Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft
File:                     TKAuwRGHSuDn0FVaJf8zAvkS64w.mft (raw, json)
Hash identifier:          4Qk6iJ1EA+stBCmgw5w+r9e2MF+11LQkVJK7HQdgN10=
Subject key identifier:   F4:67:61:C3:43:91:AF:B0:6E:2A:03:44:71:5F:8E:8E:AE:45:FE:A2
Authority key identifier: 4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C
Certificate issuer:       /CN=A915825D/serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C
Certificate serial:       B8
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft
Manifest number:          B3
Signing time:             Sun 19 Oct 2025 09:19:07 +0000
Manifest this update:     Sun 19 Oct 2025 09:19:06 +0000
Manifest next update:     Sun 26 Oct 2025 09:19:06 +0000
Files and hashes:         1: TKAuwRGHSuDn0FVaJf8zAvkS64w.crl (hash: KIYUj+rwLQ/wl/XFn7+Tp1OuSF3YwkNrLhgbHfu5ZGI=)
                          2: 109B1A6AC14F11EFAE8F4B0BC4F9AE02.roa (hash: m6Ln5a7ZSeIX81Tm2886H7n9SlKXj8hnsIcbsYsTN7o=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl
                          rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 09:19:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 184 (0xb8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A915825D, serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C
        Validity
            Not Before: Oct 19 09:19:06 2025 GMT
            Not After : Oct 26 09:19:06 2025 GMT
        Subject: CN=68f4ad0b-d6ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:94:fe:e1:d0:5f:4e:ff:e1:2f:fe:49:8e:fe:
                    e7:b6:c5:51:04:d4:b5:66:ce:d1:15:f4:43:fc:6e:
                    31:7f:6b:61:3f:fe:20:23:6e:d9:75:cb:a0:8c:e2:
                    57:64:d9:2c:4c:1b:96:bc:7e:ba:b8:03:dd:90:88:
                    8a:54:e0:9b:a2:5e:4c:ca:16:16:23:74:7e:5a:2c:
                    d7:1c:a2:a1:54:8f:5d:36:ef:28:ff:39:af:0f:72:
                    34:ac:36:e8:28:5d:3e:d2:9c:1d:92:10:e2:de:63:
                    aa:0e:78:6a:45:f4:9a:82:c5:53:6a:fa:7e:50:13:
                    49:7b:68:7f:c3:02:a9:df:73:6e:30:ee:14:7e:68:
                    9b:dc:8a:c0:9c:aa:62:e0:67:a9:b3:1a:e0:d7:5a:
                    8d:e7:72:9b:f0:7d:72:c0:f5:9e:75:fb:db:b0:7f:
                    37:40:8c:22:61:00:e1:ed:d4:1e:6b:a2:05:6c:ab:
                    26:13:23:f5:db:52:17:f7:f4:41:70:3e:3c:c8:8c:
                    a1:d3:dd:40:9b:1f:23:d8:d0:15:4d:1d:2e:cd:bc:
                    d9:a0:16:63:06:81:25:aa:a2:b0:2a:06:6f:d2:ed:
                    3c:46:f8:36:4d:33:84:58:e6:b2:e2:b2:8d:1e:98:
                    0d:01:cd:08:bb:2f:02:51:b8:10:65:8e:c6:80:d8:
                    33:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:67:61:C3:43:91:AF:B0:6E:2A:03:44:71:5F:8E:8E:AE:45:FE:A2
