Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft
File:                     QrsPPBhH5li75BQYSUzonOjjRIg.mft (raw, json)
Hash identifier:          fIBgQ4JVPLfIHqHTu2IOBnrNI/Wk1WnDXIDEGntFRAk=
Subject key identifier:   27:87:CE:37:29:D0:17:49:7B:56:AE:9F:8D:19:46:02:E6:F7:15:71
Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88
Certificate issuer:       /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488
Certificate serial:       AF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft
Manifest number:          AD
Signing time:             Thu 07 Aug 2025 06:42:48 +0000
Manifest this update:     Thu 07 Aug 2025 06:42:48 +0000
Manifest next update:     Thu 14 Aug 2025 06:42:48 +0000
Files and hashes:         1: QrsPPBhH5li75BQYSUzonOjjRIg.crl (hash: xd7xoIr1Qr9PQlMpThZYdcAHilzbF3vnvfQMp90iVig=)
                          2: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (hash: ribPo1yuX+hIqHtl1PCEzGGO/yQznd+mDINBcQhxFF0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl
                          rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 175 (0xaf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488
        Validity
            Not Before: Aug  7 06:42:48 2025 GMT
            Not After : Aug 14 06:42:48 2025 GMT
        Subject: CN=68944ae8-7e7e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:e9:db:18:ed:be:a9:c0:c2:0d:9b:8f:66:f3:
                    dc:fe:1b:d8:94:75:8c:27:4a:05:46:37:3e:fa:a3:
                    39:d4:27:64:21:6d:0c:8c:4c:0a:37:dd:e8:23:a7:
                    df:4a:10:de:6e:56:f3:0d:a5:8d:06:7e:35:a0:0f:
                    f5:52:06:74:51:66:48:24:d6:79:71:c4:45:57:5d:
                    d0:78:bf:5c:e1:ca:49:e7:a8:0f:c0:23:89:37:ee:
                    1e:14:0e:28:d6:38:6c:7f:57:7e:0e:60:6a:be:a2:
                    5c:51:cf:62:07:1f:55:c9:1f:8b:c9:78:3e:e2:34:
                    b5:c5:b2:4e:e6:b9:72:90:91:97:d4:b8:43:99:e6:
                    cd:85:3a:a7:2d:f4:7e:0a:1c:a5:9d:16:45:dc:a8:
                    e3:d5:b6:12:65:b5:78:77:8d:97:56:4a:ca:be:30:
                    46:80:fb:3d:d9:a4:2a:69:50:cb:a4:5e:eb:66:d6:
                    98:07:ec:ff:78:a3:2c:18:80:10:c2:4c:0a:46:c8:
                    0f:20:ed:52:ec:57:73:4e:89:78:e2:dc:8e:21:b4:
                    03:34:02:ba:42:05:cb:03:8c:a8:4b:51:a9:e0:f3:
                    c2:a6:b4:9a:18:d6:ed:3f:b2:d0:1a:9d:e5:38:36:
                    68:e8:a6:fc:2c:54:5b:37:5b:09:2b:70:ec:e2:4d:
                    e6:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:87:CE:37:29:D0:17:49:7B:56:AE:9F:8D:19:46:02:E6:F7:15:71
            X509v3 Authority Key Identifier:
                keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         79:04:11:d9:d1:e1:12:ac:2d:e2:08:0b:db:74:8a:44:d3:93:
         f1:e8:14:06:30:9f:fd:78:69:ac:90:54:81:aa:3e:6a:d5:d1:
         84:00:6b:9a:d7:82:a0:43:f9:38:36:4b:60:4c:f9:e9:89:f8:
         76:16:b9:02:9e:9e:e7:8e:68:67:a5:ca:a1:1c:41:a7:bb:2d:
         50:4e:30:dc:21:72:ce:13:ee:fc:f8:ff:ef:ce:13:ef:3a:dc:
         12:7a:22:dc:39:61:7f:a6:12:26:25:de:12:7b:2e:e2:3b:8c:
         3f:c0:4a:1a:fb:de:d8:fe:3a:c6:ca:36:e5:b8:67:11:93:09:
         12:42:8c:be:9a:98:ec:b1:b1:75:f5:a8:ee:59:51:73:1e:1b:
         ca:fd:70:7a:cd:39:24:b1:40:2c:63:6d:90:aa:8a:99:13:1c:
         ee:68:d2:e6:fc:cc:c0:fb:40:cc:06:04:bf:16:ae:23:41:7b:
         b8:4b:7f:39:74:56:df:42:e0:60:21:61:d7:2a:e0:4f:07:10:
         e7:4e:3d:3d:94:97:96:50:b5:ce:99:73:62:ea:33:d5:68:e9:
         cb:d6:94:79:38:34:86:d8:73:aa:eb:b9:4d:9f:e8:99:99:08:
         8f:97:36:82:08:6a:bc:0e:7b:a8:54:4b:4a:e0:85:c9:5e:37:
         b2:8e:a5:5d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzI1MDYxMTAvBgNVBAUTKDQyQkIwRjNDMTg0N0U2NThCQkU0MTQxODQ5NENFODlD
RThFMzQ0ODgwHhcNMjUwODA3MDY0MjQ4WhcNMjUwODE0MDY0MjQ4WjAYMRYwFAYD
VQQDEw02ODk0NGFlOC03ZTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2OnbGO2+qcDCDZuPZvPc/hvYlHWMJ0oFRjc++qM51CdkIW0MjEwKN93oI6ff
ShDeblbzDaWNBn41oA/1UgZ0UWZIJNZ5ccRFV13QeL9c4cpJ56gPwCOJN+4eFA4o
1jhsf1d+DmBqvqJcUc9iBx9VyR+LyXg+4jS1xbJO5rlykJGX1LhDmebNhTqnLfR+
ChylnRZF3Kjj1bYSZbV4d42XVkrKvjBGgPs92aQqaVDLpF7rZtaYB+z/eKMsGIAQ
wkwKRsgPIO1S7FdzTol44tyOIbQDNAK6QgXLA4yoS1Gp4PPCprSaGNbtP7LQGp3l
ODZo6Kb8LFRbN1sJK3Ds4k3mTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCeHzjcp
0BdJe1aun40ZRgLm9xVxMB8GA1UdIwQYMBaAFEK7DzwYR+ZYu+QUGElM6Jzo40SI
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjUwNi9CMDQ5MDhDRTZF
REUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVsaTc1QlFZU1V6b25PampS
SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
MjUwNi9CMDQ5MDhDRTZFREUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVs
aTc1QlFZU1V6b25PampSSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQB5BBHZ0eESrC3iCAvbdIpE05Px6BQGMJ/9eGmskFSBqj5q1dGEAGua
14KgQ/k4NktgTPnpifh2FrkCnp7njmhnpcqhHEGnuy1QTjDcIXLOE+78+P/vzhPv
OtwSeiLcOWF/phImJd4Sey7iO4w/wEoa+97Y/jrGyjbluGcRkwkSQoy+mpjssbF1
9ajuWVFzHhvK/XB6zTkksUAsY22QqoqZExzuaNLm/MzA+0DMBgS/Fq4jQXu4S385
dFbfQuBgIWHXKuBPBxDnTj09lJeWULXOmXNi6jPVaOnL1pR5ODSG2HOq67lNn+iZ
mQiPlzaCCGq8DnuoVEtK4IXJXjeyjqVd
-----END CERTIFICATE-----
Generated at Sat Aug 9 01:20:25 2025 by rpki-client