Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/lNWHtudb8QivW0JJIsSouqs-6UY.mft
File:                     lNWHtudb8QivW0JJIsSouqs-6UY.mft (raw, json)
Hash identifier:          eggYEAsL/QZij4SjQVM3Bo3ejJwn2vOnEx/m5pRlQPE=
Subject key identifier:   26:88:28:68:B4:28:26:AA:8B:C1:31:8E:28:04:3F:1E:3A:D2:41:F0
Authority key identifier: 94:D5:87:B6:E7:5B:F1:08:AF:5B:42:49:22:C4:A8:BA:AB:3E:E9:46
Certificate issuer:       /CN=A919F0DA/serialNumber=94D587B6E75BF108AF5B424922C4A8BAAB3EE946
Certificate serial:       0830
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNWHtudb8QivW0JJIsSouqs-6UY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/lNWHtudb8QivW0JJIsSouqs-6UY.mft
Manifest number:          610D
Signing time:             Sat 18 Oct 2025 14:15:36 +0000
Manifest this update:     Sat 18 Oct 2025 14:15:35 +0000
Manifest next update:     Sat 25 Oct 2025 14:15:35 +0000
Files and hashes:         1: lNWHtudb8QivW0JJIsSouqs-6UY.crl (hash: kqTv8fdnZJaH7LCzO+ttBnLsug0nLVbGiE5t6smNAjs=)
                          2: 58273588C2BD11EBA13EC07AC4F9AE02.roa (hash: 5XIGAWBdKItIK52ECdH5hYRYWf2CTjmbyPBWgm/ArQs=)
                          3: 22EA7FCC21F111EC85C6186EC4F9AE02.roa (hash: TBXM5JKe9WQFg+eymDKm9rzq3YFGl2pFt087HO+fACs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/lNWHtudb8QivW0JJIsSouqs-6UY.crl
                          rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/lNWHtudb8QivW0JJIsSouqs-6UY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNWHtudb8QivW0JJIsSouqs-6UY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 14:15:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2096 (0x830)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919F0DA, serialNumber=94D587B6E75BF108AF5B424922C4A8BAAB3EE946
        Validity
            Not Before: Oct 18 14:15:35 2025 GMT
            Not After : Oct 25 14:15:35 2025 GMT
        Subject: CN=68f3a107-16d6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:9f:4e:9c:e4:94:c9:91:d6:65:be:bc:0b:ec:
                    b5:75:67:27:07:85:7a:32:f1:90:ce:a8:21:9b:29:
                    06:8c:6c:49:84:d9:09:78:e7:17:c9:af:f1:55:46:
                    21:09:80:5f:f6:b5:dc:21:20:c9:99:6d:eb:be:fa:
                    36:a5:34:cd:02:5c:c1:3d:63:c6:9d:10:e9:1c:a6:
                    1f:6b:f7:58:be:7e:a6:ea:63:07:2a:4a:c1:c3:92:
                    bc:78:29:34:56:d8:25:33:37:e4:6b:a8:f3:43:52:
                    13:04:67:58:53:f1:32:e0:43:36:c2:88:bd:69:ad:
                    94:26:05:c8:5c:61:32:69:ed:e8:73:e5:c4:65:38:
                    bd:ab:fd:9b:89:db:7f:74:9f:8b:a7:9d:20:88:fb:
                    9c:16:53:0e:42:37:d3:e7:34:2b:53:88:b1:7a:cd:
                    e5:7a:8d:e8:b5:24:6f:05:d0:0c:f9:92:aa:e7:66:
                    6c:e5:56:e4:0e:ce:41:40:0b:3f:9b:1b:3a:39:58:
                    c2:22:47:4f:e2:c2:03:24:a2:d3:1f:69:f5:ae:e3:
                    7f:bb:86:85:6d:82:32:3d:12:37:4c:6c:f0:f1:a2:
                    46:4c:79:0f:89:3f:e1:91:9b:2a:5f:c8:89:8b:e7:
                    53:2a:7e:67:90:47:f1:54:b2:db:57:95:89:6c:4a:
