Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft
File:                     hoEbsmeu-FQA2-cpcCMtQRotmuk.mft (raw, json)
Hash identifier:          o2H2bG9i2XaGaN8A4y6O8WSKI6Lle+fqcSKs3afuS98=
Subject key identifier:   41:FF:D8:9B:A8:7E:E3:83:FF:95:35:67:0D:FF:4E:27:54:C2:62:8E
Authority key identifier: 86:81:1B:B2:67:AE:F8:54:00:DB:E7:29:70:23:2D:41:1A:2D:9A:E9
Certificate issuer:       /CN=A913AE7C/serialNumber=86811BB267AEF85400DBE72970232D411A2D9AE9
Certificate serial:       0BD6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft
Manifest number:          0BCF
Signing time:             Fri 08 Aug 2025 19:08:37 +0000
Manifest this update:     Fri 08 Aug 2025 19:08:37 +0000
Manifest next update:     Fri 15 Aug 2025 19:08:37 +0000
Files and hashes:         1: hoEbsmeu-FQA2-cpcCMtQRotmuk.crl (hash: xXlueMq84LeEe4oLNQNpUCG687vhf+hhgvQ1xmeBZFc=)
                          2: CE9692E0222311EAAED0162CC4F9AE02.roa (hash: 6S9iC+lPGI+USP0kW2oo4gsRf8UiFa21s5yfHc7liEo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.crl
                          rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3030 (0xbd6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913AE7C, serialNumber=86811BB267AEF85400DBE72970232D411A2D9AE9
        Validity
            Not Before: Aug  8 19:08:37 2025 GMT
            Not After : Aug 15 19:08:37 2025 GMT
        Subject: CN=68964b35-a5a2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:6f:7d:f3:94:7d:e7:8f:63:5e:ec:c1:79:2c:
                    5c:16:84:81:66:22:cb:d0:0d:e7:b3:5d:eb:9a:dd:
                    f8:6d:d9:40:64:2d:eb:07:97:78:d2:dd:32:96:af:
                    51:46:82:97:c1:15:c0:eb:2d:54:e9:01:9f:c2:51:
                    88:ee:4a:5d:28:7c:aa:c1:54:26:a2:ac:92:5a:6e:
                    d2:b5:04:5b:ab:76:8d:57:99:3c:98:f7:b2:62:38:
                    a8:d5:77:c4:3a:4e:60:85:2a:62:aa:15:cb:56:f6:
                    ea:90:cf:5c:18:28:32:53:7b:4c:5c:73:cf:e5:3b:
                    e8:f4:ef:d2:bc:ce:ff:33:72:84:20:25:4c:47:03:
                    a2:e3:43:24:bb:27:47:63:78:83:f9:86:5a:ab:14:
                    ce:a0:81:8b:ac:93:8b:90:f9:c9:ed:9b:2c:e7:76:
                    7f:21:8d:39:4b:9c:d9:e4:c4:56:18:45:c2:3e:3e:
                    98:d3:1e:91:d3:a8:83:7e:76:36:63:64:b0:ba:69:
                    07:b4:20:ad:89:3b:10:31:68:b5:35:27:48:c6:ac:
                    cd:44:31:36:26:ea:82:68:48:9f:c1:8f:26:d2:ee:
                    d2:0a:de:a6:23:5d:48:b5:3f:f1:99:8c:3c:68:3b:
                    e6:b8:d6:ff:8e:4b:02:e2:f7:e9:c4:52:9f:31:d4:
                    59:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:FF:D8:9B:A8:7E:E3:83:FF:95:35:67:0D:FF:4E:27:54:C2:62:8E
            X509v3 Authority Key Identifier:
                keyid:86:81:1B:B2:67:AE:F8:54:00:DB:E7:29:70:23:2D:41:1A:2D:9A:E9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hoEbsmeu-FQA2-cpcCMtQRotmuk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE7C/F3407E54222211EA877DD52AC4F9AE02/hoEbsmeu-FQA2-cpcCMtQRotmuk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:6a:45:bc:95:02:07:09:4f:2c:b1:72:4d:41:6e:ca:19:62:
         28:60:03:e1:60:f5:33:cf:be:b2:a4:17:72:f4:10:9f:8c:70:
         6d:ab:c5:ab:81:61:07:26:a6:23:df:40:80:b2:1f:6b:54:6f:
         92:0b:29:c2:46:18:f8:e3:0e:f7:8e:19:7d:47:58:84:3c:07:
         fd:d1:84:b1:86:74:5d:2a:74:37:66:70:2a:47:20:de:0c:1c:
         2c:d5:24:c9:f2:ba:68:2d:d7:65:01:64:c8:e6:12:b9:a1:df:
         55:1b:40:21:ef:6c:fb:a2:4e:f4:23:12:9f:1a:0f:d0:3e:ba:
         31:0e:27:50:d9:7f:b5:b7:d1:d9:5f:ee:5b:bf:ce:e8:e1:13:
         bf:e7:64:ae:df:af:83:67:69:31:2c:cf:57:0a:03:a2:dd:6e:
         a9:6d:50:55:fe:e4:02:3c:d4:25:3a:32:a5:cf:1a:71:b7:5a:
         57:1c:98:14:26:97:69:b8:c6:2c:a4:1f:41:5d:af:78:fe:48:
         71:52:82:d5:5b:80:2c:7a:c0:93:67:72:84:c9:a3:ab:53:d6:
         cc:1c:8a:ed:0a:d0:0d:70:f3:f1:0f:5d:b4:97:d6:c9:52:f9:
         71:e9:f7:67:99:10:c6:cf:c0:26:18:e0:97:75:83:1e:e3:3a:
         2f:d1:20:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:41:58 2025 by rpki-client