Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft
File:                     KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json)
Hash identifier:          hSc99hIJ4qENx7qayrS9XeKT4S9KQtcbRI7HEQ8qvmI=
Subject key identifier:   B5:A3:84:19:10:5F:45:71:6D:17:15:33:6C:F5:70:42:66:01:7B:4D
Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD
Certificate issuer:       /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD
Certificate serial:       104C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft
Manifest number:          103B
Signing time:             Sat 18 Oct 2025 17:59:27 +0000
Manifest this update:     Sat 18 Oct 2025 17:59:26 +0000
Manifest next update:     Sat 25 Oct 2025 17:59:26 +0000
Files and hashes:         1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: +WHhT5x88vJR+TfGhElwi+PIG5quvVR8DKxsFTOwbSY=)
                          2: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: fPoBgkYnMh4IMhrB/TA39+M1O1OAHZFrtUEJDkMooUg=)
                          3: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: ucL3j8TnFmy+7V5qbIqZDaLy79WcFoXLeH1a5In6i8E=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl
                          rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 17:59:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4172 (0x104c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD
        Validity
            Not Before: Oct 18 17:59:26 2025 GMT
            Not After : Oct 25 17:59:26 2025 GMT
        Subject: CN=68f3d57f-558a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:ef:e3:97:5f:ff:91:30:00:44:5b:17:78:42:
                    53:8b:4f:27:f5:82:03:7d:e9:e9:66:56:30:44:f4:
                    cd:c4:72:05:ae:5e:f5:6d:dd:e7:47:00:f7:5d:1b:
                    c0:69:31:1e:6a:6a:3c:39:f2:dd:13:21:29:e1:0d:
                    98:30:9e:d9:a5:96:a1:3e:c0:d4:77:c1:3a:29:e3:
                    a0:37:07:ef:aa:46:5b:25:fe:23:29:27:d4:fa:6a:
                    8f:05:f7:07:69:3c:9e:21:c1:7f:23:e4:0b:ab:ef:
                    f3:fe:c1:91:89:e7:10:f6:c1:b1:73:3f:7f:1d:e1:
                    ab:5c:85:8d:02:ef:a0:2f:33:ab:a9:57:06:e3:69:
                    8f:a2:39:e8:7f:15:6c:8e:7f:a1:5c:b2:3b:d0:bb:
                    04:7e:2e:5a:c9:0f:c2:db:77:48:36:00:a6:69:9e:
                    94:27:41:be:45:06:80:5c:bf:45:00:5a:f8:bb:18:
                    3d:89:36:ff:65:31:aa:f2:25:7e:72:ed:8c:5f:28:
                    3b:14:c8:69:bb:29:35:60:91:33:37:9c:44:a3:51:
                    54:85:48:0a:71:29:cb:c6:dc:08:1a:03:fd:fb:17:
                    ba:9f:f7:db:6f:9b:53:0c:5d:d9:c8:9a:37:f7:8a:
                    a8:fc:ff:79:81:2c:6c:cd:9d:34:98:23:cb:44:3d:
                    e1:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:A3:84:19:10:5F:45:71:6D:17:15:33:6C:F5:70:42:66:01:7B:4D
            X509v3 Authority Key Identifier:
                keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b3:dd:eb:30:e3:35:db:32:74:9a:71:bb:21:4c:77:59:28:68:
         98:6d:04:09:5f:7e:95:cc:02:82:33:e8:92:2a:84:86:fb:56:
         f6:9d:87:2c:60:e7:7d:69:16:1b:7e:63:c6:dd:64:57:c1:96:
         de:3d:68:ed:66:ca:70:57:cd:e1:1b:d9:b1:66:a6:c6:6f:a6:
         e6:38:b1:38:e0:e1:dc:42:16:cf:86:66:cc:97:d3:9d:51:52:
         8b:b3:a9:73:fd:e3:67:87:ad:52:1e:5e:67:36:15:9a:9d:64:
         81:0b:78:0b:bd:b7:e9:00:76:31:49:77:b0:39:5f:ed:5d:a6:
         8f:31:de:1b:28:06:0a:b2:d5:46:bf:e4:d1:39:2a:f4:d2:15:
         7b:17:68:b4:d4:9b:22:b8:ff:e4:0c:a1:51:b1:b7:c3:2c:e7:
         05:60:00:3f:02:27:ee:85:bf:ee:c4:27:cc:a2:bf:f3:48:79:
         c3:e2:2c:0e:ae:14:a5:54:24:21:c3:a7:22:b4:0a:4d:b7:54:
         cf:3a:49:ea:a1:89:b5:e0:25:e8:84:e6:80:34:15:9b:19:2e:
         3c:9a:c1:86:53:d9:3a:ee:71:b7:2d:89:58:1d:b8:9a:07:00:
         97:d5:d9:12:f4:7f:aa:8a:8c:d2:b8:16:98:8c:6a:b7:d5:38:
         3d:80:43:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:32:25 2025 by rpki-client