Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft
File:                     mqU9J74bthSVPDedOeC7xfHBJKc.mft (raw, json)
Hash identifier:          1G2MFdFC2dwi2QEOQMdT/o/CH4TyH+N1P5aKEaIVwzY=
Subject key identifier:   79:68:71:ED:6E:71:23:DF:A0:55:5A:61:EB:5A:CE:16:5C:58:ED:EC
Authority key identifier: 9A:A5:3D:27:BE:1B:B6:14:95:3C:37:9D:39:E0:BB:C5:F1:C1:24:A7
Certificate issuer:       /CN=A91814CB/serialNumber=9AA53D27BE1BB614953C379D39E0BBC5F1C124A7
Certificate serial:       0C02
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft
Manifest number:          0BF6
Signing time:             Fri 08 Aug 2025 19:04:26 +0000
Manifest this update:     Fri 08 Aug 2025 19:04:25 +0000
Manifest next update:     Fri 15 Aug 2025 19:04:25 +0000
Files and hashes:         1: mqU9J74bthSVPDedOeC7xfHBJKc.crl (hash: y3HrCVz9Bdr6jje1goP5hukiK0WJjaL7HcD2PzFNloc=)
                          2: F4F827D6BB6C11EF80151572C4F9AE02.roa (hash: 25pluhiPmnAm9YwUWup9o5G24MQf1uEQRknQIFNX3KA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.crl
                          rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3074 (0xc02)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91814CB, serialNumber=9AA53D27BE1BB614953C379D39E0BBC5F1C124A7
        Validity
            Not Before: Aug  8 19:04:25 2025 GMT
            Not After : Aug 15 19:04:25 2025 GMT
        Subject: CN=68964a3a-25a1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:28:e6:0c:74:88:2b:f6:e3:f6:3f:40:25:55:
                    8b:bb:1d:35:7c:5c:df:0d:a8:1f:e1:df:eb:37:b7:
                    1c:2b:3c:e5:ab:61:88:a0:96:16:46:cd:33:06:b3:
                    67:f4:33:b1:fb:70:12:97:7a:90:f2:f2:2d:54:0a:
                    71:00:04:25:0c:25:97:f3:3e:b7:08:52:de:e5:6a:
                    d2:72:cb:32:53:e4:12:cf:2f:c4:3a:d9:ca:a9:d3:
                    b1:1e:d9:93:4f:bd:92:d4:56:2b:84:65:7a:15:67:
                    8a:97:b4:90:ac:fe:60:c3:8b:52:1a:3c:83:bc:24:
                    36:b2:a3:72:d9:03:ee:8c:9a:fa:b5:89:9d:d8:cf:
                    32:c0:55:05:5d:d9:5a:88:f2:f1:2d:fc:9f:f2:2d:
                    49:fd:96:83:c0:24:0b:18:23:e8:24:f8:18:b3:d4:
                    24:8e:59:27:27:2b:98:13:f8:e5:e6:4d:af:24:ae:
                    6c:b4:4f:99:d4:34:5e:fb:7c:fa:54:42:a2:d1:a6:
                    d8:c7:b6:4b:22:c1:91:2e:2d:af:5f:af:36:dd:87:
                    8c:42:ce:2b:9f:c6:81:36:a8:54:6d:8c:6e:dd:68:
                    99:0d:1d:73:d8:07:f2:af:44:14:05:21:90:52:9e:
                    42:98:47:e8:d8:04:3d:a2:7a:14:00:a6:3c:e1:ec:
                    55:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:68:71:ED:6E:71:23:DF:A0:55:5A:61:EB:5A:CE:16:5C:58:ED:EC
            X509v3 Authority Key Identifier:
                keyid:9A:A5:3D:27:BE:1B:B6:14:95:3C:37:9D:39:E0:BB:C5:F1:C1:24:A7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:03:b3:8d:45:00:3a:cd:e2:06:cf:7c:38:c2:e5:8a:3f:50:
         77:a6:b2:9c:d6:e8:5c:1c:48:a4:11:d8:d1:00:64:a8:4a:0a:
         0d:90:6b:ae:80:b3:f2:12:04:f7:5d:78:af:90:af:d0:ed:36:
         2d:62:82:18:e2:2b:42:31:a2:f4:bc:a7:f9:f6:5f:05:39:3a:
         98:3c:00:60:dd:bf:26:b4:24:b1:4c:a9:7c:67:7c:36:97:20:
         c3:36:62:1d:fc:8e:b2:56:e3:a9:c1:f0:00:f9:6b:be:9c:c3:
         88:a1:9b:2d:1f:1b:14:0e:53:08:81:ac:01:d2:d3:a0:52:8e:
         04:ea:a2:33:c3:6b:1b:d1:c8:73:aa:18:f8:7d:a8:3f:e9:ba:
         d3:96:72:d7:1a:3c:e3:79:cf:e5:cd:f3:4b:33:03:d6:fe:d6:
         99:91:f7:22:55:3a:ae:ba:c9:ec:47:01:af:f5:83:4e:7b:8c:
         8b:5e:c7:9c:95:1a:3f:15:44:8f:2b:aa:73:81:dc:c1:ec:3b:
         93:c2:b3:57:00:69:54:7d:ba:15:20:09:9f:f6:2c:88:e4:e0:
         6f:00:c6:1b:91:ab:60:b5:bc:76:8e:ec:eb:58:6f:49:f3:65:
         6c:91:20:c9:4e:bc:27:ef:44:a8:c0:f0:f5:bc:c0:ae:22:91:
         83:5d:86:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:08:03 2025 by rpki-client