Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft
File:                     awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft (raw, json)
Hash identifier:          22y2lYMgi5u1hrvP6ubozwZqKEagWmcB7J2Ufan2/ck=
Subject key identifier:   8F:DA:57:BC:B8:F0:91:91:01:12:B0:85:2D:6D:08:7D:8F:C7:B5:D1
Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9
Certificate issuer:       /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9
Certificate serial:       0C89
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft
Manifest number:          0C62
Signing time:             Sat 18 Oct 2025 19:23:00 +0000
Manifest this update:     Sat 18 Oct 2025 19:22:59 +0000
Manifest next update:     Sat 25 Oct 2025 19:22:59 +0000
Files and hashes:         1: awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl (hash: 1l1HdSsPKnE8dzoOyIOBp/2LEzpYHQX7Ham7kM+ElIE=)
                          2: 1ECA8050696211EC8A05D115C4F9AE02.roa (hash: bKIVbhRs5w35IIfwUaxKPcUoIg+dZW+Orr/jkzvA1ls=)
                          3: 7A0359125C0E11ECA36CBF0FC4F9AE02.roa (hash: o9KgCgIfk9qmZZ9pgzWFPU4WMxKkFhiZ4bjzLNQ6ffs=)
                          4: DF1E2FEA97D611EB8BEF8223C4F9AE02.roa (hash: ltU83qHdHMX+gE2JiPsnwwizXD7fI0umImKJHXZ+qiY=)
                          5: 884C5FB8E60411EFBF5A7957C4F9AE02.roa (hash: X2T86WPoFoEyZcogT1ndr7RJyh96AHdCumJauzM/7xw=)
                          6: 84CFF0D6D2F311EEAFCF3273C4F9AE02.roa (hash: 3CkpfzzdlD3cY7gMPcsoVBDo+GHLrm85uXTpFP0fJ9Q=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl
                          rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 19:22:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3209 (0xc89)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A45E0, serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9
        Validity
            Not Before: Oct 18 19:22:59 2025 GMT
            Not After : Oct 25 19:22:59 2025 GMT
        Subject: CN=68f3e914-b123
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:82:eb:0c:b0:d9:86:8d:59:97:e7:15:d0:1a:
                    74:15:3c:58:2b:fb:99:8d:2b:fa:38:6c:df:21:61:
                    98:a6:34:c5:96:da:e6:22:ac:d2:b5:80:08:0c:cb:
                    8d:4a:33:c7:06:6f:69:f8:b0:9e:af:8a:c1:aa:cf:
                    29:9d:5a:9b:c5:00:2e:b7:b6:57:13:4f:d6:65:b7:
                    08:97:bd:cd:56:69:0f:68:b4:39:7b:e4:af:41:74:
                    60:0f:bf:d3:d1:c6:df:ac:79:7e:79:d7:43:67:0c:
                    75:04:af:19:4d:05:e7:d1:2a:e4:85:84:59:52:b1:
                    c3:0a:b6:90:93:10:b3:b9:a6:1b:64:3f:8d:be:43:
                    12:3d:8b:8f:57:77:91:d5:22:8e:9a:73:ce:cc:6c:
                    94:2e:c8:3a:09:5d:1f:ed:fe:e7:7d:ea:6b:1c:31:
                    32:19:5c:05:65:76:e0:3e:63:a6:aa:2c:ff:c3:b0:
                    78:fe:b6:3b:34:22:e8:bd:4f:50:6f:d6:f9:0f:84:
                    cd:19:31:9e:e5:c1:99:1f:44:31:ea:43:c4:cc:72:
                    08:cf:21:17:43:c6:65:5c:bc:2e:03:a7:4f:af:49:
                    f3:d6:79:01:53:5b:a8:f8:45:57:b5:fe:6d:7e:fb:
                    05:b0:63:10:d3:a2:f2:34:e7:21:27:f0:86:f5:ed:
                    89:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:DA:57:BC:B8:F0:91:91:01:12:B0:85:2D:6D:08:7D:8F:C7:B5:D1
            X509v3 Authority Key Identifier:
                keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:7e:fc:53:1c:1e:17:b0:f0:97:2b:c5:10:ff:c9:61:0d:2a:
         b9:df:d3:34:a2:d7:dd:a3:96:40:6f:4f:f5:92:6e:09:29:b5:
         38:bc:33:94:8c:a3:9d:59:0d:d3:3e:7f:04:a1:57:b6:c0:8e:
         c1:60:e6:0f:70:3f:63:0e:7a:3d:93:49:20:8c:d2:d1:6c:cf:
         14:df:2f:7b:33:6c:8b:be:7a:0e:ce:11:c6:f1:60:0c:56:2f:
         7d:09:f7:d0:9e:6d:ed:a8:a5:75:e4:0a:65:d9:ac:b0:66:f8:
         46:eb:ff:a7:0b:ad:82:83:6c:22:2a:90:56:b3:12:0c:9d:d1:
         9a:f7:2f:c3:9c:de:0e:d7:b7:16:1c:a0:ad:88:1e:2b:46:cb:
         10:75:a8:22:32:f9:46:03:2f:ff:07:18:08:65:2d:4b:5d:52:
         5e:a5:72:14:9c:61:1d:e7:65:7e:54:17:7e:5a:f6:21:e3:0c:
         c5:5e:68:b2:4b:cd:01:c0:61:d8:e5:89:1f:f1:fa:a8:cb:3f:
         0a:76:44:cc:da:cb:a4:44:4d:50:d7:0c:00:af:fb:e8:7b:fd:
         d8:32:87:f1:2b:90:ad:ae:94:ee:7b:81:80:15:8c:04:16:c7:
         6c:d8:b1:b8:ec:b3:b0:44:bc:6e:f2:76:9a:5b:57:81:dc:75:
         55:32:d1:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:46:16 2025 by rpki-client