Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft
File:                     G7ThccrEGeYWe6On1yU8dhYxoo0.mft (raw, json)
Hash identifier:          VNxikQlc3wZZfM5leB6JeC1Ptwt88aQ8hou0+OvD1gg=
Subject key identifier:   48:AD:A2:B1:C2:48:BA:C8:AE:D8:8C:D6:BE:4A:B4:B6:83:59:F8:89
Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D
Certificate issuer:       /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D
Certificate serial:       70
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft
Manifest number:          6E
Signing time:             Sun 19 Oct 2025 10:18:31 +0000
Manifest this update:     Sun 19 Oct 2025 10:18:31 +0000
Manifest next update:     Sun 26 Oct 2025 10:18:31 +0000
Files and hashes:         1: G7ThccrEGeYWe6On1yU8dhYxoo0.crl (hash: PERNysKTrzknAgcgTsfJ6zbQ4RU1n8d0XnooTa2zBFY=)
                          2: 2031308808A111F09B131E5BC4F9AE02.roa (hash: nPtDY3U86F0NTmleyc7SWqLKxebatm/VdygMH1CJZ5Y=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl
                          rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 10:18:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 112 (0x70)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91259CA, serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D
        Validity
            Not Before: Oct 19 10:18:31 2025 GMT
            Not After : Oct 26 10:18:31 2025 GMT
        Subject: CN=68f4baf7-8030
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:2d:0d:62:bf:63:19:97:23:d6:c6:c2:c6:8e:
                    58:ba:10:4e:54:cc:90:07:25:ca:fc:4a:d3:a4:6d:
                    0c:38:f7:1b:c2:f4:aa:9e:94:63:5c:1e:80:7f:8b:
                    30:fd:76:26:03:5e:02:18:78:fa:15:0f:3d:4b:6f:
                    48:ea:4a:2e:5a:4f:34:e8:ed:e0:b0:61:35:2d:7a:
                    ab:00:ec:6c:7a:de:29:aa:62:d5:69:31:d4:69:fd:
                    50:76:e7:a4:2e:d7:01:3a:2b:f7:00:fc:9c:1a:d6:
                    6a:ab:52:8e:9b:46:01:2c:90:cf:ca:74:5e:9a:17:
                    cc:62:b4:28:5a:cd:21:46:69:91:22:25:96:be:3b:
                    1e:ef:3b:3d:5c:d2:bc:93:3f:24:ea:80:a0:fb:85:
                    32:49:31:58:a0:06:c4:49:14:c4:f6:c5:c3:95:1d:
                    3d:68:2e:89:c5:4a:63:01:92:05:a0:65:3e:85:a6:
                    23:7c:cf:ce:67:9e:0d:ac:94:98:0d:27:19:13:73:
                    46:53:b4:17:18:f6:5d:97:62:4c:0a:57:a6:0e:77:
                    94:b9:09:7b:bb:30:48:14:73:95:97:23:c3:59:44:
                    55:4a:99:19:d0:af:3a:f2:d3:f2:c6:87:5a:4c:90:
                    35:c3:37:59:49:60:ab:7a:3d:c4:07:df:91:a9:a1:
                    b5:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:AD:A2:B1:C2:48:BA:C8:AE:D8:8C:D6:BE:4A:B4:B6:83:59:F8:89
            X509v3 Authority Key Identifier:
                keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         cf:4b:e8:e2:ea:34:ef:6c:9c:fd:d2:d8:ba:59:82:bf:ed:8c:
         02:9b:e7:d3:d5:bc:11:80:68:3c:e6:dc:04:14:bb:aa:40:f9:
         a2:72:16:83:72:3b:5b:74:96:fe:09:24:d3:72:10:58:74:0d:
         89:6e:98:d3:b7:88:9b:04:c3:64:8a:b0:8b:38:1f:87:6e:54:
         fa:d5:00:eb:e4:5d:d0:85:65:02:89:f2:8b:45:a3:62:8b:bc:
         fe:99:3d:da:74:d7:c3:77:a8:07:99:cc:56:27:a3:19:57:28:
         28:b2:3e:ca:de:60:e1:6a:9a:12:1c:69:d3:cb:40:ca:ad:fd:
         51:2a:be:8e:78:d9:99:16:09:df:18:46:91:c0:b9:24:6b:be:
         0c:e8:f4:0e:53:0b:34:b0:d4:5a:13:f5:3c:40:b6:ca:ee:8c:
         a3:1f:a4:32:be:a9:42:4c:2e:b9:e3:be:0e:d5:03:06:26:ea:
         52:44:61:05:4e:c0:ba:64:28:00:10:0f:9a:ec:93:6a:82:3a:
         fc:f7:46:bf:27:52:26:21:00:49:ee:cc:89:b8:88:4f:07:82:
         a7:d8:58:20:34:75:eb:ab:f0:7e:bb:01:67:6f:9a:c1:af:59:
         84:4b:66:00:c5:49:29:76:a6:d4:da:40:62:54:75:cc:a4:93:
         e9:9a:13:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:44:59 2025 by rpki-client