Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft
File:                     PQqIwMyj7oZ3zRffPuht5x38ESk.mft (raw, json)
Hash identifier:          IbnKQDW32S949BQW6oUe39iMBnOxnxSa/1tjjR6v78Y=
Subject key identifier:   07:AD:E9:EE:95:E9:C4:AF:58:16:AD:CD:8C:54:EE:C4:94:F1:AC:A6
Authority key identifier: 3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29
Certificate issuer:       /CN=A91607DE/serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129
Certificate serial:       0373
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft
Manifest number:          036E
Signing time:             Sat 09 Aug 2025 01:26:44 +0000
Manifest this update:     Sat 09 Aug 2025 01:26:43 +0000
Manifest next update:     Sat 16 Aug 2025 01:26:43 +0000
Files and hashes:         1: PQqIwMyj7oZ3zRffPuht5x38ESk.crl (hash: xEvXLM1bpHJQeOqZDcXJM/YPh6SLaLlQmAb6vlMLS+8=)
                          2: FD398FA0BB5D11ECA62F8674C4F9AE02.roa (hash: OZN4xQkAGlo2J7xAsq7WK/TKxkfRBmTruJ0GM4QH81c=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl
                          rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 883 (0x373)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91607DE, serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129
        Validity
            Not Before: Aug  9 01:26:43 2025 GMT
            Not After : Aug 16 01:26:43 2025 GMT
        Subject: CN=6896a3d3-a9d7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:6a:9d:4a:2f:bf:cc:b8:ee:a2:b7:56:47:47:
                    b8:fb:c3:cf:8a:70:bd:4b:96:85:fc:02:8e:2f:18:
                    aa:66:9d:a3:92:cb:41:e1:d4:82:85:a9:7a:04:9f:
                    08:e5:c0:16:e7:f7:30:8c:57:0b:c8:42:07:6f:2b:
                    a9:24:fa:62:f6:0f:5f:b3:fd:65:6d:4a:6e:62:78:
                    9d:23:4b:52:69:7f:d2:7d:a3:a0:67:95:e1:7a:14:
                    26:18:9e:69:68:98:a4:05:ba:b1:ff:15:f3:d3:b2:
                    29:1c:10:dc:21:ac:f1:46:a4:3f:f5:95:f8:db:ec:
                    df:9b:77:1f:f1:b4:40:44:2d:1b:d8:b9:bb:2e:a2:
                    94:61:4a:a7:a4:54:df:91:6b:eb:ba:79:1d:64:f7:
                    63:bc:d3:6d:f4:6a:32:1f:5d:6e:29:d2:08:ef:94:
                    c7:0d:5f:6b:3c:9e:37:bf:ca:f8:fc:b2:46:91:0f:
                    6e:2b:0f:69:0b:92:5b:98:83:c9:1f:f2:c9:1b:ca:
                    44:ba:a9:61:a0:00:58:43:78:dc:ed:72:0b:6e:ed:
                    15:91:89:21:52:2b:f5:d4:5e:27:dd:8b:f3:57:e7:
                    53:a4:e6:e5:61:1a:7c:b6:71:c0:f9:c8:f0:a1:c9:
                    0c:80:8f:38:60:7c:41:d2:68:9f:6c:0b:f8:cc:94:
                    ff:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:AD:E9:EE:95:E9:C4:AF:58:16:AD:CD:8C:54:EE:C4:94:F1:AC:A6
            X509v3 Authority Key Identifier:
                keyid:3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ad:2e:20:e4:8a:1c:b7:3c:d0:6b:47:14:78:ba:22:59:3e:a6:
         22:55:fe:32:79:15:93:0a:46:03:fb:d6:93:14:7b:5c:ab:72:
         7b:7d:d2:36:09:8f:e1:7f:16:88:5a:08:41:57:c2:89:02:ac:
         a4:a5:6c:1d:40:8f:ef:8c:95:bc:a5:23:ec:e5:b8:8e:f7:96:
         7e:40:e6:a1:19:7a:f9:ce:75:29:7e:dc:08:c1:61:76:03:67:
         57:29:b1:60:76:48:d7:ed:32:0f:5c:a0:09:56:fa:a3:5d:b9:
         38:2e:22:23:61:07:2a:a3:75:65:18:74:7f:f8:ac:71:0e:8b:
         94:9c:87:7b:fb:fc:b1:39:a1:9a:6a:e2:70:a5:45:c5:41:b1:
         f8:f4:7a:8b:a6:a3:a2:c4:ed:49:8e:4a:25:34:3d:fc:09:75:
         7a:03:51:21:45:cf:56:55:0d:41:5a:f0:0b:27:a6:20:e2:3f:
         01:93:31:3c:36:08:fb:76:b5:6c:d3:10:fd:d8:c4:a6:99:4b:
         4b:e7:df:08:dd:08:d7:28:4e:75:0e:01:3b:62:5f:3f:11:89:
         e8:65:a9:85:1c:17:45:42:c5:65:ab:05:68:76:7c:8c:f9:c8:
         87:ca:f4:08:05:a7:d8:5d:d1:ac:ce:45:ed:ac:11:48:e4:c3:
         b1:8f:9d:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:38:25 2025 by rpki-client