Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft
File:                     IIUPxwwl_bFV037LDsOWLGtH_K0.mft (raw, json)
Hash identifier:          juAQMPKBRTwjTAy5poxsC4ainF6OiMSJH7Umd+sHPVo=
Subject key identifier:   3B:3A:D8:46:38:55:07:91:E2:73:43:79:B9:8F:0E:42:BE:7E:C0:C4
Authority key identifier: 20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD
Certificate issuer:       /CN=A919D545/serialNumber=20850FC70C25FDB155D37ECB0EC3962C6B47FCAD
Certificate serial:       0786
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft
Manifest number:          077F
Signing time:             Sat 18 Oct 2025 22:52:20 +0000
Manifest this update:     Sat 18 Oct 2025 22:52:19 +0000
Manifest next update:     Sat 25 Oct 2025 22:52:19 +0000
Files and hashes:         1: IIUPxwwl_bFV037LDsOWLGtH_K0.crl (hash: IJou6GYKJVhsrFwe/RVan4OtHjw3qTsmNEs0rqCaHOY=)
                          2: 934C22582E1C11EBB3ADE232C4F9AE02.roa (hash: 1Nd3whCoQ3UeAyTbWO/1UHp1zlBom6OZhYQFPq70UDQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.crl
                          rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 22:52:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1926 (0x786)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919D545, serialNumber=20850FC70C25FDB155D37ECB0EC3962C6B47FCAD
        Validity
            Not Before: Oct 18 22:52:19 2025 GMT
            Not After : Oct 25 22:52:19 2025 GMT
        Subject: CN=68f41a23-7f66
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:bf:c0:2a:53:2e:0f:35:ab:92:48:32:71:cc:
                    b3:16:ad:74:e3:2a:42:db:f7:96:01:81:42:13:61:
                    b5:f3:ca:40:f4:9d:94:50:0c:3b:f1:e6:22:90:a5:
                    7c:7f:8b:35:5c:57:6b:a3:ce:0b:63:89:a2:97:ed:
                    59:ee:16:ad:6b:10:99:24:28:8e:46:23:54:9e:51:
                    df:5d:53:b9:92:f3:1e:d4:cd:8a:2d:44:f5:03:e9:
                    45:b8:4f:c2:15:f7:c9:d5:bf:51:fc:b9:5a:9b:d4:
                    40:fe:cd:e8:eb:d1:87:9d:d4:a9:9e:75:56:67:0d:
                    a8:f0:bd:5f:a7:bd:d2:75:d8:79:54:7e:a9:fe:fa:
                    39:e4:9b:10:be:f2:a6:e6:fc:52:29:fa:d8:19:67:
                    bd:35:d5:7e:cb:01:10:71:60:8f:95:d8:ea:f9:ab:
                    21:4e:11:39:7c:df:27:97:bd:0c:f8:f1:5e:cf:18:
                    cb:08:b9:fd:93:85:76:8a:b4:59:7c:7f:29:83:55:
                    6f:9b:fa:9a:1c:17:0a:37:73:9b:1d:c6:34:62:03:
                    82:e1:7b:97:6e:23:5c:fd:47:f8:4b:98:9b:5c:81:
                    58:4d:f1:98:3b:82:14:31:d0:d9:66:cc:e7:6f:cf:
                    e0:fc:43:09:f0:f6:5b:5d:4f:d4:5c:12:ce:02:22:
                    4b:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3B:3A:D8:46:38:55:07:91:E2:73:43:79:B9:8F:0E:42:BE:7E:C0:C4
            X509v3 Authority Key Identifier:
                keyid:20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:ce:fc:8c:3e:ce:aa:48:7e:38:fa:e2:07:f8:12:b4:ca:fb:
         75:56:1c:7a:97:af:72:5e:d4:57:ae:21:8b:d2:81:2c:5e:2f:
         27:93:d2:b0:40:ad:c3:fd:14:b8:90:ae:d7:5f:da:5c:76:58:
         e1:5c:9f:fd:42:97:1a:2f:46:e8:82:c9:ed:ad:35:d5:d8:fb:
         df:6c:e8:4c:26:01:c1:32:75:ea:2a:33:31:e9:89:4f:1e:a3:
         53:c5:9e:4b:54:7e:b3:38:0b:bb:98:09:61:3f:e9:b3:ca:c3:
         61:f6:81:49:85:59:80:19:d4:da:b4:8d:88:6c:ac:7d:52:d6:
         9a:9c:9f:93:45:60:12:1c:7a:48:40:a6:d3:e5:35:b6:9e:d0:
         5f:7a:45:51:c7:57:55:24:43:94:fe:d3:f4:4b:08:db:5d:0a:
         85:ce:ba:dd:56:63:74:fc:7a:b2:67:86:66:12:7a:c8:37:5d:
         6c:22:4d:ab:f2:5a:d4:f1:ff:a6:9a:3d:01:6b:78:78:f8:91:
         66:bb:ba:d8:a7:8d:ab:8f:c9:f5:36:8c:fd:e2:93:6d:d2:1c:
         37:60:1f:d3:50:bb:d7:29:19:ea:8e:93:a7:fa:7f:7d:a0:a2:
         ef:6a:3c:d9:7e:45:1b:9b:a5:da:c3:d7:84:cd:a6:ec:7f:a2:
         9e:8c:c8:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:44:21 2025 by rpki-client