Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft
File:                     uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json)
Hash identifier:          y6Ip4n7bBX9ffofXrSkJwLqfa+hDBpdJbkHPfu3bHbU=
Subject key identifier:   E2:C8:8D:09:60:FE:3D:21:42:32:BF:FE:B0:B2:27:C1:18:35:95:93
Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8
Certificate issuer:       /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8
Certificate serial:       0459
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft
Manifest number:          0454
Signing time:             Sun 19 Oct 2025 02:04:57 +0000
Manifest this update:     Sun 19 Oct 2025 02:04:56 +0000
Manifest next update:     Sun 26 Oct 2025 02:04:56 +0000
Files and hashes:         1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: MS0TiohpNp+uf+9Sm6rBlrkrIDm8DuoSSy0p9IOdZls=)
                          2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: Tec1GQXrCvVOwblaXBeRPQBIHEsrifUiDT/fZJx0nLQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl
                          rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 02:04:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1113 (0x459)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8
        Validity
            Not Before: Oct 19 02:04:56 2025 GMT
            Not After : Oct 26 02:04:56 2025 GMT
        Subject: CN=68f44748-3840
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:67:2b:70:61:93:d7:0c:95:e9:76:da:24:ff:
                    61:5e:7c:c5:22:7a:67:74:6a:cf:26:a4:78:97:dc:
                    21:7d:98:4a:c0:eb:d0:80:ce:2e:c3:73:0c:59:aa:
                    8e:f4:c0:08:13:79:ee:bf:0c:aa:a2:71:9a:9d:76:
                    a0:ff:f4:a7:d6:9f:78:61:e5:46:66:3b:a2:38:d3:
                    63:7e:35:14:62:bf:a8:5f:67:a7:ba:e4:aa:be:01:
                    af:db:66:db:6f:e4:6f:13:5f:8f:28:4d:73:e2:da:
                    2c:04:20:c4:e6:ae:a8:80:9f:96:e0:a2:1f:28:52:
                    04:6e:23:f4:76:6c:c0:23:37:de:8d:ff:bf:1b:cc:
                    5f:8d:c9:ad:d9:56:e2:a0:a1:61:0d:1f:b5:38:7e:
                    df:cc:60:24:ab:dd:bc:dc:17:f9:04:5d:e7:10:8e:
                    5b:3b:c3:7c:3b:36:6e:49:83:dd:93:30:ad:ca:89:
                    7d:a5:8c:12:8e:a8:d2:d2:a2:d1:fc:0c:94:b9:fe:
                    4c:03:e3:5e:c1:3f:c0:30:63:83:b5:bf:04:6c:5a:
                    92:b8:c9:d2:23:f1:e7:e2:05:16:fa:c3:f1:c8:8e:
                    bf:36:36:0e:16:e5:ea:45:73:8a:14:95:4e:ad:18:
                    c2:df:80:87:c9:0f:2a:a4:95:d6:ca:c5:79:c8:ee:
                    52:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:C8:8D:09:60:FE:3D:21:42:32:BF:FE:B0:B2:27:C1:18:35:95:93
            X509v3 Authority Key Identifier:
                keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         aa:08:92:85:82:15:94:a0:e2:ac:23:9c:24:cd:30:f5:54:21:
         87:0b:94:c3:10:b2:e4:5b:86:3d:f7:75:fc:2d:9a:c5:39:1b:
         24:81:b0:c1:5e:f0:22:4f:3b:dd:56:60:9c:bc:41:49:9c:d4:
         70:c8:86:64:f4:b7:95:2a:b7:c9:da:b9:ab:8b:10:b3:d2:4c:
         4b:13:f3:98:ab:57:46:67:01:38:c9:3c:97:d7:b3:31:e8:d6:
         fd:dd:99:63:d4:22:24:a9:c7:39:29:93:7f:d0:36:ce:52:35:
         16:83:53:90:1c:73:1f:39:73:26:94:2a:b4:15:1c:87:70:b0:
         be:66:1b:ce:a2:f1:c9:ab:12:62:41:3b:d2:f5:b8:66:eb:e0:
         97:8f:04:90:64:35:3d:da:98:ad:4e:2d:16:7f:bf:06:79:11:
         d9:56:63:4b:5b:b0:50:ca:92:aa:6d:41:1a:a7:24:e0:5f:b8:
         f0:8a:2d:11:85:aa:9f:7d:32:26:01:31:9e:c8:69:9d:16:a6:
         d1:17:9d:13:29:5e:5c:a2:8e:23:64:4e:8d:7e:df:d8:43:78:
         aa:9a:b0:18:e0:45:15:93:2d:6a:9d:62:7e:0f:e6:3c:ac:c7:
         1f:26:9c:63:76:1b:1b:fc:b6:fa:3e:47:db:1c:79:f6:73:ca:
         82:76:e5:d6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF
QjQ0RkQ1RTgwHhcNMjUxMDE5MDIwNDU2WhcNMjUxMDI2MDIwNDU2WjAYMRYwFAYD
VQQDEw02OGY0NDc0OC0zODQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzmcrcGGT1wyV6XbaJP9hXnzFInpndGrPJqR4l9whfZhKwOvQgM4uw3MMWaqO
9MAIE3nuvwyqonGanXag//Sn1p94YeVGZjuiONNjfjUUYr+oX2enuuSqvgGv22bb
b+RvE1+PKE1z4tosBCDE5q6ogJ+W4KIfKFIEbiP0dmzAIzfejf+/G8xfjcmt2Vbi
oKFhDR+1OH7fzGAkq9283Bf5BF3nEI5bO8N8OzZuSYPdkzCtyol9pYwSjqjS0qLR
/AyUuf5MA+NewT/AMGODtb8EbFqSuMnSI/Hn4gUW+sPxyI6/NjYOFuXqRXOKFJVO
rRjC34CHyQ8qpJXWysV5yO5S6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLIjQlg
/j0hQjK//rCyJ8EYNZWTMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF
QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx
ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr
ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCqCJKFghWUoOKsI5wkzTD1VCGHC5TDELLkW4Y993X8LZrFORskgbDB
XvAiTzvdVmCcvEFJnNRwyIZk9LeVKrfJ2rmrixCz0kxLE/OYq1dGZwE4yTyX17Mx
6Nb93Zlj1CIkqcc5KZN/0DbOUjUWg1OQHHMfOXMmlCq0FRyHcLC+ZhvOovHJqxJi
QTvS9bhm6+CXjwSQZDU92pitTi0Wf78GeRHZVmNLW7BQypKqbUEapyTgX7jwii0R
haqffTImATGeyGmdFqbRF50TKV5coo4jZE6Nft/YQ3iqmrAY4EUVky1qnWJ+D+Y8
rMcfJpxjdhsb/Lb6PkfbHHn2c8qCduXW
-----END CERTIFICATE-----
Generated at Mon Oct 20 18:27:01 2025 by rpki-client