Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft
File:                     KZYjJd4LreTcndvFdq4ncBK8N1g.mft (raw, json)
Hash identifier:          H6yM6Pw4h0ukRcM3STyy/UoMCWDVOSCDMLG6xkC9JRo=
Subject key identifier:   26:83:D5:D7:AE:0D:84:18:03:D6:7C:C8:82:47:92:5B:2B:00:F4:DA
Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58
Certificate issuer:       /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758
Certificate serial:       1AAD
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft
Manifest number:          1A8B
Signing time:             Sat 18 Oct 2025 16:42:37 +0000
Manifest this update:     Sat 18 Oct 2025 16:42:37 +0000
Manifest next update:     Sat 25 Oct 2025 16:42:37 +0000
Files and hashes:         1: KZYjJd4LreTcndvFdq4ncBK8N1g.crl (hash: Rmpa5UvA8cx7mGioytzJ2OIWBV/aaL7FjJLX1SMFGeo=)
                          2: B201496EF3A311EC8804FE09C4F9AE02.roa (hash: 1W3bZjmYo4y/faIyWLiaDn4cNEWTqd/xhoIAZdOleqM=)
                          3: 442A935E2F1F11F0A35F5757C4F9AE02.roa (hash: D4FdDOMn9kYOe8wUYl/7g0SwBt2d9VcBYOrZDNcFK0M=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl
                          rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 16:42:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6829 (0x1aad)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914DA2D, serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758
        Validity
            Not Before: Oct 18 16:42:37 2025 GMT
            Not After : Oct 25 16:42:37 2025 GMT
        Subject: CN=68f3c37d-dbd2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:8e:7a:5b:6f:9e:b0:93:15:88:64:55:14:02:
                    ef:9b:ca:66:31:cf:5a:f2:42:57:42:a7:48:70:ae:
                    b4:9d:20:fb:a8:d4:c1:59:b6:43:a4:32:f9:6f:f4:
                    b7:8d:b8:df:61:48:1a:ba:a9:40:78:7d:4c:db:42:
                    57:4b:f9:57:d9:37:60:88:90:c8:25:72:80:aa:ec:
                    64:57:68:36:e6:82:14:6c:9a:04:28:12:bf:44:99:
                    c4:25:29:85:a8:a1:f9:e2:6f:dd:0d:9e:fd:a8:dd:
                    f4:3a:c0:81:f1:de:ad:90:57:fe:07:19:ad:c0:9a:
                    08:ae:6a:48:b8:77:9f:fe:e1:93:a7:49:77:6d:83:
                    30:48:d5:0a:af:38:c0:af:70:46:32:e7:11:39:60:
                    8c:44:86:3b:e6:d1:f0:f8:b6:47:66:e1:04:ed:81:
                    66:16:c3:dc:ea:26:0f:70:73:a4:05:a7:44:37:92:
                    96:af:90:74:9b:4c:77:a7:a3:ed:30:2a:68:c0:6c:
                    63:ae:d2:7a:e1:17:c1:2f:1d:49:5e:d6:29:38:ac:
                    bd:c0:3d:ad:75:f1:fd:e5:d8:a1:13:c2:e3:db:a3:
                    ab:cf:c4:0e:fb:ce:ee:46:d4:75:d9:29:f5:d9:f7:
                    2f:8e:39:f6:a8:83:7d:6b:0b:4e:ed:0c:29:dd:1e:
                    e9:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:83:D5:D7:AE:0D:84:18:03:D6:7C:C8:82:47:92:5B:2B:00:F4:DA
            X509v3 Authority Key Identifier:
                keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8b:f8:18:b4:82:ac:fa:28:9e:43:97:be:68:57:f5:49:93:8b:
         c2:33:e7:5c:ac:17:68:25:15:69:d3:9b:35:c6:33:e4:04:7c:
         25:7f:05:83:df:dd:6b:67:1e:14:81:25:dd:2e:3c:a5:bd:74:
         23:6d:a2:c5:a6:a8:ea:72:21:ac:07:3d:19:b7:bd:73:ca:5f:
         ff:f2:a9:bb:e7:9d:7f:a9:31:74:64:e9:7f:77:bb:46:5f:e5:
         39:6c:97:9a:06:3f:9d:be:0e:d9:ec:d5:ae:30:ce:72:db:f0:
         40:20:b1:49:1e:37:62:8c:1c:08:88:38:04:0c:31:8e:50:43:
         98:d0:d4:e6:ac:fb:58:2e:bc:93:14:a5:35:0c:5d:07:f8:45:
         75:8c:9e:dd:40:9d:61:8b:84:44:27:22:86:2f:db:00:e8:c4:
         d2:df:46:50:a5:46:36:72:03:2e:99:b7:06:c1:78:25:cd:0f:
         07:3a:ae:c1:76:07:aa:8c:35:e2:c7:fb:1d:0e:84:3e:46:e9:
         48:92:fb:2a:cd:e2:f4:da:11:d2:e4:80:3e:d4:2a:16:cc:1c:
         86:b6:90:ec:ec:f7:8b:7d:dc:cf:f7:d4:c7:58:e4:96:1d:86:
         4d:8f:1f:27:44:db:44:57:f3:3d:df:3a:cf:ea:e1:10:01:4c:
         ec:75:75:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:35:20 2025 by rpki-client