Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft
File:                     QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft (raw, json)
Hash identifier:          2+0SgifTCAkjE8S/T7l2rqxhqYyZ8V3RP/7gwv1nUjA=
Subject key identifier:   79:B1:EA:A6:82:AF:14:0B:7F:EA:B1:DC:3F:72:89:B2:4B:C3:93:75
Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B
Certificate issuer:       /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B
Certificate serial:       0CA2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft
Manifest number:          0C93
Signing time:             Fri 08 Aug 2025 18:28:37 +0000
Manifest this update:     Fri 08 Aug 2025 18:28:36 +0000
Manifest next update:     Fri 15 Aug 2025 18:28:36 +0000
Files and hashes:         1: QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl (hash: Xt5NLlaygIYc5u1b2ZnLBYckZ9rutbb4GQCOU7iKNjg=)
                          2: FD9E07EAAB1111EF89574855C4F9AE02.roa (hash: CJEgaP8KqXDJxOZP2RnxuUbrLWDCGR55rSwKPSomEHQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl
                          rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3234 (0xca2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B
        Validity
            Not Before: Aug  8 18:28:36 2025 GMT
            Not After : Aug 15 18:28:36 2025 GMT
        Subject: CN=689641d4-66ed
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:a7:5c:c5:89:36:71:f5:c5:5e:ca:ef:ed:a2:
                    c4:cb:90:95:28:05:65:3f:8a:49:d8:1a:81:ca:aa:
                    82:ae:a0:40:7f:27:93:36:24:6f:c8:8f:80:e3:39:
                    64:0a:bf:6b:96:3b:8b:0a:f6:5d:c0:8e:c5:65:46:
                    61:8a:30:8c:29:c8:9b:10:17:2d:7e:57:87:2f:d1:
                    a9:64:84:44:74:63:a5:15:8c:96:b0:38:08:2e:a9:
                    f5:f8:85:5c:1c:68:9f:44:64:e9:79:2f:bc:09:f6:
                    91:61:72:0a:95:eb:f7:eb:a1:1d:97:62:41:81:a1:
                    46:8a:4d:1f:7e:73:02:7d:88:cf:51:2a:33:7a:1a:
                    9a:35:bf:39:13:d2:e0:54:8c:23:ad:57:32:dd:00:
                    3b:79:d5:1b:a4:c5:8e:25:ff:0e:95:d8:50:f0:71:
                    8a:9b:07:30:e2:0a:3d:09:bc:dd:30:e1:25:1d:0d:
                    40:a9:ff:44:ac:05:3d:22:aa:15:85:61:af:db:0c:
                    24:a0:87:a9:42:1a:5a:42:31:98:70:d0:84:56:ff:
                    16:b5:f3:fd:34:c4:a6:20:c7:3b:99:14:e2:3f:f2:
                    d2:5c:f9:1e:cc:99:9f:ee:df:b7:8f:97:c7:07:27:
                    f7:f9:d4:ec:be:6f:18:13:42:80:4b:d5:d1:e4:99:
                    3d:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:B1:EA:A6:82:AF:14:0B:7F:EA:B1:DC:3F:72:89:B2:4B:C3:93:75
            X509v3 Authority Key Identifier:
                keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:7a:c2:8f:95:68:e1:06:46:c3:b1:2b:67:e4:d5:09:60:21:
         3e:69:6e:c8:fb:6d:ab:fc:c9:7d:f7:58:38:d3:cb:5b:74:7f:
         09:23:a6:71:5c:8c:d4:c0:66:82:24:1a:24:13:4f:bb:5c:1f:
         a9:42:fd:1a:4e:5f:79:1d:3d:6e:f6:85:0e:0b:85:af:9e:16:
         1f:80:94:dd:a7:2c:e1:86:31:f7:ac:97:33:31:06:62:6b:69:
         e4:8b:12:d6:62:48:73:1c:57:d9:60:63:47:b5:c9:c4:a8:d4:
         17:14:3f:85:34:86:6e:ef:f8:70:80:aa:4d:4b:2f:6d:61:7d:
         fd:e9:3a:9c:3e:bd:63:25:e2:bb:ef:42:7b:c1:3e:dd:95:4a:
         75:26:c8:b9:86:1b:41:79:9a:ce:21:63:6a:db:18:eb:e7:c4:
         66:59:d2:e1:ee:e8:e0:71:69:91:50:19:77:2a:91:78:0f:8d:
         9d:89:e2:9c:83:78:c0:66:15:47:f3:7e:6c:b7:ab:39:63:a9:
         4e:07:a2:38:08:fb:15:3d:94:cc:ad:2b:d3:95:f9:93:0b:fc:
         9b:ed:b7:b0:99:c1:54:c2:5a:b4:7b:d2:a6:e9:8a:8a:54:2a:
         a3:c4:d1:eb:02:c3:8a:f8:fb:4d:44:2b:82:f5:4c:5c:f1:9b:
         3d:f2:c4:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:06:34 2025 by rpki-client