Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft
File:                     C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json)
Hash identifier:          +h7tRAGUhitL5EodriHMg0ZlPxPwByfLzfouvz4fElw=
Subject key identifier:   88:0C:91:24:FA:57:3F:98:8C:E6:47:51:5A:80:A9:CA:42:04:CA:48
Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54
Certificate issuer:       /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654
Certificate serial:       0633
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft
Manifest number:          0615
Signing time:             Sun 19 Oct 2025 00:31:06 +0000
Manifest this update:     Sun 19 Oct 2025 00:31:06 +0000
Manifest next update:     Sun 26 Oct 2025 00:31:06 +0000
Files and hashes:         1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: XO2Isgp4ufkD8BB4f2tJX5ibZlyJHHAajEjZfreAIFE=)
                          2: 4FF7919CA3AE11F08498344CC4F9AE02.roa (hash: AWiL7Ku+LhuTzw8yYOes8DFZCiFrs+UOfXRiEC5RaE4=)
                          3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: JjwRM28UWpqUpm8V4jbamMbdEhJ8x26HdODuQra73JI=)
                          4: 1DE394187C2F11F0902A5A0CC4F9AE02.roa (hash: R8MAXcI9/yvxzT89z1WDBO8OZ5lHOE8A6WUOtaaft6k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl
                          rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 00:31:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1587 (0x633)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654
        Validity
            Not Before: Oct 19 00:31:06 2025 GMT
            Not After : Oct 26 00:31:06 2025 GMT
        Subject: CN=68f4314a-0461
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:fc:a9:73:7d:37:c4:86:32:37:30:d6:d2:72:
                    8e:a8:70:b5:65:23:b6:ca:26:5b:7f:68:51:b9:18:
                    51:ac:fc:f0:ea:41:9b:27:18:8a:49:d5:eb:fe:9c:
                    89:00:ef:21:a4:db:2f:c0:86:49:17:f8:f4:de:f1:
                    b0:88:f8:fa:56:ae:76:72:2a:0e:67:b2:1f:b6:30:
                    f8:d0:eb:26:3e:3b:11:38:7a:8e:6d:da:1d:4b:dd:
                    b2:65:a9:95:a0:10:e6:17:22:14:64:0c:44:15:13:
                    50:67:7f:01:32:6b:bd:34:ca:8b:07:50:a0:27:f9:
                    42:8f:43:45:67:e9:f5:dc:d8:b3:1d:e7:48:e0:f2:
                    62:db:82:dd:2b:87:35:93:ac:c5:43:c0:30:5d:0d:
                    01:93:7a:a0:1e:11:fb:b6:ed:76:0b:30:2d:5e:9e:
                    fc:24:71:7f:5a:17:48:0f:0f:d5:e6:6d:87:c1:85:
                    84:97:35:40:77:32:b3:69:62:5f:41:7a:d1:03:43:
                    73:88:20:33:99:a8:90:59:fa:45:9a:f9:ca:78:72:
                    81:cf:ee:b5:62:73:eb:9f:4e:48:fb:a2:eb:dc:4b:
                    41:a8:6c:e6:56:e3:45:b4:91:08:83:60:78:55:c2:
                    00:06:90:81:eb:7f:cc:7e:84:07:90:6f:82:da:58:
                    4d:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:0C:91:24:FA:57:3F:98:8C:E6:47:51:5A:80:A9:CA:42:04:CA:48
            X509v3 Authority Key Identifier:
                keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         be:1e:e8:03:13:44:40:21:09:d6:82:b3:59:19:e5:6d:5d:25:
         45:2a:d9:98:4c:d8:dc:e0:df:49:11:63:34:aa:34:f1:ca:8b:
         46:3b:db:3f:91:28:eb:f6:18:d8:81:b3:37:6e:ad:d5:1b:1b:
         f2:ab:d3:6e:ac:80:72:05:af:bc:66:ba:ea:e1:34:5a:31:f5:
         aa:d4:4d:19:3c:16:c9:7a:cc:42:73:23:f1:04:33:ed:47:3b:
         fa:fa:1c:88:f9:8c:43:3b:22:e4:0b:da:f3:24:a3:10:f1:02:
         ad:d2:04:27:e0:2f:27:8c:c1:e4:e7:26:41:03:07:a4:52:97:
         5e:58:f2:3f:f8:51:9d:ff:f1:f1:f9:33:5b:fb:95:37:44:dc:
         0c:d2:bd:8b:2c:be:31:89:3b:5e:6d:5e:28:fa:da:bd:7c:46:
         26:59:49:c0:fe:00:af:0e:b5:77:c1:18:eb:e7:d5:8f:75:f8:
         9a:85:18:13:f0:fb:b1:28:b5:8d:d7:06:49:6c:85:a9:09:2d:
         7e:bc:5e:29:7d:e8:35:0d:8d:6b:89:45:30:7b:21:27:18:7a:
         1d:48:6a:02:7e:2f:f6:23:05:42:b4:a2:04:67:8d:91:cb:17:
         91:0e:1d:b2:9c:72:26:7e:79:19:d1:8b:fb:31:e7:91:38:58:
         f6:0f:5e:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:55:19 2025 by rpki-client