            X509v3 Authority Key Identifier:
                keyid:4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a6:c7:f7:c2:b8:4e:cf:07:df:09:d2:be:81:ed:dd:c9:73:8b:
         84:a9:f1:65:b6:65:c2:c3:60:57:33:4e:b8:85:80:2f:1b:d6:
         2e:0d:60:0c:ee:8a:12:6c:f5:40:bc:1c:b3:f0:60:57:2a:90:
         5e:53:94:88:64:c6:09:13:92:a5:de:b3:ed:7c:27:8e:96:90:
         a9:a5:31:2a:2c:de:c9:7e:85:91:47:af:42:00:f3:98:b8:4d:
         db:0d:39:c8:31:78:e5:e8:60:24:0f:e7:c1:94:3e:27:45:d2:
         1b:f3:43:d0:af:c7:ba:19:0d:26:8a:57:f4:f6:77:26:e3:ed:
         5c:53:85:25:8e:dd:55:ec:b3:d2:f3:28:ff:fc:af:82:87:c6:
         5e:82:db:7a:c5:05:ef:36:1f:49:04:43:8e:a1:3b:ff:f6:fc:
         de:30:83:3b:10:ed:20:01:34:bf:8b:e0:a5:b6:a9:56:27:88:
         52:da:54:39:e8:a9:e2:dd:5f:7a:c6:c9:a8:e0:12:c6:ff:d2:
         10:53:fb:be:72:77:71:2f:b2:5e:cb:d6:e5:66:92:1b:8c:76:
         5a:77:c4:0a:74:99:8f:44:cf:27:cc:dd:f2:79:f3:d3:50:94:
         56:94:30:42:6f:82:f2:e6:e8:e9:e4:9b:89:79:05:b3:28:e1:
         9f:77:66:65
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTgyNUQxMTAvBgNVBAUTKDRDQTAyRUMxMTE4NzRBRTBFN0QwNTU1QTI1RkYzMzAy
RjkxMkVCOEMwHhcNMjUxMDE5MDkxOTA2WhcNMjUxMDI2MDkxOTA2WjAYMRYwFAYD
VQQDEw02OGY0YWQwYi1kNmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA75T+4dBfTv/hL/5Jjv7ntsVRBNS1Zs7RFfRD/G4xf2thP/4gI27ZdcugjOJX
ZNksTBuWvH66uAPdkIiKVOCbol5MyhYWI3R+WizXHKKhVI9dNu8o/zmvD3I0rDbo
KF0+0pwdkhDi3mOqDnhqRfSagsVTavp+UBNJe2h/wwKp33NuMO4Ufmib3IrAnKpi
4Gepsxrg11qN53Kb8H1ywPWedfvbsH83QIwiYQDh7dQea6IFbKsmEyP121IX9/RB
cD48yIyh091Amx8j2NAVTR0uzbzZoBZjBoElqqKwKgZv0u08Rvg2TTOEWOay4rKN
HpgNAc0Iuy8CUbgQZY7GgNgzgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRnYcND
ka+wbioDRHFfjo6uRf6iMB8GA1UdIwQYMBaAFEygLsERh0rg59BVWiX/MwL5EuuM
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODI1RC9ERDcxRDU2OEE0
NDYxMUVGOEQ1OEE2MjRDNEY5QUUwMi9US0F1d1JHSFN1RG4wRlZhSmY4ekF2a1M2
NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL1RLQXV3UkdIU3VEbjBGVmFKZjh6QXZrUzY0dy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
ODI1RC9ERDcxRDU2OEE0NDYxMUVGOEQ1OEE2MjRDNEY5QUUwMi9US0F1d1JHSFN1
RG4wRlZhSmY4ekF2a1M2NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCmx/fCuE7PB98J0r6B7d3Jc4uEqfFltmXCw2BXM064hYAvG9YuDWAM
7ooSbPVAvByz8GBXKpBeU5SIZMYJE5Kl3rPtfCeOlpCppTEqLN7JfoWRR69CAPOY
uE3bDTnIMXjl6GAkD+fBlD4nRdIb80PQr8e6GQ0milf09ncm4+1cU4Uljt1V7LPS
8yj//K+Ch8Zegtt6xQXvNh9JBEOOoTv/9vzeMIM7EO0gATS/i+CltqlWJ4hS2lQ5
6Kni3V96xsmo4BLG/9IQU/u+cndxL7Jey9blZpIbjHZad8QKdJmPRM8nzN3yefPT
UJRWlDBCb4Ly5ujp5JuJeQWzKOGfd2Zl
-----END CERTIFICATE-----
Generated at Tue Oct 21 09:08:28 2025 by rpki-client