Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft
File:                     AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json)
Hash identifier:          Y6MlUrk9AQIkWQgsUjOQ9TtARn9mY3ONbwhLQKMNW6g=
Subject key identifier:   16:A6:93:BD:6A:FD:89:D2:FD:D2:86:CF:29:3F:30:7C:AE:FC:23:76
Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B
Certificate issuer:       /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B
Certificate serial:       0812
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft
Manifest number:          080C
Signing time:             Sat 18 Oct 2025 22:08:42 +0000
Manifest this update:     Sat 18 Oct 2025 22:08:41 +0000
Manifest next update:     Sat 25 Oct 2025 22:08:41 +0000
Files and hashes:         1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: N1UbE1VJYZcVyXHl2aZELyk3wAphr7RljpfaaYr3TUs=)
                          2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: 9LJKIwXdcyYkVupcdiZ+JpUY7SOiyN67bapZPwlLn04=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl
                          rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 22:08:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2066 (0x812)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B253D, serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B
        Validity
            Not Before: Oct 18 22:08:41 2025 GMT
            Not After : Oct 25 22:08:41 2025 GMT
        Subject: CN=68f40fea-5a90
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:92:a3:98:0e:71:6a:7d:56:db:f1:38:6f:0c:
                    a1:2d:14:1c:92:ea:16:85:d0:ba:3c:39:7b:b5:85:
                    6e:66:09:f8:01:cc:d2:9a:7a:ec:fd:c9:2e:ab:25:
                    4a:48:0f:55:1e:bd:51:e4:bc:b0:18:39:a4:eb:3a:
                    d0:e5:9e:10:33:85:f0:79:06:cc:ce:c6:a0:f9:0f:
                    86:bb:ab:ab:55:26:68:75:a8:b4:35:07:d2:fa:b8:
                    21:72:d3:04:ad:32:c9:13:a5:78:c1:a8:66:13:c8:
                    b1:66:ca:5b:77:5f:24:eb:12:4d:c0:54:9c:bf:6f:
                    cd:70:63:05:84:18:de:e0:fd:9d:ed:5f:d3:b8:67:
                    0e:52:67:82:85:3b:ad:a0:7b:2c:24:0a:f9:0f:05:
                    fa:96:19:7a:79:75:bb:56:c6:bd:2f:2d:77:f3:71:
                    51:ef:6c:b5:06:67:92:ef:6a:0d:00:dc:ba:50:17:
                    95:d9:20:eb:f7:1d:b9:eb:40:54:ac:5b:02:ae:c1:
                    36:f6:a6:cf:5e:e0:43:d5:4a:34:51:01:c9:8c:24:
                    47:53:7b:35:8c:87:4f:46:6f:41:89:63:f0:1e:43:
                    54:15:72:c8:b9:32:72:39:1c:51:07:2e:3c:6b:46:
                    3d:e5:35:1c:35:87:c4:0b:e4:ed:8f:a2:dd:aa:31:
                    fc:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:A6:93:BD:6A:FD:89:D2:FD:D2:86:CF:29:3F:30:7C:AE:FC:23:76
            X509v3 Authority Key Identifier:
                keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bb:cf:57:25:9a:93:75:ce:ef:fe:89:0e:85:07:d3:7b:27:96:
         cd:d4:d4:c7:06:7a:ae:e0:33:11:9a:9d:aa:57:7e:34:a1:71:
         e6:96:d8:02:b7:db:a7:66:25:ad:9e:85:9c:05:8b:34:b9:32:
         cb:3b:80:5a:1d:d8:25:d8:44:59:3a:b2:86:1c:ba:82:89:f6:
         12:42:08:fb:07:29:d1:18:43:9a:25:47:85:53:e9:36:89:92:
         01:58:e0:7e:f8:c2:36:21:be:37:0a:56:98:72:60:50:3b:97:
         4d:38:1c:5e:7a:de:dd:03:b6:36:ad:a4:d1:eb:3a:ad:4a:8f:
         72:4e:3a:88:25:a4:76:f3:c9:6c:01:f9:12:74:c8:dd:7f:a1:
         56:81:55:ae:d1:df:ff:af:48:88:a8:0f:dd:32:f1:05:39:1b:
         a6:27:ad:35:03:f7:4b:7d:dc:38:69:be:99:80:2c:ac:d8:17:
         9d:e3:55:da:a4:1e:18:ad:af:51:fc:05:6e:cf:af:f2:77:57:
         5d:3a:f6:40:83:5c:59:dc:6c:dd:60:59:ca:f6:85:8c:41:01:
         08:74:c2:16:1d:71:47:80:77:d1:09:91:67:43:bf:7e:8c:9b:
         33:e3:d5:88:e7:18:d7:fc:48:ec:8d:9b:48:2f:dc:c4:d4:e1:
         67:8a:ec:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:49:17 2025 by rpki-client