                    69:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:88:28:68:B4:28:26:AA:8B:C1:31:8E:28:04:3F:1E:3A:D2:41:F0
            X509v3 Authority Key Identifier:
                keyid:94:D5:87:B6:E7:5B:F1:08:AF:5B:42:49:22:C4:A8:BA:AB:3E:E9:46

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/lNWHtudb8QivW0JJIsSouqs-6UY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNWHtudb8QivW0JJIsSouqs-6UY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/lNWHtudb8QivW0JJIsSouqs-6UY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:12:1d:ef:f2:6d:2b:3f:25:fb:fe:10:a3:e7:db:47:91:84:
         52:08:75:f3:47:be:02:bc:5f:f5:88:e3:20:04:c8:64:02:67:
         11:e8:89:75:a1:ac:80:b5:24:f3:e2:39:53:21:0b:39:fc:84:
         5b:86:20:03:db:e8:a4:28:57:17:f5:4b:ca:40:d7:8e:54:64:
         f8:57:ee:99:92:ec:73:67:ab:36:5a:95:e9:c2:ed:d2:91:c9:
         9a:fe:16:f7:aa:cc:86:c4:c7:db:c0:ff:ed:dd:ca:e9:23:3a:
         94:43:1d:39:38:64:e2:1c:87:5f:d1:18:4c:8f:f5:fc:96:d8:
         d1:1b:72:be:e3:63:36:09:8e:6b:fa:a2:6e:fe:cf:7a:e1:21:
         e2:67:f7:cf:7f:25:86:a5:90:fa:3c:f4:25:d3:5d:6d:92:d6:
         dd:d9:ba:c2:fe:a3:37:d4:84:1f:5f:f8:29:47:6e:f9:7b:1e:
         10:2e:03:4c:c4:03:01:93:c8:9e:1f:f4:d7:7b:43:0d:e3:7f:
         f2:73:2e:56:c3:7c:93:70:9c:5b:ef:06:1d:e0:a1:92:89:49:
         db:c1:6a:39:d2:0f:95:6a:c7:88:f6:51:2a:22:05:35:9e:25:
         38:35:0c:40:8b:b0:f8:5e:05:f7:50:78:f8:9a:e7:36:5d:74:
         ef:e0:ea:49
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OUYwREExMTAvBgNVBAUTKDk0RDU4N0I2RTc1QkYxMDhBRjVCNDI0OTIyQzRBOEJB
QUIzRUU5NDYwHhcNMjUxMDE4MTQxNTM1WhcNMjUxMDI1MTQxNTM1WjAYMRYwFAYD
VQQDEw02OGYzYTEwNy0xNmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr59OnOSUyZHWZb68C+y1dWcnB4V6MvGQzqghmykGjGxJhNkJeOcXya/xVUYh
CYBf9rXcISDJmW3rvvo2pTTNAlzBPWPGnRDpHKYfa/dYvn6m6mMHKkrBw5K8eCk0
VtglMzfka6jzQ1ITBGdYU/Ey4EM2woi9aa2UJgXIXGEyae3oc+XEZTi9q/2bidt/
dJ+Lp50giPucFlMOQjfT5zQrU4ixes3leo3otSRvBdAM+ZKq52Zs5VbkDs5BQAs/
mxs6OVjCIkdP4sIDJKLTH2n1ruN/u4aFbYIyPRI3TGzw8aJGTHkPiT/hkZsqX8iJ
i+dTKn5nkEfxVLLbV5WJbEppkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaIKGi0
KCaqi8ExjigEPx460kHwMB8GA1UdIwQYMBaAFJTVh7bnW/EIr1tCSSLEqLqrPulG
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE
NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9sTldIdHVkYjhRaXZXMEpKSXNTb3Vxcy02
VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2xOV0h0dWRiOFFpdlcwSkpJc1NvdXFzLTZVWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9sTldIdHVkYjhR
aXZXMEpKSXNTb3Vxcy02VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBNEh3v8m0rPyX7/hCj59tHkYRSCHXzR74CvF/1iOMgBMhkAmcR6Il1
oayAtSTz4jlTIQs5/IRbhiAD2+ikKFcX9UvKQNeOVGT4V+6ZkuxzZ6s2WpXpwu3S
kcma/hb3qsyGxMfbwP/t3crpIzqUQx05OGTiHIdf0RhMj/X8ltjRG3K+42M2CY5r
+qJu/s964SHiZ/fPfyWGpZD6PPQl011tktbd2brC/qM31IQfX/gpR275ex4QLgNM
xAMBk8ieH/TXe0MN43/ycy5Ww3yTcJxb7wYd4KGSiUnbwWo50g+VaseI9lEqIgU1
niU4NQxAi7D4XgX3UHj4muc2XXTv4OpJ
-----END CERTIFICATE-----
Generated at Mon Oct 20 04:14:54 2025 by rpki-client