Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.mft
File:                     BiJAzedW2VtXd-JnqnsGVPg09JM.mft (raw, json)
Hash identifier:          7dDP4RlraZrclal3NSToNrTIcLZ0Ybqp9akyfsxvC6Q=
Subject key identifier:   35:8F:A4:D6:45:B9:2C:93:79:1D:4C:16:6B:A4:B0:8F:6D:E5:9C:FE
Authority key identifier: 06:22:40:CD:E7:56:D9:5B:57:77:E2:67:AA:7B:06:54:F8:34:F4:93
Certificate issuer:       /CN=A919DCE3/serialNumber=062240CDE756D95B5777E267AA7B0654F834F493
Certificate serial:       068B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BiJAzedW2VtXd-JnqnsGVPg09JM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.mft
Manifest number:          0686
Signing time:             Sat 18 Oct 2025 23:55:10 +0000
Manifest this update:     Sat 18 Oct 2025 23:55:09 +0000
Manifest next update:     Sat 25 Oct 2025 23:55:09 +0000
Files and hashes:         1: BiJAzedW2VtXd-JnqnsGVPg09JM.crl (hash: IbKuRwX1KkFZU7YXPglUc3l8kk1WXRoEk86Zrx6q59U=)
                          2: E9610376903B11EBB91C8B5DC4F9AE02.roa (hash: 8EJ9t0dHzPuImjiYAPoyaHv+e1oWlijq5dSgwTFlJ+I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.crl
                          rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BiJAzedW2VtXd-JnqnsGVPg09JM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 23:55:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1675 (0x68b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919DCE3, serialNumber=062240CDE756D95B5777E267AA7B0654F834F493
        Validity
            Not Before: Oct 18 23:55:09 2025 GMT
            Not After : Oct 25 23:55:09 2025 GMT
        Subject: CN=68f428dd-ac5e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:cc:f1:c9:cc:db:ce:e8:4b:55:31:8b:fa:f8:
                    99:0e:b1:8e:06:16:bb:40:f2:62:b3:ac:d9:65:22:
                    bb:d6:c2:d9:6d:b5:9d:b2:ab:29:01:ca:14:00:33:
                    62:02:fb:88:51:04:a8:46:0f:e9:b5:6a:30:6c:cb:
                    71:93:6c:cb:17:ae:0b:2b:03:d9:d0:bc:c4:7c:89:
                    f5:c8:06:90:a8:96:39:8f:a0:ca:a6:0d:8b:ff:cf:
                    8e:6a:d1:ab:df:b9:25:90:da:1e:a5:3c:5e:81:c8:
                    33:b1:4a:39:a2:f9:a5:5e:84:53:79:1d:a4:de:9a:
                    50:00:b2:81:eb:35:05:9b:b8:e6:6f:a9:1e:d7:fb:
                    56:c0:8c:50:14:17:70:a0:ff:91:22:70:b8:bd:64:
                    a6:7e:e1:9d:2f:3a:3f:7f:f9:29:ec:59:b9:0b:8d:
                    ae:0d:e8:aa:26:5f:04:8e:4c:77:12:5d:bc:6d:ab:
                    42:4b:78:b2:6f:ba:25:18:92:15:1a:c0:f4:de:af:
                    4d:36:99:6c:eb:70:cb:7e:d5:d4:eb:7f:4b:5f:31:
                    31:f8:8b:5f:c4:f2:a4:23:5a:18:72:6d:a7:8e:c6:
                    13:5b:dd:b1:91:a0:89:ff:e5:3d:a5:9f:55:1e:ce:
                    e9:62:8e:db:a3:98:b6:52:82:1c:31:80:26:28:18:
                    47:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                35:8F:A4:D6:45:B9:2C:93:79:1D:4C:16:6B:A4:B0:8F:6D:E5:9C:FE
            X509v3 Authority Key Identifier:
                keyid:06:22:40:CD:E7:56:D9:5B:57:77:E2:67:AA:7B:06:54:F8:34:F4:93

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BiJAzedW2VtXd-JnqnsGVPg09JM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:06:ed:81:ae:03:b2:93:de:d3:64:7a:85:b0:3c:02:84:c0:
         ad:36:3e:0e:21:31:96:9f:54:bf:a4:bf:ea:b2:11:2d:d3:92:
         52:07:73:3f:34:28:32:fa:69:a2:1b:08:31:b4:f7:73:9e:0e:
         04:f0:59:f9:df:98:89:23:ef:90:3d:e9:0e:bb:d5:ee:23:aa:
         9e:3d:b2:dc:f0:db:a5:0b:4f:a2:4d:86:9d:16:cd:46:0f:01:
         e0:30:4e:e7:cb:85:45:78:ff:79:fa:e3:fd:a2:b9:24:24:c9:
         1e:9a:90:d1:c5:ef:a0:c7:2c:12:e0:11:9e:7b:e1:9f:ec:6a:
         42:92:97:39:75:57:ba:16:02:68:a9:1b:fa:00:8a:d0:fa:89:
         97:4d:6d:88:8e:16:2c:1d:a0:f9:cc:3a:4c:87:df:32:93:65:
         c0:5b:48:ef:6a:50:a5:d4:29:24:7a:b6:48:0c:dd:86:4f:1f:
         a8:9b:8a:a6:53:87:ae:27:1c:28:ac:df:c6:50:4c:39:fd:19:
         e4:52:48:98:32:54:b5:f6:bc:5d:a2:e3:95:12:15:f3:9b:11:
         77:4b:ed:5a:60:eb:3e:be:c1:69:bf:34:7e:95:ae:42:09:52:
         59:77:d3:91:5c:a4:02:c4:98:b4:61:08:27:23:66:93:d9:4a:
         69:19:22:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:15:07 2025 by rpki-client