Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft
File:                     dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft (raw, json)
Hash identifier:          ei9D97Xq8XHVjMpl8vvhAu443OGPhXxJfijOulEGQ94=
Subject key identifier:   6B:6C:4E:EF:61:3A:29:1C:26:82:AF:67:CF:BD:2E:03:4E:F3:31:29
Authority key identifier: 76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07
Certificate issuer:       /CN=A917ADD1/serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507
Certificate serial:       019E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft
Manifest number:          019B
Signing time:             Sun 19 Oct 2025 05:56:07 +0000
Manifest this update:     Sun 19 Oct 2025 05:56:06 +0000
Manifest next update:     Sun 26 Oct 2025 05:56:06 +0000
Files and hashes:         1: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl (hash: FZHZVZIuW0xYjUppVI5OQmapkmzS7MpnzlWFH3tZ6h4=)
                          2: 8D0C1E0E37EF11EE82AF270BC4F9AE02.roa (hash: GFGPvdmy2vrmiAyM3NUeTKYyq91wUi+ACbGsbCoh47g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl
                          rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 05:56:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 414 (0x19e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917ADD1, serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507
        Validity
            Not Before: Oct 19 05:56:06 2025 GMT
            Not After : Oct 26 05:56:06 2025 GMT
        Subject: CN=68f47d76-ec13
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:fc:a4:39:93:ac:44:1d:49:ff:d4:ea:ea:39:
                    7b:01:d9:e1:73:08:81:c2:de:37:82:66:aa:9a:e0:
                    8a:cc:03:a4:43:0a:67:83:8c:69:21:0d:5c:12:1f:
                    54:c2:95:c4:c9:2b:c2:77:73:e1:f8:58:b4:a5:29:
                    2c:c4:33:30:7f:73:61:2d:59:eb:86:26:8f:77:d2:
                    64:71:51:2d:f5:f3:92:7a:e2:f3:a4:79:20:9d:6f:
                    48:89:63:97:af:cd:49:61:39:d6:2b:b8:68:79:16:
                    81:c7:68:7b:44:65:bf:5f:8d:e0:f5:40:fe:b8:21:
                    2e:79:29:17:2f:95:7c:58:1d:c0:84:11:22:e1:36:
                    33:fd:37:17:88:fc:bb:cb:6d:9c:43:ef:1d:64:e4:
                    ac:b4:1c:98:cc:8e:3f:c8:9a:c0:4b:b8:aa:ad:e9:
                    2d:56:76:6a:5c:56:b3:92:d3:1a:da:d2:7e:72:11:
                    82:d8:19:5a:8f:da:86:63:fb:41:90:72:df:b2:77:
                    d0:8d:7d:e4:b7:7e:97:59:52:86:ba:ae:bc:9c:5d:
                    32:e9:d2:c2:65:63:86:7e:65:df:49:91:c4:6f:3d:
                    2f:69:97:39:da:39:47:91:68:c5:76:ff:43:fd:3d:
                    ed:55:cc:8e:0e:16:2d:45:5f:1f:0f:ea:24:d1:ed:
                    9c:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:6C:4E:EF:61:3A:29:1C:26:82:AF:67:CF:BD:2E:03:4E:F3:31:29
            X509v3 Authority Key Identifier:
                keyid:76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         69:3b:2a:49:c9:da:29:46:32:e5:18:92:83:6e:a3:cf:05:c3:
         65:95:3c:28:aa:33:2a:16:09:5f:0a:11:c7:e0:b4:75:17:e5:
         27:11:06:1f:e8:10:ed:86:0f:e2:b7:9f:ba:59:f9:b1:3f:94:
         70:31:f0:8c:5e:13:ae:1e:a4:89:da:3f:a0:c2:f2:7a:49:92:
         97:4a:98:dd:36:c9:16:fb:3c:6f:99:1b:f4:5c:3e:19:70:1c:
         46:65:26:20:8e:1f:37:4d:d8:62:c7:53:e8:92:fc:79:10:4f:
         f3:fd:9f:c1:bd:e4:26:fb:89:c4:9d:4b:e1:25:71:a6:91:2e:
         f8:63:7b:b2:3c:4e:3e:d0:ce:6f:1f:f9:66:ca:0a:fc:e3:c1:
         65:1b:cf:61:60:f1:dc:e1:80:77:2e:89:ca:ac:00:65:bd:d8:
         86:e9:a6:13:99:c0:76:ae:f6:cd:d1:6f:80:a3:18:02:30:01:
         f4:ee:76:1f:b6:65:66:5c:2e:93:7f:03:18:fb:1c:90:cd:1b:
         99:4c:9f:72:0c:bb:f3:55:75:a3:3f:51:24:e8:36:da:23:1c:
         75:67:58:74:36:fb:c6:60:28:df:12:9f:e6:72:88:c2:c4:9c:
         46:fa:21:2f:5c:80:e9:32:2a:2d:0d:29:a5:1d:14:df:53:39:
         e2:80:46:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:14:31 2025 by rpki-client