Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft
File:                     XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft (raw, json)
Hash identifier:          3hFWEEXUONtGqS2jIQcyPNcSWdNa0hA6qhFK6hkFW4E=
Subject key identifier:   22:7A:9C:53:1C:2E:BC:82:A4:25:1E:4E:BA:22:53:80:C7:48:3C:50
Authority key identifier: 5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C
Certificate issuer:       /CN=A912698E/serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C
Certificate serial:       5A
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft
Manifest number:          58
Signing time:             Thu 16 Oct 2025 18:22:36 +0000
Manifest this update:     Thu 16 Oct 2025 18:22:36 +0000
Manifest next update:     Thu 23 Oct 2025 18:22:35 +0000
Files and hashes:         1: XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl (hash: d7mXZwq7q6BNxpgWw7Uc4zqTYxOhiYKt/yhmxuKhcmg=)
                          2: D5271A183ADB11F0BC52A042C4F9AE02.roa (hash: Je+up3kY6qu1B3So3Vnq/xOYjMIPNymqMCzCxvb8aL4=)
                          3: 87087F00267E11F09183092AC4F9AE02.roa (hash: vPD3MBlV+VYxtTk5npGCIsRmwvlSAFp0uTh8dXUbHV8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl
                          rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Oct 2025 18:22:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 90 (0x5a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912698E, serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C
        Validity
            Not Before: Oct 16 18:22:36 2025 GMT
            Not After : Oct 23 18:22:35 2025 GMT
        Subject: CN=68f137ec-a41b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:dd:db:a4:e1:17:87:54:92:57:da:e0:2d:6a:
                    0d:ee:b8:c5:cf:99:30:72:c9:20:30:02:5b:a3:66:
                    48:6e:cb:51:e6:54:f3:f3:68:f0:da:7c:58:1e:bf:
                    ba:6a:e8:da:0d:6f:46:16:84:eb:a7:5a:b0:89:82:
                    29:32:0d:e4:cd:c0:f8:45:d5:c4:fb:27:3c:42:af:
                    2b:00:04:53:f5:06:08:b1:8c:c8:b1:e7:e1:31:63:
                    dd:47:32:a9:69:b9:ee:1f:58:2b:72:59:fd:4a:c9:
                    a3:77:56:d5:74:f8:a2:74:ec:b7:d4:f6:f7:ea:10:
                    10:b7:bd:6f:f9:e9:72:a6:34:98:94:83:3f:e4:3b:
                    1c:f7:a6:e5:8f:c2:95:0b:67:49:49:eb:46:a9:68:
                    5b:4f:26:94:70:41:8a:24:df:fa:7a:a9:ea:73:2c:
                    b3:e5:92:e5:7f:76:65:97:dc:92:99:6d:9f:46:2c:
                    c5:d3:87:2f:2b:d4:e0:a2:a7:48:e1:80:31:8e:94:
                    c7:c1:96:4b:81:95:3a:b3:a9:d5:fe:de:8e:6c:9d:
                    ed:07:ba:9a:9d:cd:e1:21:68:9e:60:52:f4:19:d5:
                    8a:1c:80:cd:bf:e9:4d:ec:8c:44:3b:4d:18:af:da:
                    95:20:03:23:b0:e1:3d:54:42:11:90:f5:61:7c:77:
                    1e:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                22:7A:9C:53:1C:2E:BC:82:A4:25:1E:4E:BA:22:53:80:C7:48:3C:50
            X509v3 Authority Key Identifier:
                keyid:5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:4e:f7:56:a5:d9:cd:d5:66:3d:bd:5b:d6:99:cc:97:98:be:
         f1:68:9b:28:a1:9f:b0:e0:c0:36:09:2c:45:c5:c3:22:e9:5e:
         f3:eb:5e:f3:37:34:80:4e:25:3f:f0:99:c3:e5:ba:cf:3a:f6:
         a8:5b:73:32:69:cb:3e:5a:28:b2:f7:2d:91:3c:44:94:87:69:
         3e:71:d1:95:13:f1:da:3d:4b:16:63:75:0c:b2:e1:8c:01:4c:
         1a:c1:e3:f2:f4:39:3d:26:88:35:f8:f5:64:73:71:c2:aa:9b:
         5f:d3:b5:36:da:91:fc:88:42:2c:90:31:33:16:b3:36:64:ee:
         ae:4c:39:eb:06:05:6e:ff:74:40:45:a9:02:db:98:fe:92:1b:
         59:67:b1:a2:4c:2f:b1:3b:4d:7f:65:fa:8f:76:92:4a:03:02:
         40:8e:9d:3c:3e:26:6d:26:1a:c0:aa:81:57:0f:8d:bf:10:b1:
         d9:f2:98:51:ec:8e:4a:e9:59:b3:74:91:a9:ae:82:2e:0f:83:
         32:2d:5f:53:8b:56:94:5f:d9:50:ec:f8:af:e9:93:d5:92:a8:
         e4:51:e5:ec:b5:89:88:f9:e8:a3:3e:b5:5c:dc:3f:ca:94:10:
         6e:4d:93:26:93:8c:3f:0f:d6:85:39:e3:8d:7d:de:dd:ae:8a:
         5b:96:1c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:34:37 2025 by rpki-client