Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft
File:                     kl2pi04IXWgNFte6GD8OpUJqGgM.mft (raw, json)
Hash identifier:          DpGdvU2rJIzllP6UuWr400hsCtKIpNu9KlieP/dmyaE=
Subject key identifier:   15:98:21:25:79:0C:08:E2:35:4D:F4:FE:24:E9:83:4C:18:51:3D:46
Authority key identifier: 92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03
Certificate issuer:       /CN=A9112320/serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03
Certificate serial:       058E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft
Manifest number:          057C
Signing time:             Sun 19 Oct 2025 01:01:11 +0000
Manifest this update:     Sun 19 Oct 2025 01:01:11 +0000
Manifest next update:     Sun 26 Oct 2025 01:01:11 +0000
Files and hashes:         1: kl2pi04IXWgNFte6GD8OpUJqGgM.crl (hash: smjrn1m794kEkiQ5aBVMjscs/Wk0GtRT7CkITo2Dka4=)
                          2: C7B754BEF85311ED8D59CA87C4F9AE02.roa (hash: M+wNfsm6YQmLCJcAzey1G7TcdY1od2Gihz4uSm0Idd0=)
                          3: A87AE518D2E011EDA1EF340FC4F9AE02.roa (hash: XeS+UNfddkVQ+DW6xIplHBmjPx6deLGv6cSwFbKYRAo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl
                          rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 01:01:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1422 (0x58e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9112320, serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03
        Validity
            Not Before: Oct 19 01:01:11 2025 GMT
            Not After : Oct 26 01:01:11 2025 GMT
        Subject: CN=68f43857-e56d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:c9:d2:39:3d:0c:8d:4e:e9:cd:e2:67:22:42:
                    1b:5c:31:05:1b:9f:83:18:57:a8:57:ee:40:d5:53:
                    5f:1a:ca:95:56:a3:fc:10:37:78:80:68:a7:4f:cb:
                    cb:a5:13:17:26:c7:69:b2:00:83:cd:e7:8f:f0:75:
                    d6:38:f9:05:e5:92:9d:bb:7a:ea:14:85:c9:fd:29:
                    3c:fc:3d:2a:e0:67:62:e1:bf:2e:0c:c0:9b:de:56:
                    c7:07:3b:be:06:f9:d2:d4:50:35:b6:52:85:5b:2e:
                    62:69:0b:d8:46:a3:54:1a:a6:b2:28:4c:fc:7d:22:
                    ae:be:af:ba:b4:ec:0b:e9:6e:71:e5:47:be:9e:c8:
                    7e:04:53:2f:8b:80:be:fa:78:8e:39:58:6f:88:e1:
                    a5:26:f1:8b:54:21:8a:be:1e:fe:6d:03:21:a6:66:
                    ae:54:42:4c:0b:a2:3d:e9:7f:5c:14:67:a1:fb:04:
                    01:dc:9e:b2:ae:8a:b5:e6:cf:62:8f:23:d4:e8:1a:
                    a8:51:ea:49:3e:d5:61:8a:e0:f9:e1:1e:0a:89:6c:
                    8c:2e:73:d8:a9:05:b6:3b:08:e2:9b:3b:94:3f:38:
                    be:d7:43:fc:26:c4:71:3b:7b:ac:77:cd:fc:85:7d:
                    79:25:fd:5f:c4:4b:9a:25:a0:c6:e3:a7:cd:31:05:
                    be:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:98:21:25:79:0C:08:E2:35:4D:F4:FE:24:E9:83:4C:18:51:3D:46
            X509v3 Authority Key Identifier:
                keyid:92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:30:bc:2a:56:80:5f:4d:7f:6d:58:05:ca:12:f8:6f:81:c2:
         e1:bd:3c:8f:80:76:0f:e3:cc:a2:1c:c7:15:44:aa:54:db:31:
         98:e7:ba:95:d4:bc:a9:1f:6b:f7:37:fb:cd:42:97:10:6e:46:
         89:1b:2b:f3:61:c9:0b:61:04:22:c3:9c:8b:93:50:5a:cd:7b:
         27:00:39:7e:2e:e0:27:5a:89:27:3c:a2:00:bf:fb:11:1b:ea:
         2b:69:ce:da:e7:fc:08:65:b4:d6:2c:01:4a:ec:69:a7:0a:a2:
         18:7b:45:6d:e6:7e:df:97:f6:3e:24:bb:89:8a:6c:de:15:7c:
         cf:1f:2f:82:13:00:a0:fa:61:5d:eb:bb:34:03:1e:a7:30:b0:
         19:34:85:08:26:e2:4b:ad:13:d8:ec:bc:2c:12:f8:a7:c4:81:
         3a:c0:ec:8e:72:fe:13:a8:f9:ed:4d:b6:77:dc:71:61:e8:da:
         a8:68:45:f3:89:63:63:af:29:7c:c1:94:e4:ef:4b:92:1f:44:
         b9:93:f1:ce:f3:4c:7d:32:55:15:82:ea:4a:ed:18:0a:8e:0a:
         d3:41:6a:b9:e3:5d:f5:ef:59:50:e7:1d:61:dd:01:53:c6:39:
         66:b1:b1:84:c3:24:6e:e3:99:64:18:53:1e:14:97:46:76:86:
         08:44:33:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:22:03 2025 by rpki-client