Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft
File:                     nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json)
Hash identifier:          0s3JvBzPbGnhYJplJ3WXMPLYZ/AMIi2yb5P6HU2wjXU=
Subject key identifier:   A3:39:F8:48:56:E5:6D:BF:96:04:8C:09:B7:9C:7D:21:E6:66:01:6E
Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC
Certificate issuer:       /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC
Certificate serial:       EE
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft
Manifest number:          EC
Signing time:             Sun 19 Oct 2025 08:20:39 +0000
Manifest this update:     Sun 19 Oct 2025 08:20:38 +0000
Manifest next update:     Sun 26 Oct 2025 08:20:38 +0000
Files and hashes:         1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: WGWtpcAJpvBN8GvDvYPjYSh7jPD3ul/Dc2epMhKFMps=)
                          2: DD76C09AB16711EFBD483568C4F9AE02.roa (hash: lZ2oQ4wvz4evXveDE7LNoYJmc6E6jg/A59sR/rYBi6k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl
                          rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 08:20:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 238 (0xee)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC
        Validity
            Not Before: Oct 19 08:20:38 2025 GMT
            Not After : Oct 26 08:20:38 2025 GMT
        Subject: CN=68f49f56-e603
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:38:ef:2e:9e:aa:0a:91:04:17:c4:a5:90:e8:
                    70:6e:74:03:e1:f3:b0:4a:ab:93:af:42:88:39:2e:
                    0c:80:4e:e8:40:96:ff:cc:b9:40:6c:49:84:00:f1:
                    2a:c2:21:73:77:62:b2:d0:a6:af:1b:85:e7:aa:af:
                    0e:7f:37:43:55:c7:59:d9:0e:07:0f:6e:6f:57:f9:
                    dd:fa:47:c1:c5:d0:04:45:c2:5c:b3:34:1f:d1:38:
                    8d:a7:5b:59:1e:d7:92:22:88:a0:3f:dd:80:07:2f:
                    02:02:18:19:aa:11:1b:eb:38:91:23:52:2f:9b:1c:
                    0c:47:84:29:7c:08:0e:24:a5:e9:b6:8b:dc:80:f1:
                    03:52:0d:03:ed:34:45:14:d7:9b:85:4b:a6:d5:28:
                    f4:2a:74:95:7f:5d:94:ee:9a:2e:c4:72:39:10:9f:
                    da:e5:8c:98:4a:4e:08:e2:66:e6:92:fe:89:6d:4e:
                    2c:86:92:ac:11:dd:e7:fe:74:a7:30:77:8b:75:5b:
                    fc:de:ec:11:00:f1:0c:c1:ad:d9:8c:72:3b:bf:c7:
                    73:ca:f5:ee:22:db:7a:11:0e:f5:85:5c:c7:af:2f:
                    20:c8:ea:69:4a:72:29:05:00:3c:fa:eb:37:0f:33:
                    c7:ea:ad:7e:0e:9e:2f:ae:79:bc:77:bd:8c:b4:eb:
                    0f:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A3:39:F8:48:56:E5:6D:BF:96:04:8C:09:B7:9C:7D:21:E6:66:01:6E
            X509v3 Authority Key Identifier:
                keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:31:4d:c6:93:d4:72:bc:54:b3:a8:5b:5b:8d:ea:8f:cd:be:
         66:97:3e:93:86:32:51:73:f2:e6:d6:d4:2f:86:70:f3:53:ef:
         25:30:ed:f4:b7:ac:8b:b3:0d:75:e6:47:3d:24:9d:57:b9:ea:
         a5:a6:66:25:73:6d:a4:56:9b:9f:f9:58:62:22:d5:51:b6:15:
         30:94:60:f6:bd:b5:ee:4f:13:48:11:51:10:64:aa:72:bf:ae:
         7d:ea:d9:84:60:8a:e6:ee:6d:67:f5:d2:bd:0b:4a:b3:e0:23:
         44:56:4f:09:76:bb:6f:5f:b8:32:15:f7:09:79:f3:ed:12:9e:
         2b:1e:39:97:8d:72:f6:fa:80:77:41:bb:9e:38:6b:b6:a0:65:
         81:43:f2:19:1f:4c:66:4a:a4:9c:30:2d:a2:43:35:24:d5:ed:
         22:72:38:1b:05:40:6d:f3:b0:67:a0:b2:57:ab:ab:f1:5d:09:
         76:81:7f:90:65:33:d0:94:4e:fe:d7:52:3d:a1:1c:21:20:9c:
         6f:8a:26:fb:a4:2b:95:39:d6:07:f1:1f:4c:00:5d:60:58:5b:
         ed:f8:b9:ae:ff:94:dd:a4:97:fb:10:bb:b5:a1:cf:2e:08:73:
         83:11:9c:87:c0:92:cd:0e:06:f7:81:e5:e4:94:0e:42:50:b4:
         42:05:b4:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 02:15:12 2025 by rpki-client