Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft
File:                     QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft (raw, json)
Hash identifier:          lhVe4fBk2dnuRfHzhmQk3enVRt7EW8XFZX+iwr7/zP8=
Subject key identifier:   D2:11:C8:53:77:75:C4:D8:4F:BA:28:4B:E4:FB:38:16:0A:73:33:2F
Authority key identifier: 40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67
Certificate issuer:       /CN=A918C31C/serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967
Certificate serial:       B2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft
Manifest number:          AF
Signing time:             Sun 19 Oct 2025 09:20:19 +0000
Manifest this update:     Sun 19 Oct 2025 09:20:18 +0000
Manifest next update:     Sun 26 Oct 2025 09:20:18 +0000
Files and hashes:         1: QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl (hash: OqZNOs2nuctGqjKokZitU5Xvl34RQl58RaBvZ1YrC7I=)
                          2: 7C616486A6EF11EF9EB0B473C4F9AE02.roa (hash: j5rVzYxmjqZEY8FEsWt1qRbBmnhP9Qi2T1I55K8uP3k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl
                          rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 09:20:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 178 (0xb2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918C31C, serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967
        Validity
            Not Before: Oct 19 09:20:18 2025 GMT
            Not After : Oct 26 09:20:18 2025 GMT
        Subject: CN=68f4ad52-abd0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:65:f0:12:f9:bd:27:ec:4b:a4:30:b3:4a:21:
                    23:4e:c6:b7:db:87:00:63:42:c6:9f:17:6f:ef:62:
                    81:17:0a:b6:c5:82:54:3f:78:0e:9b:75:6b:ae:64:
                    63:46:f8:4b:8b:09:63:f6:dc:5d:9f:3c:66:d4:cc:
                    dd:1a:a6:cf:f3:1a:4f:b1:49:ff:30:8b:bf:c9:55:
                    df:6a:f6:b2:00:8e:17:b6:a2:1b:21:03:81:6a:0a:
                    2d:d7:27:7b:a5:c4:96:a6:cd:0c:82:00:31:64:15:
                    54:22:ab:ef:63:81:35:8d:0a:08:c6:63:98:0a:22:
                    31:28:0d:e4:32:08:0a:e3:e0:c2:38:2e:52:20:db:
                    14:26:f3:98:79:a4:4e:2e:02:1a:c8:45:bf:57:ab:
                    66:b7:a0:7b:47:e5:fd:ab:4c:2e:19:56:0a:00:fc:
                    56:97:04:55:b9:12:7f:f1:68:dc:ff:01:7c:2b:6c:
                    5e:ac:91:a5:30:14:47:12:f6:9c:53:50:66:75:92:
                    ac:84:8d:d1:b8:9e:ce:c6:15:ee:b1:85:39:0f:5c:
                    2f:9f:f2:e7:70:08:e7:87:33:2e:9c:8e:97:39:10:
                    e9:6a:c2:37:36:bf:16:f3:9a:37:0f:b5:10:b8:da:
                    55:0f:b1:69:10:ab:17:ea:8b:e4:d6:2e:cd:dc:cf:
                    19:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D2:11:C8:53:77:75:C4:D8:4F:BA:28:4B:E4:FB:38:16:0A:73:33:2F
            X509v3 Authority Key Identifier:
                keyid:40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:7c:e9:bb:e7:44:38:df:6e:74:24:85:56:21:f7:54:f1:09:
         ee:d6:f5:46:f5:83:b5:56:fd:7b:c7:9b:33:a7:09:bf:92:8d:
         3a:3b:94:83:21:25:7a:04:1a:d4:c5:5f:a9:4a:ef:b9:0b:d5:
         46:61:0c:08:6b:e9:d3:9c:67:d5:15:78:fe:3f:a6:0c:b4:e5:
         6f:b5:72:7f:73:1e:fb:e2:2b:98:af:37:30:19:90:86:d6:af:
         62:71:d4:ef:e0:7e:bd:e3:44:a4:dc:39:a5:38:57:37:e3:16:
         7f:37:c8:e0:09:14:b1:fe:b2:8a:20:a3:a2:a4:a7:49:77:9d:
         d9:3e:c8:51:19:c4:46:ff:7d:2b:20:02:62:e4:7f:80:85:99:
         7e:b1:ed:56:ea:d8:fd:0c:64:0a:82:15:79:03:f8:2d:60:c5:
         4c:1b:91:94:08:97:64:4c:bb:0d:d9:57:aa:bb:35:cc:dc:75:
         36:12:b9:5a:00:00:4d:e7:be:83:cb:0a:50:12:d6:53:98:9a:
         5f:27:66:c5:ec:8b:a1:09:3c:85:b3:e9:13:e5:65:9d:f5:de:
         74:48:d5:e5:66:cf:56:ad:2e:40:82:d6:d3:c0:86:78:eb:f7:
         d2:f6:eb:b7:04:33:26:ee:b2:42:07:29:cf:35:89:91:a5:5b:
         98:d0:a5:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:43:09 2025 by rpki-client