Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft
File:                     nkKx9pFGDihG-nHwbcib8sdB25o.mft (raw, json)
Hash identifier:          V0nUGeTiyBL/t5wCQNmroX9GJSQ2szHijMpywZhwT9M=
Subject key identifier:   55:90:47:D0:31:0E:DB:C0:C7:FA:A0:E6:0D:83:AC:BB:71:72:D7:5C
Authority key identifier: 9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A
Certificate issuer:       /CN=A911BCDD/serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A
Certificate serial:       016B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft
Manifest number:          0168
Signing time:             Sun 19 Oct 2025 06:36:34 +0000
Manifest this update:     Sun 19 Oct 2025 06:36:33 +0000
Manifest next update:     Sun 26 Oct 2025 06:36:33 +0000
Files and hashes:         1: nkKx9pFGDihG-nHwbcib8sdB25o.crl (hash: A30w8m89U40GJLRdXVYoTVPSolH0gEOc7myTBc2Q4jQ=)
                          2: 5ED417AE869011EEA9011A36C4F9AE02.roa (hash: secqQJuczQrOBoLhJh1bWX70I59NSlP/4Mk301elvvU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl
                          rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 06:36:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 363 (0x16b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911BCDD, serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A
        Validity
            Not Before: Oct 19 06:36:33 2025 GMT
            Not After : Oct 26 06:36:33 2025 GMT
        Subject: CN=68f486f2-fd59
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f8:70:e5:72:b4:82:c4:73:f5:66:4a:53:97:01:
                    d4:7d:27:6e:85:38:3a:1e:5a:0a:9d:19:8e:88:29:
                    79:c4:f6:37:a4:7a:c5:a7:c0:05:04:81:55:4e:d8:
                    d6:77:a3:2b:66:67:69:5b:95:d4:e3:9b:27:51:b6:
                    dc:39:d8:48:b5:88:3b:31:16:31:5b:1f:e9:ba:01:
                    1c:ab:77:84:e0:31:4d:54:10:7a:43:c1:4b:6b:cb:
                    28:9a:a5:d9:d4:59:e5:ff:0f:e8:83:a1:89:9f:19:
                    3e:ea:65:83:35:40:48:24:32:ac:b5:77:84:0b:10:
                    75:69:e9:5e:06:78:65:84:45:f2:fb:7a:61:94:ea:
                    2f:20:bc:07:27:de:80:83:39:b8:5f:b1:53:ca:1f:
                    16:f6:eb:5b:52:13:a6:23:53:e8:d8:70:5e:16:79:
                    68:78:f4:87:88:4e:3f:79:94:34:58:69:ec:13:14:
                    fa:97:29:09:d4:c2:0c:74:3d:07:13:9f:46:64:65:
                    59:ac:08:ce:4f:5d:11:9d:c6:44:03:01:7a:7a:98:
                    10:40:9c:8b:e9:a1:2d:51:d5:0c:5e:21:b0:c8:35:
                    83:47:89:0a:ad:11:44:59:74:dc:ed:a6:af:7a:79:
                    52:d4:4f:de:97:b4:bd:c2:e7:c9:17:f5:13:bd:1b:
                    21:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:90:47:D0:31:0E:DB:C0:C7:FA:A0:E6:0D:83:AC:BB:71:72:D7:5C
            X509v3 Authority Key Identifier:
                keyid:9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:ae:75:25:00:ab:16:63:e3:58:57:57:f0:aa:87:a1:e7:ea:
         a8:c6:91:ef:8b:c3:70:1a:f0:41:48:f4:5c:d5:ba:0b:cb:ec:
         d0:2b:a6:34:27:ee:8b:fc:f9:01:b9:4b:c6:9e:2f:c4:b0:e8:
         38:db:00:c9:e9:57:81:c5:40:45:44:46:0e:3a:ca:56:9d:8d:
         2f:e9:7f:f2:ac:1b:70:b5:4d:e3:56:20:3a:ad:76:18:af:0a:
         a7:cf:11:7a:ed:02:f9:93:fa:07:c4:8f:7f:64:d3:8a:0b:94:
         dc:d2:ac:a8:2d:2e:3a:ef:55:de:91:36:c6:8c:71:4b:76:7d:
         8b:d0:1f:b6:1c:d0:26:1b:a0:52:3d:04:1e:6e:b3:b5:d2:be:
         bc:87:c0:d8:16:65:d8:5c:13:79:5d:a2:47:04:d4:78:b5:31:
         cc:e2:a4:b2:57:0c:fc:e1:a0:ed:f0:91:db:50:09:cc:b1:e6:
         a7:06:7c:b7:e8:56:93:9a:9e:af:9b:29:33:43:e3:93:cd:7e:
         ca:cc:9b:35:38:a5:7a:4f:7e:a2:0e:66:d8:58:d7:57:e2:47:
         c3:1e:82:52:a3:0c:30:7b:70:76:d9:6e:5c:65:b5:81:59:f3:
         ac:a3:22:51:c6:60:d9:0c:0b:ca:dc:af:e1:f9:e7:84:b4:83:
         8e:43:11:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:14:58 2025 by rpki-client