Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft
File:                     QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft (raw, json)
Hash identifier:          uPxHXcwM+El30KXVXX8lukOHfKYBpE94Pgv3H4L+mrc=
Subject key identifier:   67:6F:B7:D8:8D:C5:B2:EF:5A:CC:F7:F6:F6:8A:B0:70:CD:1F:F7:FC
Authority key identifier: 40:3F:2E:7E:4D:AB:13:C4:19:C6:86:90:C9:49:95:47:F2:C5:8F:C4
Certificate issuer:       /CN=A913089B/serialNumber=403F2E7E4DAB13C419C68690C9499547F2C58FC4
Certificate serial:       17
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft
Manifest number:          16
Signing time:             Sat 23 Aug 2025 08:13:58 +0000
Manifest this update:     Sat 23 Aug 2025 08:13:57 +0000
Manifest next update:     Sat 30 Aug 2025 08:13:57 +0000
Files and hashes:         1: QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl (hash: 0/iEG2ynAwiFTH9jm7keJF5IijhR/rT5gfWcL/cgDwE=)
                          2: AE811872614711F0B811645EC4F9AE02.roa (hash: n6Y55/ceR16qJJFVpXKIJxFXBfe/NuJGfnCy2fEW8mM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl
                          rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 30 Aug 2025 08:13:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 23 (0x17)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913089B, serialNumber=403F2E7E4DAB13C419C68690C9499547F2C58FC4
        Validity
            Not Before: Aug 23 08:13:57 2025 GMT
            Not After : Aug 30 08:13:57 2025 GMT
        Subject: CN=68a97846-c39b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:58:f4:cc:1f:8e:99:b4:5d:2e:1f:ec:3d:aa:
                    db:37:76:81:86:3b:42:ad:9c:78:b6:6c:b8:6a:39:
                    a0:57:29:47:ca:a9:98:3d:d9:60:b7:35:9b:59:90:
                    cb:5e:64:24:a6:ad:62:58:0d:a4:83:9b:3f:3f:2e:
                    dd:ae:37:4d:33:39:2e:aa:4b:9d:fa:fe:de:c5:bb:
                    ac:41:10:8e:8e:6b:b0:5a:a0:f6:fb:a8:55:a1:68:
                    30:28:ab:85:ec:77:13:df:18:6a:2c:4f:b2:70:b8:
                    af:83:7c:ed:20:2e:29:59:09:26:39:f2:b5:5c:13:
                    f0:1e:30:74:b4:6c:00:a1:33:ef:b7:d9:66:05:b8:
                    29:b7:2b:37:63:59:d1:5b:83:ad:6d:03:32:b4:fc:
                    fd:04:8e:9a:db:b0:08:38:78:80:f2:19:0a:a0:cf:
                    f1:28:f2:d6:52:d9:d5:e6:2b:bb:ff:1c:d4:d4:13:
                    9b:3c:f2:1c:50:3f:05:8e:87:da:b1:6f:6c:de:12:
                    e4:a9:97:25:81:e2:2d:c9:cd:31:6c:40:c6:61:ff:
                    7d:7d:5f:a1:a6:4a:7e:24:24:cf:9f:11:57:27:a2:
                    9f:e2:39:5d:d7:8f:fa:50:3d:84:b8:84:5d:2c:e4:
                    1b:92:89:cb:5c:11:15:bd:48:0d:e1:2b:72:df:20:
                    14:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:6F:B7:D8:8D:C5:B2:EF:5A:CC:F7:F6:F6:8A:B0:70:CD:1F:F7:FC
            X509v3 Authority Key Identifier:
                keyid:40:3F:2E:7E:4D:AB:13:C4:19:C6:86:90:C9:49:95:47:F2:C5:8F:C4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:78:ab:1b:98:28:c3:37:da:3f:36:e3:1d:9f:26:18:41:a8:
         45:e0:03:d2:1b:3b:41:e9:eb:c0:73:c2:c7:f1:86:26:ef:2b:
         08:1a:52:f0:68:96:70:d2:e9:53:c9:da:a3:12:dc:e5:66:51:
         3a:c0:ca:e9:c2:84:4a:31:f0:61:12:cd:30:e4:eb:1f:e9:05:
         d2:b5:cb:61:5a:3e:b0:02:c6:79:7f:91:65:fb:c5:8a:fd:2c:
         68:07:8a:36:c5:24:d5:da:61:61:d7:2c:d6:c4:a4:36:25:67:
         1a:de:a6:a0:2b:59:a1:06:b3:82:8c:fa:c0:f3:5b:fb:df:46:
         ae:2a:dd:92:ef:50:cd:b2:ef:39:1c:2e:1c:9d:52:db:cf:45:
         84:95:ce:b1:f6:72:dd:79:58:9f:b5:ad:e1:ca:43:23:90:61:
         94:ed:bc:2c:c9:3c:59:93:8d:15:cc:c5:65:f8:df:83:9a:57:
         2f:ab:73:01:9a:86:af:dc:26:7d:d7:54:81:7c:7d:ab:1b:bb:
         49:41:11:9b:b2:e0:cc:58:03:28:af:de:55:77:c1:ff:a7:b7:
         72:3d:ec:96:91:99:c2:f6:81:82:35:cf:6a:99:95:19:d3:e7:
         fe:9c:9f:ba:8c:b6:02:3b:9a:1f:e8:d9:f2:5d:9d:dd:e8:f5:
         74:3d:16:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 09:42:04 2025 by rpki-client