Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft
File:                     D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft (raw, json)
Hash identifier:          QZGp7Nc+QvY8LQu6MMTMThOLbpPb6BO4tm6WY8WyuLc=
Subject key identifier:   6D:D5:9F:11:FC:F1:58:BA:F8:E0:4A:32:BB:16:D8:BE:69:AC:4B:E4
Authority key identifier: 0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86
Certificate issuer:       /CN=A918A05D/serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186
Certificate serial:       01C9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft
Manifest number:          01AE
Signing time:             Sun 19 Oct 2025 06:05:39 +0000
Manifest this update:     Sun 19 Oct 2025 06:05:39 +0000
Manifest next update:     Sun 26 Oct 2025 06:05:39 +0000
Files and hashes:         1: D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl (hash: 4TsgL+h4M0kWnLLts9G83m0fS3F81hbP70SE1Bq1zIw=)
                          2: 06856B04A5EA11F095618A7CC4F9AE02.roa (hash: TuFTA9EywCFfz3mauYPbCJRfabXsCP/+IjwcQJDFIS8=)
                          3: E506BE2CF03811EFAD4C2257C4F9AE02.roa (hash: iRxA1ggG5Gg6gMWZuZ8L1lPJN3fft+M4sC43triwT/s=)
                          4: A045C92CB46611EEAFEE8758C4F9AE02.roa (hash: tbP1wHLZXWdBy80smo7nwsfBeTkYD2DmwbznFImHmJs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl
                          rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 06:05:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 457 (0x1c9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918A05D, serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186
        Validity
            Not Before: Oct 19 06:05:39 2025 GMT
            Not After : Oct 26 06:05:39 2025 GMT
        Subject: CN=68f47fb3-18c1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:19:a7:17:27:0f:fe:9d:7c:f5:0c:03:67:a9:
                    cb:93:05:85:98:b7:c0:ae:57:5c:c9:71:30:75:ab:
                    f2:80:5f:13:1a:c1:f0:4b:b7:e5:dd:3d:1a:d8:a5:
                    46:74:ba:fb:b6:6e:be:ab:f0:73:de:78:d3:d0:88:
                    f6:c6:6f:4c:89:d1:26:34:d5:82:8f:9c:a5:5d:8b:
                    e4:e1:c5:47:86:25:1c:17:9c:d3:b6:26:4a:30:00:
                    ee:19:4c:c7:6f:5a:8b:d5:ba:03:89:67:5e:44:0e:
                    42:09:95:fb:5a:fb:24:dd:07:c9:8c:17:7b:13:30:
                    64:53:57:65:3a:3e:d7:c8:4a:c5:7c:3a:43:06:eb:
                    ad:f2:ac:d9:f7:a2:67:53:b6:a1:22:18:84:9d:f6:
                    6e:1b:8b:76:ec:da:7e:16:4c:9b:5e:99:eb:15:d5:
                    cb:f1:6c:42:a0:06:d7:0f:58:dd:d7:f3:f5:65:9f:
                    9c:cd:4f:9f:9b:f8:39:59:af:d7:3c:03:10:a4:1e:
                    07:da:9e:00:5e:e6:68:84:a5:8e:da:2c:68:65:c8:
                    f6:6e:5b:ca:20:1c:c2:a8:45:8a:7c:1f:38:d9:e7:
                    30:c8:f6:fe:ca:ae:e2:e9:34:c9:30:33:be:79:aa:
