Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft
File:                     qAw2f5IilG-YuDa86PbQA2SIHHw.mft (raw, json)
Hash identifier:          Czx9YeggL2azaETTDiNfB/yPETsuZEDkMRevyLINSso=
Subject key identifier:   E3:DE:68:84:AA:4B:2A:28:D4:3B:25:2C:31:2E:3D:16:50:3F:E0:FB
Authority key identifier: A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C
Certificate issuer:       /CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C
Certificate serial:       0DF6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft
Manifest number:          0DD4
Signing time:             Mon 04 Aug 2025 18:06:45 +0000
Manifest this update:     Mon 04 Aug 2025 18:06:44 +0000
Manifest next update:     Mon 11 Aug 2025 18:06:44 +0000
Files and hashes:         1: qAw2f5IilG-YuDa86PbQA2SIHHw.crl (hash: CqP7qJeUZxkm2XJNyxvBAyuU2ISx7oLgkyH7vDZ15l8=)
                          2: C2ED1EEE617111EBBC678459C4F9AE02.roa (hash: /hGH0Pm/VcL/t48Buv7bSF4xPC6xqGHOH5JeW2XnqTU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl
                          rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 11 Aug 2025 18:06:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3574 (0xdf6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919D1D9, serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C
        Validity
            Not Before: Aug  4 18:06:44 2025 GMT
            Not After : Aug 11 18:06:44 2025 GMT
        Subject: CN=6890f6b4-485f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:bf:88:c7:52:5d:27:54:3d:22:4a:fd:5e:a1:
                    ff:0f:99:3d:bb:77:c6:a3:38:c0:1d:62:74:63:51:
                    0e:af:d1:41:8e:ba:2f:59:55:27:5f:31:1f:7d:b0:
                    7c:b0:32:41:af:82:5e:5e:b4:8c:3d:c3:ac:d0:bb:
                    ce:09:35:bc:ce:71:ca:d0:30:83:47:b5:ce:73:1d:
                    02:4e:e3:1a:2f:4b:a8:b9:d2:06:b8:d6:39:62:d6:
                    23:f2:59:49:62:a4:0e:9c:c8:51:86:29:0e:f8:3d:
                    06:40:97:99:31:78:0f:14:e1:43:fd:1c:37:1f:2b:
                    71:0f:31:a0:c0:ec:75:c2:db:ef:fa:58:9f:1f:e1:
                    f1:1d:c6:d9:b4:ce:84:2b:fe:09:4f:29:be:74:f4:
                    97:d8:dc:6e:9f:5d:53:bb:db:17:54:df:e0:4e:76:
                    d9:b6:fa:6d:9f:59:35:f8:77:24:c4:21:e7:f2:18:
                    1e:77:dd:2f:ac:b6:42:a3:3c:86:36:87:dd:40:17:
                    ea:bf:5d:e0:31:63:c5:ad:87:5b:72:16:d5:af:b9:
                    b9:9c:38:70:bf:12:94:d7:6a:5e:28:74:e4:64:75:
                    ef:54:ec:3c:24:24:cd:83:b4:00:d5:0b:b0:f1:a6:
                    64:95:fd:d1:57:fe:ee:ef:9e:59:c3:1b:cb:6b:8d:
                    2f:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:DE:68:84:AA:4B:2A:28:D4:3B:25:2C:31:2E:3D:16:50:3F:E0:FB
            X509v3 Authority Key Identifier:
                keyid:A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:80:40:b8:07:3f:4d:d5:5b:09:e7:55:f5:d5:7e:d3:95:36:
         f5:be:ca:77:b4:ad:cf:34:c4:75:33:22:eb:65:52:a0:f7:b7:
         24:32:00:3d:a0:8e:c0:af:6a:5b:85:fa:ce:15:9f:7a:8f:a2:
         bb:68:77:a3:da:15:80:82:5e:36:1a:7e:b7:68:ab:e2:d1:55:
         91:e8:db:0c:c1:3a:21:8b:c1:fd:c1:fa:aa:ff:d4:a6:55:21:
         07:c7:15:15:68:95:e9:be:c5:24:86:dd:47:79:eb:4b:94:fc:
         b7:9f:4c:ad:ad:89:a5:94:bb:97:59:ec:22:a4:2e:97:e7:71:
         f6:1f:7e:fe:cb:46:35:37:89:2b:8f:27:02:f4:20:66:cf:09:
         aa:38:ee:78:7f:db:92:09:25:a7:fc:0e:e9:7c:7a:e2:d0:9a:
         51:55:6e:8e:2e:f7:1c:bf:18:c9:52:33:b9:8d:72:c3:9a:02:
         bd:cb:c5:4e:a8:12:3a:93:2e:10:9a:34:17:f3:f3:95:6c:19:
         4e:0c:47:55:16:c6:a3:56:bb:14:43:74:93:21:43:6d:a1:69:
         c1:1b:4b:82:b1:5c:c4:20:79:b7:b3:11:19:dc:9d:d5:c3:e0:
         d1:84:b9:21:8e:d2:8d:a3:d0:98:28:a6:51:a2:b9:ff:dd:4e:
         8f:52:a8:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 11:19:55 2025 by rpki-client