:af:12:46:6d:96:98:8e:e1:
                    5f:17:55:59:b9:d7:0d:a8:04:58:f8:5a:ac:e2:10:
                    bf:41:64:6c:b3:3e:55:1f:a5:22:d5:ad:17:00:89:
                    a7:48:99:05:29:4c:47:54:b3:f6:cf:cf:64:b7:69:
                    7d:90:ae:23:e4:f7:14:42:15:00:68:bd:8e:bb:22:
                    8f:62:bc:00:62:78:e8:19:da:ab:ac:b8:ba:1f:70:
                    f7:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:E5:A2:1A:F8:40:4C:6F:ED:5F:DE:CB:21:4F:9D:0E:E3:E0:E1:A7
            X509v3 Authority Key Identifier:
                keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c1:a3:41:08:6f:73:d5:dc:b5:8a:b0:ea:a0:f1:3f:16:8b:cf:
         3c:d7:cd:05:a0:be:0e:37:41:fc:af:33:c7:ab:f1:63:fb:65:
         18:4d:aa:bd:7a:7f:d7:e8:76:e5:24:fd:9d:ee:b8:e0:cd:21:
         d5:9d:b3:18:01:9b:a0:06:ff:1c:8b:38:20:2c:c2:b0:0b:00:
         f8:dd:fb:e8:26:fc:8d:71:7c:82:7e:7f:13:f5:87:79:d5:3f:
         66:8b:f5:5f:23:21:71:81:86:b4:a1:08:54:76:b2:72:2d:42:
         d7:80:87:e1:3f:95:31:c8:1f:98:4e:40:91:34:99:a6:99:f3:
         a4:8b:7e:b6:e3:9d:a3:d1:bd:d4:43:38:64:b7:79:69:35:49:
         e4:5e:54:00:fc:ab:b3:6a:89:58:c9:28:27:f5:65:55:90:b5:
         ca:e8:b3:e5:a8:51:db:e7:d6:b3:48:11:6c:d7:08:15:b7:63:
         b5:8d:97:05:6f:bb:61:b4:4d:ec:1a:d6:75:23:77:b9:0b:01:
         06:bf:45:d2:8f:03:e4:67:05:85:d1:f1:a5:6c:28:f1:ce:47:
         59:f2:a8:48:78:ce:5d:dd:8b:c3:72:db:49:fd:39:bb:b3:b5:
         c5:0f:28:54:65:3d:49:bd:84:79:38:e3:69:00:e9:6e:58:a9:
         c7:b9:bb:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 09:02:50 2025 by rpki-client