                    8b:88:e6:38:b5:f5:89:63:a7:8f:9f:8f:e8:99:67:
                    2c:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:D5:9F:11:FC:F1:58:BA:F8:E0:4A:32:BB:16:D8:BE:69:AC:4B:E4
            X509v3 Authority Key Identifier:
                keyid:0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:d1:54:90:bf:71:7e:16:2b:2a:47:cb:c8:9a:67:78:eb:cb:
         4f:c8:b1:c9:61:a5:d7:89:51:bc:cb:04:14:5c:be:87:43:2b:
         7a:c2:c9:45:c8:78:2f:01:0a:1c:d3:39:f1:89:e6:09:76:76:
         1d:92:e4:e3:02:e1:55:80:a0:8e:c9:86:a7:06:71:0c:c0:90:
         07:25:cc:8d:09:ec:88:0b:11:f2:29:e9:4a:75:8d:c6:02:59:
         e1:d7:68:81:d7:83:85:f1:39:78:96:15:46:67:df:30:ab:79:
         ba:80:a8:3f:1f:ff:a1:fe:5d:c1:c7:28:5e:30:db:17:49:f0:
         a9:7a:eb:77:e2:b4:6a:af:34:42:82:4c:aa:ce:b5:e0:75:4a:
         83:a7:5d:66:45:91:b1:45:7a:60:9c:3c:af:ca:95:54:f5:83:
         5a:f7:9b:79:cb:b9:05:c6:21:59:7f:3b:82:b2:d0:12:d1:d7:
         6e:5f:4a:ad:5c:3d:9f:76:ab:11:b4:93:f2:fc:d7:6c:70:54:
         07:ac:ab:46:8f:ca:fe:12:f9:02:c8:0c:65:ca:32:1c:28:90:
         66:21:fb:38:4f:ae:ce:31:90:67:7a:03:32:f3:09:fe:fc:65:
         07:67:01:a5:3b:f0:5c:46:e0:3a:c1:2d:5e:4f:16:54:9b:1b:
         b0:48:28:84
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEEwNUQxMTAvBgNVBAUTKDBGNTQ1RTYyNzNEN0M5N0U5OTk1NDExRjc2RDVDNEYw
MDZCQjUxODYwHhcNMjUxMDE5MDYwNTM5WhcNMjUxMDI2MDYwNTM5WjAYMRYwFAYD
VQQDEw02OGY0N2ZiMy0xOGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArRmnFycP/p189QwDZ6nLkwWFmLfArldcyXEwdavygF8TGsHwS7fl3T0a2KVG
dLr7tm6+q/Bz3njT0Ij2xm9MidEmNNWCj5ylXYvk4cVHhiUcF5zTtiZKMADuGUzH
b1qL1boDiWdeRA5CCZX7Wvsk3QfJjBd7EzBkU1dlOj7XyErFfDpDBuut8qzZ96Jn
U7ahIhiEnfZuG4t27Np+FkybXpnrFdXL8WxCoAbXD1jd1/P1ZZ+czU+fm/g5Wa/X
PAMQpB4H2p4AXuZohKWO2ixoZcj2blvKIBzCqEWKfB842ecwyPb+yq7i6TTJMDO+
eaqLiOY4tfWJY6ePn4/omWcsrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3VnxH8
8Vi6+OBKMrsW2L5prEvkMB8GA1UdIwQYMBaAFA9UXmJz18l+mZVBH3bVxPAGu1GG
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTA1RC9DMUVGQjA4MDRF
MjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlYNlpsVUVmZHRYRThBYTdV
WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0QxUmVZblBYeVg2WmxVRWZkdFhFOEFhN1VZWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
QTA1RC9DMUVGQjA4MDRFMjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlY
NlpsVUVmZHRYRThBYTdVWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQA90VSQv3F+FisqR8vImmd468tPyLHJYaXXiVG8ywQUXL6HQyt6wslF
yHgvAQoc0znxieYJdnYdkuTjAuFVgKCOyYanBnEMwJAHJcyNCeyICxHyKelKdY3G
Alnh12iB14OF8Tl4lhVGZ98wq3m6gKg/H/+h/l3BxyheMNsXSfCpeut34rRqrzRC
gkyqzrXgdUqDp11mRZGxRXpgnDyvypVU9YNa95t5y7kFxiFZfzuCstAS0dduX0qt
XD2fdqsRtJPy/NdscFQHrKtGj8r+EvkCyAxlyjIcKJBmIfs4T67OMZBnegMy8wn+
/GUHZwGlO/BcRuA6wS1eTxZUmxuwSCiE
-----END CERTIFICATE-----
Generated at Mon Oct 20 09:38:15 2025 by rpki-client