Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft
File:                     QVQG7YC02Sekeai6BCEWri0RoaY.mft (raw, json)
Hash identifier:          J3/NRJ9VcL2Uwyq7OIjDF5gAZxtnYh0CwCqOJDVHUtg=
Subject key identifier:   90:E5:A9:B6:69:AF:B6:F7:70:96:54:A5:A3:8F:EB:1E:A7:70:B0:BA
Authority key identifier: 41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6
Certificate issuer:       /CN=A91EFBA1/serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6
Certificate serial:       18F7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft
Manifest number:          18CD
Signing time:             Wed 02 Jul 2025 16:36:38 +0000
Manifest this update:     Wed 02 Jul 2025 16:36:37 +0000
Manifest next update:     Wed 09 Jul 2025 16:36:37 +0000
Files and hashes:         1: QVQG7YC02Sekeai6BCEWri0RoaY.crl (hash: BCnBuVUV6C/E8yQ7EZB59j/5abZOAl6fvJXz7OvHuH0=)
                          2: 62C9C1CEE03111EEBECE581EC4F9AE02.roa (hash: /HjqJb3HeVbYY01kD6wIaTbG/Ekr2hN/Y4VOZSnVUZ8=)
                          3: 43E9842C185A11EF9D0C4338C4F9AE02.roa (hash: irpR0h3jscaijLl59Cc3m/8UUXHvczEBFVSowrAT4Uk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl
                          rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 09 Jul 2025 16:36:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6391 (0x18f7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EFBA1, serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6
        Validity
            Not Before: Jul  2 16:36:37 2025 GMT
            Not After : Jul  9 16:36:37 2025 GMT
        Subject: CN=68656015-2a6a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f8:27:49:02:c1:63:6f:22:91:fa:61:02:b1:84:
                    88:aa:cb:a0:44:60:24:b7:7b:f6:12:1f:5c:68:61:
                    bd:54:2f:e0:40:58:90:b8:d9:b2:e2:3f:0b:7a:d5:
                    4b:61:18:1b:92:4a:fd:dc:f3:96:fe:1d:ab:11:2e:
                    0f:ea:48:82:3d:32:77:b7:61:bd:39:5f:2b:a9:70:
                    a3:43:9b:0c:a3:9d:7e:8d:d6:3c:ef:f8:0c:0d:23:
                    27:64:2d:18:17:7c:0f:9f:94:ae:2c:64:98:05:6c:
                    b2:4f:18:33:8b:be:85:49:c2:03:75:6e:03:3b:3e:
                    4c:ee:5f:90:5b:89:6c:c2:e6:da:2f:e6:73:27:b4:
                    fc:93:2b:ea:26:1d:25:f0:67:af:4e:15:cd:56:bd:
                    dd:9f:34:b7:1b:6e:30:0d:c1:59:1b:d7:72:13:59:
                    8f:30:3e:0d:82:c3:d1:cd:a3:df:99:a6:9c:65:8e:
                    9b:d3:19:cb:61:dc:3d:3e:cf:c2:96:3f:1d:d1:d5:
                    6d:a2:af:14:e4:46:d8:3d:92:57:53:19:b2:6d:94:
                    ef:7e:66:fa:9a:20:a9:fa:04:35:e4:6c:c4:0c:29:
                    70:a3:7f:13:cc:7c:28:d7:29:a6:d9:e8:9d:ab:c5:
                    86:8a:f5:52:33:72:0d:ab:51:3d:bf:71:0d:50:e2:
                    b5:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:E5:A9:B6:69:AF:B6:F7:70:96:54:A5:A3:8F:EB:1E:A7:70:B0:BA
            X509v3 Authority Key Identifier:
                keyid:41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:a3:aa:86:03:52:24:54:9e:7d:a0:59:ce:73:61:8a:c4:6f:
         07:1b:42:ae:58:07:fd:6a:07:3f:82:ae:b6:9a:23:9c:7d:6e:
         97:ce:d6:d3:60:94:57:ab:45:a4:5d:11:99:2b:98:17:20:fd:
         26:0b:42:2c:95:4e:01:70:08:19:b7:84:09:43:05:e0:15:30:
         9e:54:c4:8e:2b:7c:1f:21:43:9d:0d:fa:a6:66:4b:76:7c:94:
         a4:d5:57:88:fa:22:af:fc:ce:65:32:66:a4:66:24:16:28:18:
         e3:2c:5c:c8:05:88:58:25:16:6e:64:5f:a8:e3:54:af:1f:a7:
         b5:6d:e0:ae:57:5d:b8:87:19:9c:0a:2f:0d:68:91:67:b4:63:
         96:8a:db:7e:77:8d:2f:d9:35:2e:1c:95:1c:42:ab:cf:86:54:
         02:3d:37:25:be:b9:88:8c:35:88:f0:e9:98:b5:03:4e:bf:22:
         28:d3:82:ab:cf:43:81:10:07:65:a1:35:90:13:2f:a4:66:ca:
         4c:53:f0:bf:43:b4:78:7d:1a:eb:f4:0f:23:a4:f1:92:b0:e2:
         52:7b:b4:51:cf:e8:84:cb:3f:4d:4d:5c:6f:b1:86:a7:41:1e:
         aa:16:f5:92:81:d8:1d:1c:91:e8:56:fc:3c:a3:c8:e1:4f:28:
         96:12:69:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 02:44:06 2025 by rpki-client