Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.mft
File:                     Pj3GKtNpQScHmphxdsIYwJs-yf0.mft (raw, json)
Hash identifier:          Qr683DANMOy2f9HBB+2FJEh9O7zEZ97SK7dVPEvQpnY=
Subject key identifier:   CC:C6:51:15:FA:6B:63:DC:78:60:A9:13:6D:3E:06:95:DE:C6:09:AF
Authority key identifier: 3E:3D:C6:2A:D3:69:41:27:07:9A:98:71:76:C2:18:C0:9B:3E:C9:FD
Certificate issuer:       /CN=A916559E/serialNumber=3E3DC62AD3694127079A987176C218C09B3EC9FD
Certificate serial:       2C4E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pj3GKtNpQScHmphxdsIYwJs-yf0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.mft
Manifest number:          2C2C
Signing time:             Sat 18 Oct 2025 15:43:55 +0000
Manifest this update:     Sat 18 Oct 2025 15:43:54 +0000
Manifest next update:     Sat 25 Oct 2025 15:43:54 +0000
Files and hashes:         1: Pj3GKtNpQScHmphxdsIYwJs-yf0.crl (hash: qG/3txN6cyKTzXEpg8aSjElUo+puLvomPhjFSBRs59k=)
                          2: 5E736B1EEE2C11ECBDA4362BC4F9AE02.roa (hash: T0b8C7d4bWsc3EyPhNVtAAt07MQZYtmIX9CE+cnW0sk=)
                          3: A37B20206FE111E9B3465D70C4F9AE02.roa (hash: JeRljMwzQH3/92nSWVH5RymJInEM50zHuR37MlUO73U=)
                          4: C49CBEFCD27711ECAAC6BD51C4F9AE02.roa (hash: wKTcwQ/I5JRFgJ3BEd5QarAu/YHgWoWcx44Njrdtc4g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.crl
                          rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pj3GKtNpQScHmphxdsIYwJs-yf0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 15:43:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 11342 (0x2c4e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916559E, serialNumber=3E3DC62AD3694127079A987176C218C09B3EC9FD
        Validity
            Not Before: Oct 18 15:43:54 2025 GMT
            Not After : Oct 25 15:43:54 2025 GMT
        Subject: CN=68f3b5ba-9926
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:f6:9e:66:69:9b:e8:50:0f:c3:3e:ce:de:b5:
                    8c:0a:99:2c:77:5f:d2:de:a9:43:ac:20:6d:93:5f:
                    26:f8:21:a1:48:65:e2:6d:8a:0a:67:ff:95:45:a7:
                    04:35:b2:73:cb:c5:8f:46:27:bc:87:21:e1:8d:10:
                    2b:db:10:bd:06:af:5b:89:e7:5f:a0:0a:33:d0:eb:
                    8f:b8:20:ad:c2:b7:eb:63:3f:14:15:84:da:06:c2:
                    b0:30:8e:49:d1:a0:21:6e:a9:02:cf:7f:e5:54:03:
                    44:88:fa:1d:f1:e5:4a:fe:2b:ef:0c:a9:0d:ff:a8:
                    12:fb:39:02:eb:d8:b3:bc:78:92:6d:58:f1:b9:83:
                    d3:28:53:aa:28:aa:16:c8:48:75:4e:a3:9a:cc:52:
                    8a:db:a4:13:a4:2f:ab:e6:c0:76:ed:7d:b1:6b:81:
                    fa:af:fb:35:02:d7:19:4e:a4:66:69:10:45:89:e5:
                    46:33:c8:a1:d7:c5:ae:3a:88:67:bf:ba:d4:ac:35:
                    70:80:ab:25:dc:51:1f:90:b0:df:c9:1d:63:1d:86:
                    c7:01:59:50:44:17:e7:01:40:6a:b5:9c:ca:db:1b:
                    f1:28:07:b6:eb:d0:38:c7:72:95:c8:a5:c2:30:af:
                    10:10:17:f5:86:68:c0:aa:38:ec:16:ec:42:90:2f:
                    55:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:C6:51:15:FA:6B:63:DC:78:60:A9:13:6D:3E:06:95:DE:C6:09:AF
            X509v3 Authority Key Identifier:
                keyid:3E:3D:C6:2A:D3:69:41:27:07:9A:98:71:76:C2:18:C0:9B:3E:C9:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pj3GKtNpQScHmphxdsIYwJs-yf0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         21:1c:d6:de:d6:17:bd:ec:3e:11:aa:56:a5:ca:c4:e0:ef:28:
         36:73:36:6f:b9:e3:81:95:3f:78:27:b3:29:8d:45:f5:ab:5e:
         16:c0:7b:fe:0c:3f:7e:fa:09:ab:24:bd:66:79:30:6c:fa:b2:
         52:2e:47:c7:6f:45:b5:61:07:8d:07:5b:d9:d5:b5:5f:4f:a5:
         dd:15:d8:d1:ee:d3:0c:e7:51:d0:c3:7e:2b:3b:41:8e:e3:0f:
         76:da:69:08:e2:65:a0:a4:fc:23:a8:6a:29:37:6f:ba:f8:b1:
         a6:e0:79:9c:10:df:77:96:32:a0:76:cf:fd:1b:24:99:2d:9e:
         3c:c8:8d:d1:00:43:2e:19:dd:0c:96:9c:2b:bc:71:5d:f5:84:
         d0:3f:d6:ed:cd:ac:e9:4a:79:c8:e7:48:e9:be:25:45:6b:2f:
         80:80:48:19:47:b7:60:ed:89:01:5d:5f:e7:ab:61:30:66:99:
         36:bd:64:99:34:e3:4b:1b:37:f3:30:82:15:1b:db:a6:f1:24:
         73:d5:5f:0a:96:be:d8:8b:2c:23:aa:df:a4:40:38:09:ed:79:
         cd:63:91:0b:29:b2:53:f4:a6:18:0d:1b:56:6d:62:35:e1:4d:
         99:ed:ef:37:32:cc:4a:a6:7c:bf:25:e3:56:64:ec:49:7c:8a:
         85:2d:04:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:42:55 2025 by rpki-client