Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.mft
File:                     53p5hBmz84yLAlkKKUx7NffDREw.mft (raw, json)
Hash identifier:          WfoNOhq55gogEkK6MaW0pqcuakotauQ55E1wtRtGCcY=
Subject key identifier:   5E:7C:DA:60:2A:CB:27:FF:87:29:1E:A6:BC:DC:14:D6:4E:D4:D7:36
Authority key identifier: E7:7A:79:84:19:B3:F3:8C:8B:02:59:0A:29:4C:7B:35:F7:C3:44:4C
Certificate issuer:       /CN=A914530B/serialNumber=E77A798419B3F38C8B02590A294C7B35F7C3444C
Certificate serial:       A4
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/53p5hBmz84yLAlkKKUx7NffDREw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.mft
Manifest number:          A2
Signing time:             Sun 19 Oct 2025 09:32:28 +0000
Manifest this update:     Sun 19 Oct 2025 09:32:27 +0000
Manifest next update:     Sun 26 Oct 2025 09:32:27 +0000
Files and hashes:         1: 53p5hBmz84yLAlkKKUx7NffDREw.crl (hash: tR30YrOula2SUBa9a5g1szfUCFLABNbNj5P7t3uEEkU=)
                          2: 87A33C66B79D11EF9A384C65C4F9AE02.roa (hash: PmWdGEFbgxUM5JARv+3955i+yLCgnSi8KLnrb7A4Hd0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.crl
                          rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/53p5hBmz84yLAlkKKUx7NffDREw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 09:32:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 164 (0xa4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914530B, serialNumber=E77A798419B3F38C8B02590A294C7B35F7C3444C
        Validity
            Not Before: Oct 19 09:32:27 2025 GMT
            Not After : Oct 26 09:32:27 2025 GMT
        Subject: CN=68f4b02c-7dc9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:77:19:c7:a5:8b:db:31:a7:d1:14:ff:d5:e7:
                    8e:b2:6e:9b:fd:00:ce:41:ce:b9:96:3a:e2:fe:77:
                    f2:f5:e6:c1:0d:3b:9a:72:1c:0f:c0:93:cd:18:1b:
                    25:87:e7:ed:c3:ec:d8:86:11:1c:3a:b5:5e:45:14:
                    2e:d3:f0:03:85:f8:3a:1b:95:72:85:81:33:b5:b2:
                    55:35:06:06:dc:18:b3:26:7f:87:ff:a4:cc:79:36:
                    f0:27:72:52:c2:f5:b9:89:3b:6e:1f:47:78:f1:71:
                    1a:51:f7:45:50:9d:da:bd:ab:5a:1b:8f:e3:21:e1:
                    e4:f6:61:20:a8:f9:1b:ca:5b:74:7c:c9:40:22:9e:
                    9e:9c:8e:aa:4e:39:c8:8c:30:aa:40:11:e0:c5:f6:
                    b5:a3:46:18:5d:4e:72:69:6d:c3:85:35:14:b1:f3:
                    9c:7b:3b:a4:df:27:8e:ec:73:52:c2:85:1e:94:7b:
                    9a:b4:85:80:83:fe:e8:92:92:a5:6f:82:d1:76:8a:
                    0a:3f:3a:f2:f0:34:55:57:1a:12:64:4f:de:6d:0f:
                    2e:13:e9:01:4e:74:1b:14:d7:1e:ee:5b:59:97:7f:
                    68:c5:74:bc:4b:3f:83:3c:91:84:0d:cc:c4:c0:3b:
                    19:20:6f:37:5b:2b:ae:bd:79:25:ea:f5:1e:ab:50:
