Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft
File:                     XwBNV-s29CZy5m8wBfZGm2KJFxs.mft (raw, json)
Hash identifier:          YBbjho8+q1ookArY7yjgjRS/2gNlC2blDBpsqFF0dJ4=
Subject key identifier:   40:19:EA:FF:26:96:6B:05:71:5A:14:61:90:31:7B:94:13:52:4B:3D
Authority key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B
Certificate issuer:       /CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B
Certificate serial:       B9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft
Manifest number:          B6
Signing time:             Sun 19 Oct 2025 09:14:13 +0000
Manifest this update:     Sun 19 Oct 2025 09:14:12 +0000
Manifest next update:     Sun 26 Oct 2025 09:14:12 +0000
Files and hashes:         1: XwBNV-s29CZy5m8wBfZGm2KJFxs.crl (hash: 19lWU9GjeXQBxaOP8tKLx/WtTZKNUjLUTaLyIFu2T8Q=)
                          2: 3D04EA589D9211EF8083B245C4F9AE02.roa (hash: Iqqm3XnZxAwHyLfxm5fiQ2PL3nIt3cAVFXF23TPN80A=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl
                          rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 09:14:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 185 (0xb9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C1025, serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B
        Validity
            Not Before: Oct 19 09:14:12 2025 GMT
            Not After : Oct 26 09:14:12 2025 GMT
        Subject: CN=68f4abe4-f3b8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:2e:ed:03:6b:07:ed:5c:d9:2d:12:34:9f:d0:
                    b4:b9:7e:9f:79:8d:09:3d:9b:16:c5:cd:fd:d9:40:
                    96:f1:ef:53:0c:0e:91:7c:69:63:c9:a8:ef:f9:a5:
                    d0:46:94:83:e6:18:70:04:7e:db:18:5e:d0:3c:91:
                    77:92:68:ae:30:b1:f6:92:32:95:04:b6:8e:fc:95:
                    f7:1a:66:7c:2e:25:30:ed:a8:85:e6:7c:02:9a:87:
                    1c:c7:6b:fe:1c:71:20:df:72:cd:77:63:5d:be:29:
                    b2:d3:f1:12:fc:4c:6e:e3:ed:0b:b4:fa:8e:7d:f9:
                    74:89:a0:f6:38:96:91:d4:ca:09:88:25:e1:2d:ce:
                    40:88:28:e5:7d:5a:7a:9d:ac:a6:96:b0:91:f2:54:
                    de:57:d5:d0:81:e5:45:64:8a:f8:6b:f3:30:c9:4c:
                    80:fb:9a:4e:66:e1:a5:45:26:34:37:49:83:37:18:
                    72:b7:8b:8d:ca:57:73:e3:00:c8:6f:ef:46:5f:61:
                    e4:39:38:c1:91:b5:11:fd:fd:08:01:64:68:c2:d1:
                    66:c2:73:28:45:01:25:31:e3:4e:3e:a0:56:16:11:
                    06:0e:07:4e:f1:aa:78:64:bb:23:62:95:38:1c:a7:
                    54:39:15:fc:5e:cf:93:d7:31:49:58:44:87:8f:4b:
                    0c:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                40:19:EA:FF:26:96:6B:05:71:5A:14:61:90:31:7B:94:13:52:4B:3D
            X509v3 Authority Key Identifier:
                keyid:5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         51:6b:b9:fa:2c:05:d1:22:1b:1a:04:64:c6:c4:60:20:1b:fa:
         3b:a1:37:8e:17:ff:1e:f1:e4:29:39:2c:7c:a6:a5:b0:65:21:
         2c:18:9f:38:b4:e8:a2:a0:52:42:11:3b:79:a8:47:64:d4:0d:
         16:8f:83:d1:2a:ce:20:27:93:ef:3b:c5:bf:19:0d:1c:69:44:
         3d:f9:ed:35:94:94:00:9b:62:ff:7c:1c:34:1a:55:36:42:83:
         25:6c:bb:66:6b:f2:c2:f1:fb:a1:62:cb:31:76:44:13:d4:ed:
         95:e6:b5:69:5e:57:d8:24:2d:79:39:d7:3c:12:a2:25:fa:16:
         f2:30:95:66:9d:a0:36:ce:37:4c:8b:8c:f6:a1:08:24:06:ea:
         c2:cc:5a:39:63:0a:b6:b3:cd:89:3e:01:10:9d:cc:b9:4b:8b:
         a4:06:72:05:a3:4c:60:0c:9d:47:75:02:ef:cb:e3:29:50:fe:
         56:eb:7e:ee:06:a5:a0:69:5e:6d:91:41:11:a6:34:83:68:99:
         f8:b9:03:4b:98:60:74:92:56:30:99:c0:33:2c:aa:f0:53:a1:
         5d:9e:7f:31:e6:ba:81:2a:30:74:76:fc:15:01:e3:21:e3:d6:
         d0:8e:66:60:41:a3:58:66:f9:59:a2:c7:4d:32:39:2e:20:61:
         17:ba:56:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:42:43 2025 by rpki-client