Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft
File:                     42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft (raw, json)
Hash identifier:          mrTMYPyonoFIrpJfXaFXiOBKrKQdgMOC1srOdXu48UQ=
Subject key identifier:   4F:42:ED:76:18:A2:7B:E4:0D:5B:7A:FA:A8:D8:59:0A:7B:E9:62:35
Authority key identifier: E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6
Certificate issuer:       /CN=A91418C7/serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6
Certificate serial:       7D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft
Manifest number:          7B
Signing time:             Sun 19 Oct 2025 10:07:00 +0000
Manifest this update:     Sun 19 Oct 2025 10:06:59 +0000
Manifest next update:     Sun 26 Oct 2025 10:06:59 +0000
Files and hashes:         1: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl (hash: R16kh667U7lfv6MFll11+NFh7C7ggrZZXEZ7UGit5BA=)
                          2: CDD0BE9EF99111EF945B6751C4F9AE02.roa (hash: 5D2jjmxRmYaXjLCMnBDCQ4uD7aGag4RBTpQpYik03Wk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl
                          rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 10:06:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 125 (0x7d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91418C7, serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6
        Validity
            Not Before: Oct 19 10:06:59 2025 GMT
            Not After : Oct 26 10:06:59 2025 GMT
        Subject: CN=68f4b844-e608
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:8c:a0:39:db:41:9c:0d:85:61:bd:d4:f6:48:
                    73:a7:e2:36:90:d1:b3:a0:e9:c7:77:03:56:91:17:
                    13:49:67:83:aa:1a:22:c7:9f:e7:8b:50:21:62:98:
                    e9:df:94:59:f4:e7:62:2b:12:89:5d:23:db:42:5c:
                    af:da:0f:67:e6:c1:44:1f:0d:db:f7:99:8a:64:40:
                    0f:bd:dd:1e:0b:4c:e2:6c:c1:72:7e:92:2d:fb:55:
                    0c:fd:f3:0a:7c:2e:4d:b1:8e:7b:f8:e7:a1:f5:c9:
                    2c:cf:31:20:a9:ad:b9:32:a8:dc:b9:ac:8b:ca:98:
                    ce:5d:63:cc:c8:c0:f6:11:a7:48:22:dc:80:58:da:
                    58:89:fd:da:cd:5b:02:23:0f:7f:11:d7:0b:88:4e:
                    f0:0f:44:37:9c:49:ec:e4:21:42:cc:c2:44:d6:7a:
                    ee:38:12:b1:1e:7a:d1:6e:71:fc:a0:47:75:fe:a8:
                    98:88:69:a6:a4:ae:78:d9:1a:6e:cf:70:fc:88:03:
                    3e:21:fe:f8:ff:7c:b5:1b:c0:10:c4:1f:b1:ef:ba:
                    32:65:76:0b:2f:a3:0b:64:c3:58:4e:b7:ad:ba:87:
                    86:61:69:17:6d:41:0d:2e:48:aa:2f:8a:fb:aa:84:
                    3f:19:b2:24:05:ea:8a:59:96:1b:99:42:5a:43:b0:
                    90:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:42:ED:76:18:A2:7B:E4:0D:5B:7A:FA:A8:D8:59:0A:7B:E9:62:35
            X509v3 Authority Key Identifier:
                keyid:E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:6d:27:ac:86:26:d1:da:a1:d5:d9:9c:19:1e:cc:cf:9f:90:
         39:2b:dc:dc:68:de:0d:61:d8:5e:35:90:0b:dd:0e:dd:bf:f0:
         d8:da:6a:18:17:09:7d:e0:31:68:23:70:1c:45:2d:b9:d9:cf:
         ec:bf:82:69:31:95:b4:ae:19:d0:7d:6f:ee:62:8b:00:bf:64:
         2f:3c:f0:05:b7:82:ef:fc:aa:33:02:e3:5f:41:f0:ba:f0:75:
         55:83:90:04:81:58:59:77:31:ca:da:02:64:df:6d:b4:18:1c:
         4f:66:d0:b0:0e:b6:e9:45:96:6a:1b:d6:d5:5a:b8:3b:98:c8:
         a8:f0:48:54:a5:ee:b9:98:1f:6c:12:92:ec:33:68:87:4d:fb:
         ed:6c:1b:ec:6d:cd:2d:7e:d4:3e:c6:b1:5a:fc:e2:9b:ad:48:
         c0:b0:21:20:14:d0:b8:29:04:a7:4a:0c:2f:3b:bd:65:80:62:
         01:eb:e9:e9:1b:5b:16:60:e4:b1:02:e9:c6:af:24:c1:be:a7:
         ae:13:75:2d:8d:0a:55:71:06:57:51:43:aa:0c:1c:84:74:02:
         79:b0:6c:21:a6:a7:10:d0:71:4f:fd:bc:b1:f1:b5:67:c2:5c:
         cd:ae:fa:33:fe:5c:8c:42:a3:c3:a9:74:08:08:29:26:c6:99:
         44:c3:a3:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:14:51 2025 by rpki-client