Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft
File:                     XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft (raw, json)
Hash identifier:          iv5/WCwjCl4Ahxgvxb+DZ6uO3Jh6Re1XzCq5BK1F9/s=
Subject key identifier:   CA:8C:86:BA:D9:39:39:52:53:0F:5D:85:23:46:B8:03:BC:51:EB:77
Authority key identifier: 5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4
Certificate issuer:       /CN=A91923A9/serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4
Certificate serial:       01CA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft
Manifest number:          01C5
Signing time:             Sun 19 Oct 2025 05:25:42 +0000
Manifest this update:     Sun 19 Oct 2025 05:25:42 +0000
Manifest next update:     Sun 26 Oct 2025 05:25:42 +0000
Files and hashes:         1: XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl (hash: rF2sVdeBEjEOZQKpGn1D2W3+hnrMljuKBiegbt0JkoU=)
                          2: 80F75824FAAD11EDB0C98683C4F9AE02.roa (hash: SO9SbWUjXyJ9Yb5w7Q+6mTlLwT6ktJsJ2PGUdf4nf50=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl
                          rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 05:25:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 458 (0x1ca)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91923A9, serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4
        Validity
            Not Before: Oct 19 05:25:42 2025 GMT
            Not After : Oct 26 05:25:42 2025 GMT
        Subject: CN=68f47656-b18a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:75:7a:92:7e:42:f7:ef:3b:59:12:c1:ba:b6:
                    6b:e2:93:f6:52:f0:2b:82:ff:09:71:8f:f9:e1:78:
                    c3:ef:82:f3:14:5c:d5:07:0a:86:35:1d:a9:15:9c:
                    a7:b3:45:ec:96:83:de:9e:39:41:5a:2f:81:58:96:
                    4f:3f:54:83:47:cc:3e:14:67:8e:a1:4c:60:df:81:
                    23:7a:bc:05:bc:bb:d7:3b:d4:57:f8:69:36:a6:9c:
                    b2:ff:f0:b3:71:8b:57:da:c7:16:9f:4d:9f:79:fc:
                    d7:a6:dd:85:e0:a9:9b:c8:da:d7:ba:ac:00:ca:de:
                    2d:8f:fd:23:04:77:0c:d9:ce:f4:43:63:db:bb:10:
                    99:1b:0e:23:a7:a2:9a:52:0c:3a:93:0f:fe:2c:98:
                    28:8e:1f:62:16:9b:20:7e:c6:4d:6e:a3:4c:55:c9:
                    c6:6c:b5:ec:5c:88:40:c2:a1:d0:41:13:95:89:52:
                    be:32:16:f4:f0:98:81:95:0a:04:d3:1f:d0:c6:be:
                    67:26:55:3d:de:17:44:bd:a4:d4:88:97:c2:ae:58:
                    60:38:6b:47:ea:95:4d:ab:9e:98:39:9a:d5:4f:2c:
                    e8:41:4b:84:07:e9:bb:23:b6:8d:83:a4:5f:de:15:
                    11:a3:cd:d6:d5:f9:e4:83:49:6b:c4:b0:2f:93:1f:
