Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft
File:                     QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json)
Hash identifier:          qHY1AAv3qUxXBOIGhzwrE83/pbc22/0tK42ZnMmtnP0=
Subject key identifier:   C5:37:76:AD:EA:B7:52:09:EC:73:9B:E7:E0:C9:8C:67:74:31:3D:F6
Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F
Certificate issuer:       /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F
Certificate serial:       044C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft
Manifest number:          0443
Signing time:             Sat 09 Aug 2025 00:47:43 +0000
Manifest this update:     Sat 09 Aug 2025 00:47:42 +0000
Manifest next update:     Sat 16 Aug 2025 00:47:42 +0000
Files and hashes:         1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: V+Qkb8UnmOyykviKtSyeW6jpwNDlWkCbbQhmn2IJReQ=)
                          2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: 5latq2+YRolk+7/RCZ77DIkjarUkzR1toXI6OoV7ng8=)
                          3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: 06e2Kd9kP50w5XlMiJZ3tSgrZONMMPBPJ5HjMD4Ujzw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl
                          rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1100 (0x44c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F
        Validity
            Not Before: Aug  9 00:47:42 2025 GMT
            Not After : Aug 16 00:47:42 2025 GMT
        Subject: CN=68969aae-3509
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:02:aa:7a:6b:e1:fd:e7:51:c4:26:67:89:f4:
                    f9:c9:42:d7:ee:5b:1d:b4:28:b4:ab:eb:28:b1:1c:
                    64:d0:88:10:35:02:65:0a:8a:c2:a7:a7:54:ba:99:
                    77:2a:5b:71:26:db:06:6c:2f:b8:c2:ae:b2:f9:bf:
                    57:f4:d1:e8:4e:c5:75:e5:8c:c3:fa:d1:de:ea:e4:
                    f0:3d:33:78:84:59:8f:59:d4:01:39:98:37:6f:8a:
                    ca:90:11:98:34:86:68:4a:b2:03:25:ff:60:a8:7b:
                    76:f9:3c:41:b7:7c:38:d4:29:36:a9:42:fa:0c:54:
                    de:19:26:ec:be:fd:3e:f6:2b:4c:12:ad:64:86:7c:
                    7a:3a:35:44:0c:8d:3f:60:d9:72:16:18:55:3a:c5:
                    29:2e:7e:41:0e:b8:58:7f:e9:68:ce:57:60:90:59:
                    de:d3:fc:ce:5d:d3:82:02:6f:a4:c3:70:c2:ae:fc:
                    5a:8b:2c:52:e1:b2:d0:6f:67:d2:1f:b4:e1:c4:be:
                    89:35:4f:22:f9:ad:06:ba:59:c1:1e:b5:0f:a7:61:
                    9a:33:eb:2a:df:49:20:66:15:99:a3:9c:26:5c:f1:
                    34:06:94:47:d9:af:7f:15:77:41:07:03:8e:be:c8:
                    16:cf:ca:83:c2:c6:33:59:8b:02:cb:bd:8d:7d:6b:
                    91:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:37:76:AD:EA:B7:52:09:EC:73:9B:E7:E0:C9:8C:67:74:31:3D:F6
            X509v3 Authority Key Identifier:
                keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:54:9a:ed:67:67:01:89:a2:dc:5f:3d:51:f6:52:e1:5b:ef:
         b4:b4:ae:89:af:9c:a2:1c:f8:00:69:d7:35:a2:a7:0e:d9:6b:
         27:cc:78:f2:f0:6d:05:56:5b:e5:41:30:b6:4e:63:a0:cd:9e:
         3a:58:5e:68:8f:74:32:11:17:58:3e:99:a0:b6:c5:c2:e7:65:
         fd:1f:1e:c8:7e:f6:c3:41:48:a7:a7:b5:a3:f7:11:03:fa:c4:
         68:a9:74:47:0f:9a:7c:d8:63:15:a6:ae:d3:f0:ff:d5:63:eb:
         c7:a2:e8:13:ef:f5:8c:51:0c:21:ab:0f:30:13:c5:e2:03:7c:
         e0:04:20:3c:5e:85:eb:0a:75:bc:f8:fb:b2:35:6c:cb:f5:04:
         b5:b4:ba:a7:fd:08:12:de:0f:67:a4:fd:69:86:53:ec:de:1e:
         7c:49:8b:b8:71:9d:21:6f:d5:50:f6:16:e9:da:04:c1:8e:92:
         7b:6f:55:13:b0:f9:96:a8:ad:fc:d9:f7:66:ac:7a:5f:c8:db:
         73:3f:ff:2b:ce:eb:2b:4a:e2:3c:51:c5:9f:f3:bc:8d:10:a8:
         49:1b:09:43:c3:2a:12:4e:96:af:b4:64:9e:24:eb:1c:37:4b:
         7b:51:0c:0e:36:4b:f2:d6:5a:91:91:73:eb:b7:e0:5c:03:73:
         81:e8:1b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:56:38 2025 by rpki-client