Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft
File:                     aEWjVwdX5r8sBIWsIXib_1AFHpo.mft (raw, json)
Hash identifier:          fF5P+2AFLW8faittyfA9v1uoJEd2pfw9Vke8BiE6+mg=
Subject key identifier:   EF:75:44:B7:55:5B:C7:13:56:9E:3D:B8:3F:94:27:8D:08:91:F6:EF
Authority key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A
Certificate issuer:       /CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A
Certificate serial:       0193
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft
Manifest number:          0190
Signing time:             Sun 19 Oct 2025 06:02:40 +0000
Manifest this update:     Sun 19 Oct 2025 06:02:40 +0000
Manifest next update:     Sun 26 Oct 2025 06:02:40 +0000
Files and hashes:         1: aEWjVwdX5r8sBIWsIXib_1AFHpo.crl (hash: 5erN8b0VzqGfdjxbBCsvSWpKaDcd+ewdN+kyCG9WZus=)
                          2: 0CE4B8C6474911EEA995D74FC4F9AE02.roa (hash: o8XeNpRnuUBlVWA6mPKxdSovFEQUWjBzrI7Rs+4BJAM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl
                          rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 06:02:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 403 (0x193)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913500A, serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A
        Validity
            Not Before: Oct 19 06:02:40 2025 GMT
            Not After : Oct 26 06:02:40 2025 GMT
        Subject: CN=68f47f00-4641
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:c5:7a:6c:5a:f8:97:b3:42:2b:fa:26:25:7f:
                    90:d5:03:ab:c6:f8:a2:20:80:ae:d1:4c:28:a5:ff:
                    db:1f:3f:d5:62:b1:09:90:25:ea:86:bd:e0:01:29:
                    8a:05:eb:cf:c6:80:b5:de:a8:f3:c3:39:98:13:87:
                    f5:f5:ac:b1:2e:8e:63:80:c9:d9:98:64:a8:d0:cb:
                    ee:4d:b0:9c:15:70:28:82:73:c5:b2:72:a2:0e:9e:
                    5f:9f:4b:4f:5a:20:5d:ae:39:10:d9:42:94:e5:5e:
                    1f:5f:0d:ec:ae:ce:4c:2e:a2:2a:15:07:da:2c:8f:
                    e8:f3:c6:cb:47:29:cf:99:d1:22:c9:14:25:48:bb:
                    c2:5b:ed:39:92:79:ee:90:fb:bf:5b:d0:04:29:73:
                    23:95:71:79:4d:d7:f6:4d:f6:86:89:38:29:cd:c9:
                    d4:56:74:a1:17:14:1c:10:4b:e5:01:0a:c4:08:28:
                    91:2f:26:af:2a:db:1a:27:3b:66:18:83:4b:c7:25:
                    1a:a4:d3:b6:3c:15:6a:1e:6d:bb:65:ed:82:2b:8e:
                    74:8c:2b:f1:1b:41:1c:06:35:e4:55:0f:85:74:c8:
                    c1:17:ee:46:5b:6d:0b:00:38:00:cb:4f:94:4e:fe:
                    74:0a:81:24:21:d4:43:b5:28:ba:e4:66:a3:e0:81:
                    b4:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:75:44:B7:55:5B:C7:13:56:9E:3D:B8:3F:94:27:8D:08:91:F6:EF
            X509v3 Authority Key Identifier:
                keyid:68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:57:a8:c7:76:ea:c9:49:55:0c:72:93:a9:d4:9c:ae:f4:36:
         cd:f3:27:47:9c:c5:62:5f:ee:c4:aa:53:9e:31:fb:55:ef:3f:
         2b:a6:07:44:36:8b:17:3f:f3:53:ab:70:c2:73:05:83:8d:32:
         ca:0a:8f:31:b0:de:0d:ee:91:d1:3b:60:ac:5f:d8:18:8e:e8:
         d9:f5:3a:d7:0e:50:73:bd:fb:ab:39:05:ad:43:37:1a:62:1b:
         52:b5:5d:c6:0b:ec:cc:80:fc:3e:27:5d:d9:19:a0:8b:9d:bf:
         dd:de:4e:22:51:b0:ce:62:38:c1:66:97:1b:f7:96:94:05:16:
         9b:12:7e:b0:81:c7:d4:ce:36:d0:69:0d:c6:0f:c4:d7:f3:d9:
         85:48:84:6a:02:5d:a4:64:87:6c:54:5b:48:31:0d:5e:c8:99:
         eb:6e:76:e0:bf:da:7c:b8:9c:d4:58:13:40:2a:40:a5:73:8a:
         45:b8:97:60:7b:31:2d:62:62:e7:3a:2a:e6:62:df:f0:2c:1f:
         7f:86:1a:12:b5:1a:88:79:a2:fd:d9:d8:09:ad:35:a0:ac:40:
         de:e2:17:d1:e3:c1:ed:ef:20:08:5f:1f:40:08:15:60:b5:84:
         d5:b1:2e:ab:54:55:3a:b5:0a:a9:58:49:58:f6:cd:0d:a3:29:
         38:cb:8e:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:42:01 2025 by rpki-client