Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft
File:                     2gE-F4NYyzWot2XJvAkK6c8cT74.mft (raw, json)
Hash identifier:          /2s410Ag5QjfKUEq17etCVnqpPzMVQm2dzSipyl9vig=
Subject key identifier:   87:ED:20:A7:11:1C:FA:06:B9:5A:8A:28:CB:8B:95:44:02:7F:FD:02
Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE
Certificate issuer:       /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE
Certificate serial:       0682
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft
Manifest number:          067A
Signing time:             Sun 19 Oct 2025 00:02:40 +0000
Manifest this update:     Sun 19 Oct 2025 00:02:39 +0000
Manifest next update:     Sun 26 Oct 2025 00:02:39 +0000
Files and hashes:         1: 2gE-F4NYyzWot2XJvAkK6c8cT74.crl (hash: znnBzRzEbnTbHkWHkHPmQY9YamEEG0o/onGX4cRuinA=)
                          2: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (hash: KMuh5ult9LiAce0tih+7IUcHZQamzlPDZPCJthZ1JAs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl
                          rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 00:02:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1666 (0x682)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B2C88, serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE
        Validity
            Not Before: Oct 19 00:02:39 2025 GMT
            Not After : Oct 26 00:02:39 2025 GMT
        Subject: CN=68f42a9f-21fd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:8d:f6:cb:97:99:64:03:89:10:5f:d2:db:97:
                    c0:29:85:9c:d3:bf:51:8b:69:92:1f:b3:1d:9d:ae:
                    df:ae:13:e7:93:e6:05:62:31:05:14:d5:3b:5a:19:
                    0e:ab:b4:5d:91:55:38:fb:54:74:61:1e:b9:b3:49:
                    91:fb:23:29:b8:fb:41:42:83:59:50:42:b9:c1:6c:
                    93:05:48:82:75:25:78:83:11:e6:4f:5f:be:86:29:
                    68:fc:87:5a:9d:8e:47:61:45:bf:ea:49:cc:29:b6:
                    29:1a:b0:a1:75:bc:03:3d:3d:bc:b4:19:26:a5:e4:
                    5e:b0:a4:ae:c4:dc:df:8f:8b:5d:aa:11:33:32:e3:
                    94:68:2b:48:92:32:6f:1c:e6:fa:88:32:22:86:1f:
                    33:14:af:c6:49:90:f6:47:da:65:25:c3:04:b9:78:
                    ed:4f:bf:4b:cc:eb:86:4e:38:13:54:8e:5b:24:ed:
                    4b:db:0f:85:8f:88:6d:61:f7:f9:86:6c:4c:8d:c6:
                    f3:0a:2b:29:a0:8d:b1:a6:62:a6:54:c5:92:d9:90:
                    52:52:f7:a4:9a:ce:26:dc:83:21:2c:c7:48:cd:a6:
                    cc:d6:77:8a:69:12:0a:9b:e7:e5:01:37:33:e7:ec:
                    b2:9e:6c:52:68:7a:28:90:dc:95:0c:d6:08:7a:2b:
                    41:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:ED:20:A7:11:1C:FA:06:B9:5A:8A:28:CB:8B:95:44:02:7F:FD:02
            X509v3 Authority Key Identifier:
                keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:a9:eb:e6:50:ab:13:ec:86:94:83:c0:4d:48:44:c9:e4:ef:
         bf:88:93:4f:2a:ce:ee:bb:56:94:a5:fb:a9:73:8c:89:e8:4a:
         63:7c:cb:95:aa:e7:47:57:7a:61:e2:f2:d6:11:d3:e6:5d:64:
         68:f2:ce:f5:f0:46:3a:63:91:0a:9e:fd:0c:77:a8:70:67:0c:
         04:2a:b1:0c:0b:f2:f3:87:50:8f:93:fb:77:94:28:6e:33:bb:
         66:b6:09:c3:5a:e9:b0:30:7c:3a:49:d7:f0:dc:8b:ac:a4:bb:
         42:d4:b9:13:1b:3f:12:ba:fc:d5:d8:d0:e3:93:c9:a5:6f:a1:
         2c:cd:ed:8f:3d:be:2f:09:81:00:59:25:0c:ca:56:87:b6:2b:
         c9:3e:e4:b8:19:9a:ec:00:f0:df:a2:5b:32:34:13:d8:76:58:
         70:32:ea:39:a9:20:f9:ae:a1:aa:62:ca:60:f9:1b:01:40:17:
         61:bf:67:be:c9:43:1d:26:1c:b5:1b:2a:0f:8c:f8:90:13:97:
         a8:eb:9d:0e:c2:82:30:70:cc:32:36:36:49:75:c6:6e:cf:5b:
         f4:cf:65:d4:d2:6c:34:17:31:ef:bd:59:50:ab:15:d2:58:b6:
         49:7a:32:b6:ae:cb:67:48:91:42:2b:38:16:d8:e0:64:08:76:
         71:40:e1:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:32:38 2025 by rpki-client