Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft
File:                     KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json)
Hash identifier:          v7YjVbm37eqX5BlpZkNewqbpPAXgeJln36vqillzZuw=
Subject key identifier:   DB:A4:D6:6F:BF:97:AF:C8:72:0C:E8:27:AF:18:17:C3:25:5C:3E:43
Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92
Certificate issuer:       /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492
Certificate serial:       6D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft
Manifest number:          6C
Signing time:             Sun 19 Oct 2025 10:18:23 +0000
Manifest this update:     Sun 19 Oct 2025 10:18:22 +0000
Manifest next update:     Sun 26 Oct 2025 10:18:22 +0000
Files and hashes:         1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: A4mWkcPOXle/859sRmzRWQOtastkzxoti1g7c6Y7mYQ=)
                          2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl
                          rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 10:18:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 109 (0x6d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492
        Validity
            Not Before: Oct 19 10:18:22 2025 GMT
            Not After : Oct 26 10:18:22 2025 GMT
        Subject: CN=68f4baef-00ef
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:13:92:5d:70:88:21:78:d5:5d:ea:71:63:35:
                    02:f6:6b:c2:fd:08:92:2b:d6:41:5e:61:42:0c:3c:
                    2f:89:f7:13:80:63:ce:17:1b:be:33:16:c1:df:56:
                    87:a2:a9:2c:c1:ad:76:a2:5b:32:08:09:7c:a7:9e:
                    74:e8:e7:d2:89:cf:5c:8b:f1:1c:a1:c7:5d:66:55:
                    2b:ce:63:54:18:18:00:dd:8f:39:58:36:84:b1:42:
                    bd:c1:a0:7b:3d:62:49:39:14:6e:1a:47:5b:3d:c2:
                    7d:2b:69:72:42:07:1e:de:43:53:b9:d1:f9:ff:bd:
                    48:4e:c1:82:67:ab:84:85:30:a4:ed:68:06:81:61:
                    71:8e:c5:11:d8:f9:d6:22:ed:21:ed:39:8c:01:58:
                    96:2b:fc:dd:46:55:de:96:be:13:d1:53:e3:c9:62:
                    e0:48:03:59:88:9c:45:1c:f2:18:8b:92:68:a0:1d:
                    74:59:80:60:ac:47:ca:76:fb:cc:cc:d5:90:44:2d:
                    73:65:af:6f:5d:c8:43:ee:18:24:8e:8a:00:8d:b7:
                    08:ab:17:b4:76:55:b1:5e:65:f7:6c:a4:e3:f9:da:
                    84:39:85:5b:1c:0b:ad:87:8e:65:8a:c1:cd:7c:d8:
                    bf:a7:56:f3:87:42:c2:09:32:1e:5b:4d:8e:76:71:
                    9f:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:A4:D6:6F:BF:97:AF:C8:72:0C:E8:27:AF:18:17:C3:25:5C:3E:43
            X509v3 Authority Key Identifier:
                keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:f6:93:eb:4e:11:08:97:81:12:d2:b5:32:fe:d6:17:fc:33:
         d9:b3:95:72:0b:8c:5e:53:05:b3:cf:98:63:c9:7a:95:5d:0f:
         cd:c6:22:4c:fd:28:45:4f:49:b9:2b:b4:f4:d5:fd:d3:38:f7:
         b1:df:ba:84:dd:c1:1e:aa:72:b6:54:9b:ff:21:62:78:f0:4d:
         45:19:f6:4c:17:ff:cd:63:f7:c2:31:90:71:6b:03:eb:24:5b:
         3a:da:5a:5f:c5:64:91:ec:1e:d3:4f:55:00:79:3f:e8:12:0e:
         da:2d:8c:b6:7d:c4:9d:c7:23:1a:d5:e6:b4:b2:c9:47:35:b5:
         92:48:1c:ab:b9:8c:1e:2e:d4:d0:5b:d7:07:5e:55:41:05:ff:
         c5:b0:9b:fd:32:dd:13:0f:e5:f2:8c:ea:87:8b:68:c3:75:fa:
         92:1a:d2:80:9a:23:9b:85:43:64:63:73:e2:fa:a1:80:94:f0:
         69:fa:49:ec:68:4b:1a:e5:3f:67:8b:69:14:5c:00:9d:b2:5a:
         96:db:94:0e:a3:2e:ce:80:29:95:8d:2d:f9:b3:21:b0:d1:c8:
         e7:fe:fe:d5:20:33:db:ed:a7:51:fb:ea:88:e6:05:b9:7d:66:
         61:d6:91:2a:c0:ca:73:47:15:55:b1:b5:ec:02:e0:1c:7b:16:
         47:26:79:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:45:32 2025 by rpki-client