Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft
File:                     KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json)
Hash identifier:          Zjm/fVXka6UmmCHdJ0DjeqdtbDlwJO0rJ6Y7LxM+KfU=
Subject key identifier:   57:1C:9E:28:56:FC:F5:FB:D5:86:8A:94:5B:B2:0B:87:91:A1:00:36
Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22
Certificate issuer:       /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422
Certificate serial:       7D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft
Manifest number:          7C
Signing time:             Thu 01 May 2025 05:43:12 +0000
Manifest this update:     Thu 01 May 2025 05:43:12 +0000
Manifest next update:     Thu 08 May 2025 05:43:12 +0000
Files and hashes:         1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: xw7Q8LyEgreH2y0IeLuS2x01SNHBdOI4T9+JvsmVsSE=)
                          2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: v8gSdO2Oyevi0udRA9oSIzZPAk2F5XphTGY0llKdCYI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl
                          rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 08 May 2025 05:43:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 125 (0x7d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422
        Validity
            Not Before: May  1 05:43:12 2025 GMT
            Not After : May  8 05:43:12 2025 GMT
        Subject: CN=681309f0-2690
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:78:10:1b:d4:01:3e:42:8d:47:c2:2d:06:3e:
                    11:65:3d:26:2e:cc:e0:2a:00:ab:c1:48:be:b5:de:
                    47:89:cc:0b:a0:44:0b:af:16:05:e8:4e:5b:17:fb:
                    05:a5:64:0c:19:28:78:98:f4:6e:c5:5e:ac:a4:3d:
                    01:c2:5c:14:da:6c:d5:4e:6b:31:9b:ef:aa:bf:69:
                    13:4f:06:81:b5:78:c6:99:56:2a:7d:47:2b:60:de:
                    b6:29:d8:fe:db:11:eb:75:b8:62:55:0d:50:5d:5f:
                    e0:e2:b4:da:89:a1:b9:db:ad:99:8c:26:f8:c6:cc:
                    51:b1:f2:20:1c:7f:c7:5f:35:83:01:49:97:e0:14:
                    f2:ce:09:e2:cc:3e:2b:8a:66:aa:cf:b6:7c:2c:b7:
                    4c:62:75:21:02:ae:41:68:c2:64:8b:38:fb:19:8b:
                    16:27:b5:52:05:96:80:71:08:a9:36:2a:ae:aa:31:
                    b4:18:31:78:e0:48:50:ce:be:9a:69:9f:61:24:77:
                    11:6c:74:6e:ae:df:17:d0:12:68:51:f3:3d:36:4c:
                    45:06:c4:ff:0f:1f:89:8f:32:b7:59:df:73:d3:ff:
                    f0:eb:3e:6d:a9:94:b0:ca:7c:6a:27:61:28:ea:47:
                    b1:3f:eb:00:14:98:5b:be:4a:ee:9b:b1:38:e7:b9:
                    2c:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:1C:9E:28:56:FC:F5:FB:D5:86:8A:94:5B:B2:0B:87:91:A1:00:36
            X509v3 Authority Key Identifier:
                keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:5c:fc:d9:fc:fc:01:35:c6:4d:5e:73:c1:76:12:14:2a:6e:
         e4:a5:b3:b8:f2:98:c2:72:1e:45:12:ed:3b:15:1b:2d:40:e4:
         c8:1e:ed:6d:e8:7e:e3:8b:bd:83:a2:f2:3f:c7:cc:d8:b0:49:
         97:61:44:d3:2f:c9:7b:7b:07:da:4d:35:89:4a:b3:5d:c6:c7:
         da:c2:9b:84:cd:a7:44:5d:41:25:d3:fd:2d:0b:6c:77:e5:3e:
         3b:73:a3:f5:89:6e:5a:97:f8:44:a6:ee:fb:ed:da:ca:e0:9e:
         73:40:40:47:da:9e:e1:0c:b3:ec:05:d4:5a:2c:0a:66:d1:9e:
         32:cb:eb:33:2f:57:38:c0:e6:c9:80:12:c2:82:cc:b7:f8:0d:
         d6:dd:b7:64:2b:c6:45:57:1b:52:a8:3f:a2:76:ab:09:ee:a8:
         17:0a:ee:47:3d:6c:78:29:41:97:a0:20:93:f3:72:8a:d3:ca:
         88:f9:e0:01:ab:76:3b:63:46:9b:17:a7:17:cc:8d:4c:4d:90:
         99:aa:e4:fa:e5:e7:3d:d0:d9:33:7a:b6:3b:65:01:0f:35:74:
         9a:47:d3:96:6e:fc:69:fe:fe:07:43:71:6b:d3:28:ac:59:dd:
         89:44:45:fe:81:e7:ba:76:05:95:eb:77:ed:03:ea:a3:45:a7:
         fb:10:cd:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 05:34:41 2025 by rpki-client