Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft
File:                     LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft (raw, json)
Hash identifier:          1RdJxh+WYWfmnNL7ybqqvLWC7VLHjCbFQYkN3Y6ORYg=
Subject key identifier:   93:5B:ED:7E:64:0A:45:7D:43:12:3B:E0:F0:16:76:F8:7A:E5:7A:0E
Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B
Certificate issuer:       /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B
Certificate serial:       0581
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft
Manifest number:          0545
Signing time:             Sun 19 Oct 2025 01:21:56 +0000
Manifest this update:     Sun 19 Oct 2025 01:21:55 +0000
Manifest next update:     Sun 26 Oct 2025 01:21:55 +0000
Files and hashes:         1: LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl (hash: 66Uyj3tmwKoClSjfn1fIeBPiQJYuLb+5L/lqttUipCU=)
                          2: CE988D80FB7311EC97CD7F85C4F9AE02.roa (hash: khj0U83Oh0MV75Awop79+WdRP+WJETqec/zA5LVnzro=)
                          3: BD4E85B09E6311ECA6EC8071C4F9AE02.roa (hash: 2jfJLAfv4sSmTjn+t4R2DbosLO6LZGV4JERzq1/IuT0=)
                          4: F88F642285E411EEB951413BC4F9AE02.roa (hash: 5XS7gAJ1w57LGdHifEwdGpT41QuHVgx3tURmBIG/Ph0=)
                          5: 1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa (hash: ZVXIXb68LMeIyoHASYy5oVFyflHWdmoVD7FAYMUQOp4=)
                          6: BBDA9B429E6311ECA6EC8071C4F9AE02.roa (hash: WiSL38A4AfTZxujdbevnM0BHhlMtOQknr2QyeEfpbeg=)
                          7: 95C12B8E21A111EE8360C139C4F9AE02.roa (hash: ANarnw7th2betqTUJ1dSr/6kmM20Z4BPNu0RmkGVouY=)
                          8: D6C060C27E1811EEB9B4FE4AC4F9AE02.roa (hash: H6lUECWs/LnmCnEJB/ye5BlXZoehdKlxdmR5+P/1VOY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl
                          rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 01:21:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1409 (0x581)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91ACD72, serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B
        Validity
            Not Before: Oct 19 01:21:55 2025 GMT
            Not After : Oct 26 01:21:55 2025 GMT
        Subject: CN=68f43d34-5ba7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:3f:25:3f:69:ac:bb:98:89:fe:2d:34:83:42:
                    8b:8b:4d:e1:d6:bd:94:e2:06:7a:72:57:b6:c3:df:
                    c1:30:a8:c0:b6:a6:a9:78:d6:0e:11:ac:68:9e:6a:
                    cf:5c:f0:10:d3:fd:0c:4c:15:30:33:44:f4:df:44:
                    d9:8b:1f:6f:20:2a:24:92:6a:09:68:0e:0f:5c:f0:
                    b4:43:ae:f2:6f:5c:f9:5d:9d:91:98:d8:bc:33:51:
                    11:7e:22:84:86:23:04:a4:77:b4:89:ee:b4:4d:80:
                    81:cb:e0:76:9d:5b:e1:a0:6e:74:5a:20:4c:64:c9:
                    06:3b:ff:e2:ae:f5:fe:0c:f0:66:94:66:de:8b:d1:
                    3c:8e:f6:dc:7e:93:5e:64:15:68:a3:51:10:63:a1:
                    8e:74:7f:be:ee:a1:09:c3:56:af:44:51:7a:39:20:
                    07:96:f7:3d:3c:6e:77:af:c7:39:e9:ae:55:2e:da:
                    bc:ae:02:43:a9:4d:cf:9b:fa:6e:e9:fc:b9:3c:b9:
                    70:95:65:37:a8:20:b7:f7:92:92:92:8e:84:3b:e3:
                    22:61:fe:7d:85:26:a7:f0:6d:4f:7b:61:ac:0c:79:
                    55:1e:dd:d2:50:5d:3a:b7:c9:a3:59:f6:c3:21:5d:
                    53:e3:5e:ff:64:b6:e7:a4:a2:19:14:52:5e:81:b5:
                    3e:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:5B:ED:7E:64:0A:45:7D:43:12:3B:E0:F0:16:76:F8:7A:E5:7A:0E
            X509v3 Authority Key Identifier:
                keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:82:d8:f6:6f:f6:ca:fa:7d:4d:89:6a:b8:d1:18:c1:a4:d7:
         8a:1c:81:5e:b4:8d:e7:08:8f:d2:4c:80:77:8a:ff:d3:9e:2d:
         ae:12:85:05:8d:d6:da:9c:bd:c3:21:d9:44:47:e8:13:4a:bf:
         6e:8e:9d:1d:10:1e:05:80:3f:76:94:54:e8:c1:07:93:a5:8f:
         34:8d:d5:07:9e:cc:63:5a:96:22:76:2e:21:2e:1a:04:39:dd:
         9b:64:56:0a:8d:17:39:90:10:40:8f:a4:45:0b:57:b0:23:03:
         16:73:54:59:d3:71:19:14:d6:0f:01:c4:52:c5:92:cc:5f:25:
         3c:dc:89:56:66:46:d6:1b:5d:fb:c8:04:9d:9c:2b:b2:78:12:
         78:34:22:30:e1:b2:ae:e1:73:df:35:ea:69:29:76:8c:fd:3b:
         d0:70:9a:dc:7a:f7:0b:63:f9:b2:7f:8c:b1:68:94:69:ec:79:
         40:0c:8f:fa:27:d0:b6:6d:c8:c3:38:ca:76:c9:d3:68:f9:1b:
         39:f7:56:90:77:17:25:a0:b3:c4:8f:2d:c2:7c:d0:7e:63:44:
         37:09:79:d3:90:60:ee:75:25:7f:0e:fa:72:07:f3:06:c4:02:
         71:00:48:c5:ce:f1:33:bd:70:96:95:91:11:1e:f4:98:fe:e6:
         85:22:4c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 04:53:26 2025 by rpki-client