Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft
File:                     cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json)
Hash identifier:          rwa8uRo5qB1hJVGecKI/fWULCzHQsF9Jsn8Vx40aLiA=
Subject key identifier:   DA:DF:0B:15:C3:1A:A2:F1:10:07:E4:F9:C3:57:2A:60:FE:0E:A9:88
Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27
Certificate issuer:       /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27
Certificate serial:       0BCE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft
Manifest number:          0BC6
Signing time:             Sat 18 Oct 2025 19:45:47 +0000
Manifest this update:     Sat 18 Oct 2025 19:45:46 +0000
Manifest next update:     Sat 25 Oct 2025 19:45:46 +0000
Files and hashes:         1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: 8nKIVQf5JTv0KFA+FoM/pmiIGD8zzkpK/RfVv4xWqh0=)
                          2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: sV6ALO0axr/VXMBheoOGm2xJXWMWbMsVRF9rlXmaHds=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl
                          rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 19:45:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3022 (0xbce)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91722A3, serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27
        Validity
            Not Before: Oct 18 19:45:46 2025 GMT
            Not After : Oct 25 19:45:46 2025 GMT
        Subject: CN=68f3ee6a-a0e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:9e:1d:2f:d6:de:cb:3f:34:93:96:e1:0a:39:
                    7b:9c:cf:8a:96:fe:78:9b:4c:94:18:1b:d6:ec:2b:
                    79:64:8c:31:4b:0c:92:9a:68:85:30:9a:59:e4:3e:
                    84:cd:7e:84:01:ec:ce:9d:dc:65:bd:76:bc:5f:7b:
                    be:a1:1d:a7:f2:fa:48:d0:98:62:92:1d:24:cb:dd:
                    8a:f1:76:57:c5:a2:f6:1d:bc:0c:97:fb:c1:0e:c1:
                    54:80:80:bc:37:21:ad:81:0a:f2:da:a3:ea:d8:f0:
                    74:36:bc:a4:c0:ce:86:6b:78:cf:39:2a:a5:60:82:
                    60:7f:dd:34:43:8f:5f:ce:00:68:4a:44:f2:3e:3d:
                    b1:b0:95:64:f7:12:ff:ea:f6:da:1b:14:50:5c:aa:
                    92:69:19:0b:17:e4:55:ab:cc:b0:9c:83:77:a5:bb:
                    e9:42:e8:aa:42:36:c8:7b:b9:bc:6d:25:99:98:a4:
                    c4:9b:29:4d:b0:8a:0b:c9:69:05:d1:ea:2e:a4:cd:
                    64:7e:a2:72:e8:03:30:61:01:ce:cd:63:ce:f0:5e:
                    68:8f:5f:c1:cd:27:96:d2:21:29:3e:ad:f6:e1:87:
                    cf:37:80:f0:c8:36:99:36:fe:24:06:43:4b:45:1b:
                    76:b4:63:24:79:67:30:18:8f:57:41:ce:63:31:d7:
                    94:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:DF:0B:15:C3:1A:A2:F1:10:07:E4:F9:C3:57:2A:60:FE:0E:A9:88
            X509v3 Authority Key Identifier:
                keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         08:c6:1a:e1:e0:8d:bd:3d:d8:1d:cd:21:71:9a:99:ac:b1:f9:
         49:c3:83:32:97:3d:fd:5d:35:59:b0:1e:95:b4:04:a4:8a:1f:
         6a:c3:52:6a:0f:f3:94:9e:c1:19:95:5a:e8:68:c3:c4:f1:da:
         b8:cc:91:a3:12:b1:38:12:38:19:c1:f5:ee:ee:5d:83:4a:81:
         a0:c7:cc:ed:06:ee:7e:bb:b1:46:5b:f9:de:0e:de:90:1e:21:
         04:0e:a4:52:36:d1:fc:ac:1c:8c:0f:55:4b:43:e6:d8:32:a0:
         39:7b:43:7f:7b:5d:cf:e5:01:14:71:21:bc:b7:a5:1e:34:5a:
         dc:da:50:58:a3:37:26:d7:c0:c9:00:5b:da:f8:0f:91:cd:80:
         d8:3f:32:7a:25:11:02:68:a8:3d:7a:e4:80:05:f3:f6:97:9b:
         f5:0c:44:44:70:67:e9:66:73:14:5b:df:8c:57:0e:00:c6:8e:
         6c:74:12:e0:b6:a2:bf:59:35:d8:70:99:9d:38:58:32:70:81:
         7c:d3:e2:e3:36:aa:dc:74:a7:98:04:54:0b:86:df:03:49:83:
         6c:43:15:ac:62:5d:59:8a:95:7d:59:e8:b5:a5:dd:6d:16:95:
         fc:58:47:ff:d6:50:3c:28:aa:47:76:82:d1:9f:05:8d:6c:08:
         00:92:76:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:42:44 2025 by rpki-client