Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft
File:                     oUUkHZgwrySnFWc1ElXsjn7VPv4.mft (raw, json)
Hash identifier:          zOlBh8X+flunqMJpggIfLLleNsLrBdH5ehKCBR61NJs=
Subject key identifier:   F4:D9:5E:73:1B:0B:C7:12:28:F3:D6:4A:19:C0:47:09:2E:15:82:1A
Authority key identifier: A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE
Certificate issuer:       /CN=A91AC5BC/serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE
Certificate serial:       4C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft
Manifest number:          45
Signing time:             Sun 19 Oct 2025 11:01:15 +0000
Manifest this update:     Sun 19 Oct 2025 11:01:14 +0000
Manifest next update:     Sun 26 Oct 2025 11:01:14 +0000
Files and hashes:         1: oUUkHZgwrySnFWc1ElXsjn7VPv4.crl (hash: JEF/i0LEM9M9xonq/8jExlaxHrsP7gkMKX7Zi/uycGY=)
                          2: C24679DC741211F0808A8240C4F9AE02.roa (hash: 0sz+kpmtwGElJIZS+dbC02B4JWfvDxu2J1QwiI80uIU=)
                          3: B015DEC49D0211F0992DA43DC4F9AE02.roa (hash: 1ZtqCzNNxWxSJ7uFzzu6FWZe/QSQ6qrzF6WDQCLLHuM=)
                          4: 90CF95CE66DD11F09FD37312C4F9AE02.roa (hash: BBZhX9HK3NBq65o9RCyGDdGBDo4hsR5Etdc6G3lRbjc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl
                          rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 11:01:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 76 (0x4c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AC5BC, serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE
        Validity
            Not Before: Oct 19 11:01:14 2025 GMT
            Not After : Oct 26 11:01:14 2025 GMT
        Subject: CN=68f4c4fb-a278
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:c9:ff:8a:3f:dd:18:bb:fc:53:ff:ba:86:b3:
                    9b:ca:cb:68:eb:59:11:fc:df:58:66:66:2c:07:10:
                    d8:ce:99:32:93:a4:59:d7:b4:71:64:1f:7b:f7:52:
                    32:0a:29:5d:4d:6a:5c:85:3a:af:39:89:4f:c9:76:
                    41:fd:ec:9e:d8:b9:53:83:52:a1:27:cb:77:7f:c6:
                    a4:bb:a8:1b:6e:27:37:4d:f8:fb:83:49:51:a5:61:
                    54:43:2f:d7:20:41:b1:fc:69:b5:6c:f4:f4:bf:d1:
                    b1:a5:46:ec:52:c7:48:3b:72:43:d1:f7:42:01:ef:
                    b3:51:ef:07:01:f5:38:64:e2:d8:5c:a7:9e:b2:93:
                    13:3e:f0:4f:ea:be:3e:77:3b:b1:c0:fa:9a:70:74:
                    a2:ca:14:7d:6d:53:32:af:0b:f0:26:31:77:19:47:
                    b6:eb:40:50:94:39:cf:1b:81:f9:fb:81:92:69:15:
                    c9:28:f7:ba:7d:d5:55:64:71:db:c0:65:dd:20:6a:
                    40:1a:5a:80:6a:60:a1:09:39:6f:53:c6:7c:02:ad:
                    c6:90:f0:7a:03:db:53:f6:05:08:6b:a4:72:01:bb:
                    c6:0c:94:d3:c5:b0:13:a5:32:01:ee:5f:9d:7d:05:
                    ae:af:b9:f8:b1:8d:fb:7b:79:f1:8b:79:d7:81:3a:
                    bc:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:D9:5E:73:1B:0B:C7:12:28:F3:D6:4A:19:C0:47:09:2E:15:82:1A
            X509v3 Authority Key Identifier:
                keyid:A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:b8:8a:1e:49:a8:f4:3a:53:8b:c5:23:2c:65:d1:5c:dd:12:
         99:91:a6:c9:35:f0:26:22:53:a5:6d:ca:e5:3b:17:6d:7b:bd:
         16:79:5c:e8:ef:22:3e:34:0d:e4:a0:06:a3:f2:65:ad:9d:86:
         40:43:64:41:be:7c:56:b7:8a:59:57:59:f2:07:73:1f:d5:69:
         f5:c5:41:c4:53:4b:59:8a:0b:1e:e4:70:37:55:b7:46:e3:87:
         3c:81:06:a1:80:61:63:1b:53:6f:14:84:cc:e8:44:c4:10:4b:
         5f:08:5d:31:f4:2b:4d:c7:41:e6:90:7d:6f:e3:7e:01:29:d5:
         d6:1b:dc:39:53:b7:13:44:f5:33:b5:fd:20:75:13:aa:1f:93:
         ca:c8:8a:01:f5:8d:26:3b:86:f8:0d:4c:2b:98:74:75:2d:4e:
         02:62:10:cb:a4:bc:63:33:cd:68:28:e7:f7:75:6f:18:0f:13:
         64:57:17:0f:42:05:f3:f7:5d:bc:85:84:aa:70:b1:ad:28:e2:
         3c:59:4a:2f:fb:0c:6d:eb:e9:d4:f6:df:54:73:c6:15:39:1d:
         64:51:ab:d7:60:63:33:3c:03:a6:d5:df:b3:8f:6e:5a:67:99:
         29:d9:9e:d9:80:63:9e:cc:1d:9b:b4:06:0a:57:c1:19:14:c6:
         e8:e4:6a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:46:34 2025 by rpki-client