                    34:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CA:8C:86:BA:D9:39:39:52:53:0F:5D:85:23:46:B8:03:BC:51:EB:77
            X509v3 Authority Key Identifier:
                keyid:5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ad:56:5a:9c:09:d4:d0:ec:d2:70:0a:6f:b4:0b:28:04:2d:20:
         89:41:30:37:6f:5d:0a:bb:d6:6a:88:8f:70:0c:ce:bf:5d:4d:
         5f:4b:fd:cf:e4:c0:4e:a4:cb:e0:ee:ae:2e:84:6e:b7:74:b4:
         79:c0:e3:ff:bf:75:ca:b7:4e:ce:11:81:51:ee:eb:a4:61:54:
         42:1d:22:11:a7:19:66:33:39:6c:23:76:9b:44:a2:fe:c2:63:
         28:80:f3:0d:94:81:7d:1d:7a:96:7d:e8:b1:3b:4a:96:47:2d:
         b5:c7:2d:66:ab:85:45:8f:a1:91:cf:b7:ad:b0:5a:e6:dd:e2:
         7b:7e:de:22:fc:2f:e6:63:85:82:f4:0f:ce:28:ff:ae:98:e5:
         b7:4b:bd:82:27:7f:8a:34:e8:cd:77:b5:41:00:fe:c4:94:31:
         6f:bc:07:05:ab:f2:b5:f5:d0:32:32:5c:23:28:c1:6d:c5:af:
         20:3b:f7:da:8c:a7:d7:e4:e0:a8:c9:14:bf:d3:b8:59:d9:4b:
         2c:ca:ef:5d:8e:fc:01:f9:8f:42:87:9d:59:20:da:57:4a:8b:
         00:5e:1c:f0:63:12:27:88:a5:00:03:b7:af:32:86:5e:8b:31:
         cb:29:f5:af:c3:23:fb:a4:a3:51:ca:9b:ec:a0:e7:b0:b3:e8:
         5d:8d:05:08
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTIzQTkxMTAvBgNVBAUTKDVDMTdBRjJFMEFBRjQ5MENFQUE4NEUyQUFBNzE0ODNE
MDM5NUYxRTQwHhcNMjUxMDE5MDUyNTQyWhcNMjUxMDI2MDUyNTQyWjAYMRYwFAYD
VQQDEw02OGY0NzY1Ni1iMThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6nV6kn5C9+87WRLBurZr4pP2UvArgv8JcY/54XjD74LzFFzVBwqGNR2pFZyn
s0XsloPenjlBWi+BWJZPP1SDR8w+FGeOoUxg34EjerwFvLvXO9RX+Gk2ppyy//Cz
cYtX2scWn02fefzXpt2F4KmbyNrXuqwAyt4tj/0jBHcM2c70Q2PbuxCZGw4jp6Ka
Ugw6kw/+LJgojh9iFpsgfsZNbqNMVcnGbLXsXIhAwqHQQROViVK+Mhb08JiBlQoE
0x/Qxr5nJlU93hdEvaTUiJfCrlhgOGtH6pVNq56YOZrVTyzoQUuEB+m7I7aNg6Rf
3hURo83W1fnkg0lrxLAvkx80LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqMhrrZ
OTlSUw9dhSNGuAO8Uet3MB8GA1UdIwQYMBaAFFwXry4Kr0kM6qhOKqpxSD0DlfHk
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjNBOS9BNjM4NzY4NEZB
QTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNRenFxRTRxcW5GSVBRT1Y4
ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1hCZXZMZ3F2U1F6cXFFNHFxbkZJUFFPVjhlUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
MjNBOS9BNjM4NzY4NEZBQTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNR
enFxRTRxcW5GSVBRT1Y4ZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCtVlqcCdTQ7NJwCm+0CygELSCJQTA3b10Ku9ZqiI9wDM6/XU1fS/3P
5MBOpMvg7q4uhG63dLR5wOP/v3XKt07OEYFR7uukYVRCHSIRpxlmMzlsI3abRKL+
wmMogPMNlIF9HXqWfeixO0qWRy21xy1mq4VFj6GRz7etsFrm3eJ7ft4i/C/mY4WC
9A/OKP+umOW3S72CJ3+KNOjNd7VBAP7ElDFvvAcFq/K19dAyMlwjKMFtxa8gO/fa
jKfX5OCoyRS/07hZ2Ussyu9djvwB+Y9Ch51ZINpXSosAXhzwYxIniKUAA7evMoZe
izHLKfWvwyP7pKNRypvsoOews+hdjQUI
-----END CERTIFICATE-----
Generated at Mon Oct 20 16:32:43 2025 by rpki-client