                    af:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:7C:DA:60:2A:CB:27:FF:87:29:1E:A6:BC:DC:14:D6:4E:D4:D7:36
            X509v3 Authority Key Identifier:
                keyid:E7:7A:79:84:19:B3:F3:8C:8B:02:59:0A:29:4C:7B:35:F7:C3:44:4C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/53p5hBmz84yLAlkKKUx7NffDREw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:71:29:80:19:00:90:17:dd:f7:e0:15:1f:51:16:e2:c9:8d:
         32:90:2f:4e:87:f8:0f:85:f2:45:99:49:8c:f0:23:f9:cc:ef:
         65:a4:66:21:d3:78:c8:94:e6:8e:ad:0b:a9:1b:8e:31:db:6c:
         7d:82:9a:f3:f9:9b:72:0d:6d:47:e6:8a:db:39:62:c5:8e:82:
         6d:e8:ac:a9:ee:a4:81:f3:03:5a:90:9c:71:a6:34:8b:b5:e4:
         3e:5f:98:c7:7c:0f:a7:f2:26:c6:aa:8e:bc:40:c0:9d:7b:b5:
         c2:9b:5b:c0:be:85:38:cd:08:eb:73:9e:f2:20:50:de:94:97:
         08:6f:56:b4:af:9d:bb:b2:6c:1d:86:53:f1:9c:62:94:19:aa:
         43:f5:3a:83:bf:f9:0e:cb:da:91:77:93:d8:fa:cc:c9:38:31:
         5f:88:fe:f7:b3:81:4b:49:47:9b:88:bd:c7:63:96:dd:6f:2c:
         43:8f:71:b4:db:a5:ab:f7:b5:ce:1a:55:8a:49:95:02:61:a0:
         39:97:4e:bc:7c:fb:98:13:c4:88:d2:f6:13:81:fb:44:b6:23:
         c1:16:11:19:1e:2b:3d:3e:87:ce:97:60:fa:44:28:8f:0c:99:
         ea:21:55:e3:55:67:46:eb:40:3c:68:ba:a6:00:15:a4:25:39:
         dc:0a:79:9a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDUzMEIxMTAvBgNVBAUTKEU3N0E3OTg0MTlCM0YzOEM4QjAyNTkwQTI5NEM3QjM1
RjdDMzQ0NEMwHhcNMjUxMDE5MDkzMjI3WhcNMjUxMDI2MDkzMjI3WjAYMRYwFAYD
VQQDEw02OGY0YjAyYy03ZGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1HcZx6WL2zGn0RT/1eeOsm6b/QDOQc65ljri/nfy9ebBDTuachwPwJPNGBsl
h+ftw+zYhhEcOrVeRRQu0/ADhfg6G5VyhYEztbJVNQYG3BizJn+H/6TMeTbwJ3JS
wvW5iTtuH0d48XEaUfdFUJ3avataG4/jIeHk9mEgqPkbylt0fMlAIp6enI6qTjnI
jDCqQBHgxfa1o0YYXU5yaW3DhTUUsfOcezuk3yeO7HNSwoUelHuatIWAg/7okpKl
b4LRdooKPzry8DRVVxoSZE/ebQ8uE+kBTnQbFNce7ltZl39oxXS8Sz+DPJGEDczE
wDsZIG83WyuuvXkl6vUeq1CvtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF582mAq
yyf/hykeprzcFNZO1Nc2MB8GA1UdIwQYMBaAFOd6eYQZs/OMiwJZCilMezX3w0RM
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTMwQi85RTc1RERCNkI3
OUExMUVGQTBENjk3NURDNEY5QUUwMi81M3A1aEJtejg0eUxBbGtLS1V4N05mZkRS
RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyLzUzcDVoQm16ODR5TEFsa0tLVXg3TmZmRFJFdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
NTMwQi85RTc1RERCNkI3OUExMUVGQTBENjk3NURDNEY5QUUwMi81M3A1aEJtejg0
eUxBbGtLS1V4N05mZkRSRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBXcSmAGQCQF9334BUfURbiyY0ykC9Oh/gPhfJFmUmM8CP5zO9lpGYh
03jIlOaOrQupG44x22x9gprz+ZtyDW1H5orbOWLFjoJt6Kyp7qSB8wNakJxxpjSL
teQ+X5jHfA+n8ibGqo68QMCde7XCm1vAvoU4zQjrc57yIFDelJcIb1a0r527smwd
hlPxnGKUGapD9TqDv/kOy9qRd5PY+szJODFfiP73s4FLSUebiL3HY5bdbyxDj3G0
26Wr97XOGlWKSZUCYaA5l068fPuYE8SI0vYTgftEtiPBFhEZHis9PofOl2D6RCiP
DJnqIVXjVWdG60A8aLqmABWkJTncCnma
-----END CERTIFICATE-----
Generated at Mon Oct 20 14:35:56 2025 by rpki-client