Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft
File:                     BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json)
Hash identifier:          lMuHo/XY/Fru4Z4/2xgnUNy4O0zkMu4FQIpQ+Pvu7Ng=
Subject key identifier:   63:28:EB:7B:B0:3B:F8:BF:15:DB:82:E8:04:DF:FF:72:0C:52:5E:EB
Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC
Certificate issuer:       /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC
Certificate serial:       01E8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft
Manifest number:          01E4
Signing time:             Sat 09 Aug 2025 03:04:31 +0000
Manifest this update:     Sat 09 Aug 2025 03:04:30 +0000
Manifest next update:     Sat 16 Aug 2025 03:04:30 +0000
Files and hashes:         1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: 5lGEaWl8osufSgUcgyr6xTMFM7/u4AVZiWVK3K3W63Q=)
                          2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl
                          rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 488 (0x1e8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC
        Validity
            Not Before: Aug  9 03:04:30 2025 GMT
            Not After : Aug 16 03:04:30 2025 GMT
        Subject: CN=6896babe-d27c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:b7:4b:51:dd:f3:0d:5e:cb:ea:95:cc:da:f9:
                    0a:bd:af:2d:54:76:06:17:62:72:be:78:66:6f:b4:
                    b6:f2:bb:b4:81:f0:1a:79:53:67:3d:91:d1:8a:94:
                    d1:a0:4b:09:6b:d3:62:51:d1:a9:cc:bb:e1:7b:60:
                    f5:47:db:c2:78:e3:da:23:18:e8:a0:a2:ac:64:42:
                    cf:19:bb:f5:ad:5c:28:a1:c7:a7:bf:7a:d3:72:63:
                    1b:0c:68:64:b5:69:db:c0:4e:7a:64:a1:b6:9c:db:
                    c9:90:b8:ee:e5:bc:46:69:96:8c:79:ce:95:3f:89:
                    ff:0e:bc:e7:61:26:94:fc:89:26:55:c8:cd:22:c1:
                    e2:c6:de:04:8d:a1:a8:f8:bb:43:da:1b:9d:56:9c:
                    83:67:58:69:93:70:ac:fe:55:31:4d:89:90:7a:54:
                    a3:8b:cb:8b:89:0a:52:7c:df:29:e5:eb:5d:92:0c:
                    df:40:4f:ee:cf:e6:bb:db:b0:9b:01:24:37:24:9f:
                    d2:3e:38:86:a3:33:0f:4f:ac:b1:69:c7:c4:43:44:
                    c8:2c:48:4e:2d:33:b0:9b:ee:2d:37:73:ed:54:1a:
                    47:0e:d9:c2:aa:d0:e8:b2:be:0d:27:2d:f3:2e:cc:
                    78:0e:fe:36:d2:20:7a:cf:74:1a:fa:0c:32:2e:f5:
                    a0:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:28:EB:7B:B0:3B:F8:BF:15:DB:82:E8:04:DF:FF:72:0C:52:5E:EB
            X509v3 Authority Key Identifier:
                keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         af:64:df:11:34:28:fb:6d:9c:c2:3b:c5:dd:0e:4f:84:65:e8:
         4c:ca:40:74:8e:10:46:73:43:aa:5f:3a:4c:b6:32:14:49:cf:
         21:4b:a3:d6:fb:e0:ac:72:0f:29:ce:23:f8:ab:2e:a2:b8:fe:
         82:e8:e3:67:98:0e:1d:db:d9:d6:3b:a6:b9:b8:f6:4e:60:22:
         b7:3c:f0:a8:85:0f:70:bc:ae:97:5f:09:1b:0d:df:3a:6c:eb:
         0a:3b:6b:49:98:d8:c3:f8:52:be:bd:50:cd:af:59:55:ca:39:
         ed:34:68:84:bb:d3:83:61:06:96:f9:a1:75:79:82:57:7d:ee:
         66:93:7f:6a:e5:55:62:f8:d9:3f:d7:2b:4c:e2:7b:45:46:d5:
         0c:87:62:d9:d9:34:8d:d8:50:a0:3f:4d:9b:93:53:b5:54:a0:
         13:ef:0d:f3:e0:74:c6:c9:5a:8b:10:7a:0a:21:1f:53:4e:bc:
         4e:2c:1e:03:84:c3:eb:3f:f5:fa:b8:ec:f1:2b:7e:24:80:5a:
         bc:bc:b8:4c:8e:c9:af:6f:47:da:d0:ec:26:9d:ed:0e:d6:58:
         fa:9c:ca:b4:4d:a8:e2:f5:a6:a5:a5:1b:3f:2f:a1:96:f8:03:
         46:ab:27:91:0f:31:4e:03:85:16:56:85:95:8c:a4:1c:60:18:
         2a:49:cb:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 23:12:58 2025 by rpki-client