Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft
File:                     ahpG6ANoiAaY7zBCQgW5d5voseA.mft (raw, json)
Hash identifier:          6zve8yUOR+OwikQYip0QCsiRH0gL4uHPXip65jFzv48=
Subject key identifier:   9B:85:BA:67:15:B2:F4:9E:CE:42:FC:08:4D:EA:05:5D:B9:0E:46:B2
Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0
Certificate issuer:       /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0
Certificate serial:       0611
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft
Manifest number:          060C
Signing time:             Sun 10 Aug 2025 22:54:54 +0000
Manifest this update:     Sun 10 Aug 2025 22:54:52 +0000
Manifest next update:     Sun 17 Aug 2025 22:54:52 +0000
Files and hashes:         1: ahpG6ANoiAaY7zBCQgW5d5voseA.crl (hash: CixoGtTdrZVlzhBpUtf0dhNvaLc9D4XbjmhWhyGdg3g=)
                          2: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (hash: x6RJn5oQmyrZkTIL+jnIDh/DG4GNtduzvhq+KZOjCjM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl
                          rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1553 (0x611)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91442DE, serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0
        Validity
            Not Before: Aug 10 22:54:52 2025 GMT
            Not After : Aug 17 22:54:52 2025 GMT
        Subject: CN=6899233d-bc97
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:97:29:04:87:2f:67:4b:8e:58:80:df:ba:97:
                    07:cf:7c:da:97:20:11:60:68:da:07:d2:f1:73:a9:
                    75:9a:bc:28:ab:e5:b1:c1:6c:42:18:93:5b:69:56:
                    96:9c:35:27:0a:49:4b:05:91:7f:70:ff:c4:ac:d4:
                    c7:89:65:c0:ee:e8:95:bd:21:51:37:a5:3b:7a:0b:
                    e5:2b:f2:17:3a:28:8f:52:e8:7f:b3:5e:03:d8:b4:
                    19:5e:f8:77:01:53:08:c8:98:6e:09:f1:03:77:e1:
                    10:dc:8f:5e:5d:f4:e1:ce:7c:d8:61:07:55:c9:4a:
                    fd:2b:b7:d2:af:4c:14:67:30:0a:42:7b:da:bd:e5:
                    34:f7:61:e2:65:28:3c:5f:a0:e6:ce:18:64:fb:be:
                    e2:d8:5a:23:6e:ec:b7:52:85:4e:45:70:bc:81:21:
                    06:4e:e6:30:39:4e:0b:82:2b:0c:2b:b7:12:2f:79:
                    33:38:95:88:88:8e:df:e2:e5:5b:2b:6a:0d:6f:35:
                    e1:78:25:7c:74:2c:34:2f:f1:f7:3a:c4:a5:4d:7d:
                    ff:49:b2:b6:82:4c:f9:17:88:8e:6f:0d:64:f1:c3:
                    eb:0b:e9:ae:08:d9:dd:4c:a8:b8:64:73:79:34:8c:
                    4f:d6:1c:12:5d:b3:2a:97:94:77:1a:a6:4f:7b:2a:
                    33:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:85:BA:67:15:B2:F4:9E:CE:42:FC:08:4D:EA:05:5D:B9:0E:46:B2
            X509v3 Authority Key Identifier:
                keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:3b:ce:9d:de:8d:f8:12:08:22:6a:9c:27:9b:c3:13:1b:40:
         88:58:c8:0e:c8:89:3c:ef:09:e2:ba:9d:83:82:fc:37:f6:e8:
         3b:4f:c9:48:47:05:00:08:1d:89:a1:83:f8:4a:f9:0a:cc:70:
         88:81:c4:98:d6:1f:2f:8f:6b:f1:ea:0e:55:14:8b:04:31:d1:
         73:1e:b2:78:e6:f0:5f:d7:43:df:d9:67:06:15:0a:ce:68:0a:
         c2:7a:31:e1:aa:81:57:32:d3:a8:1a:23:23:87:95:84:2c:a8:
         a6:17:b0:b5:7b:c7:8b:15:45:ee:35:2e:12:21:a6:be:19:2b:
         8f:ca:03:a0:52:ba:89:bb:4e:dc:e5:da:e9:37:33:5a:7d:28:
         30:5b:10:80:f7:15:f4:66:2f:32:fd:16:79:52:fc:14:9b:16:
         b7:b1:26:9e:5a:55:89:75:a7:9b:44:7a:c6:d1:b0:fd:c7:6d:
         fc:da:ea:81:5d:bb:3d:b3:61:93:9e:00:09:82:1f:40:cf:01:
         9f:9b:95:c4:54:c8:58:cb:9f:cb:95:d1:79:77:fa:aa:65:3d:
         62:83:e3:b1:d3:3b:9f:87:b3:d9:e4:04:80:e3:f7:8a:db:f0:
         54:1d:3e:d4:66:1c:32:c8:f4:9c:6f:95:8a:3b:5c:9f:2d:d7:
         8a:79:11:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:35:57 2025 by rpki-client