Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft
File:                     JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json)
Hash identifier:          pzybNyXtT1WpZYT/z8FmJmnFsUQs5X7jZdaO3cM0npY=
Subject key identifier:   6F:44:F9:7E:9B:15:A8:7F:A7:57:90:B1:24:A0:CE:A4:97:8E:A5:A3
Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32
Certificate issuer:       /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32
Certificate serial:       0132
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft
Manifest number:          012D
Signing time:             Sun 19 Oct 2025 07:27:14 +0000
Manifest this update:     Sun 19 Oct 2025 07:27:13 +0000
Manifest next update:     Sun 26 Oct 2025 07:27:13 +0000
Files and hashes:         1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: tzPlLj90pfXIGgv8CIjwWQ1JJtEgOokYF9cJDsh5QjM=)
                          2: 263EBED2A76111F0BF85DF10C4F9AE02.roa (hash: KsEE78D9bYQHmSLXBCwNxmVaB7h9ibLa7GP3POywlYU=)
                          3: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: PDtdUX6JrHo4d5GjgXXthgA5sLxtJKv9u0i8nv/vqsk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl
                          rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 07:27:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 306 (0x132)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32
        Validity
            Not Before: Oct 19 07:27:13 2025 GMT
            Not After : Oct 26 07:27:13 2025 GMT
        Subject: CN=68f492d1-86d1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:52:fa:4a:0c:a7:78:aa:38:c9:fb:fd:9d:9c:
                    f7:f3:e8:f8:e4:fc:88:0f:18:91:41:8e:94:ad:9f:
                    a2:21:f7:a5:9e:ef:31:0c:3c:08:33:95:38:36:3f:
                    69:78:26:4a:76:a1:c3:53:8e:0d:b3:41:8a:59:79:
                    fa:99:ad:5e:af:fc:72:62:f7:ec:7d:b4:c4:5d:bd:
                    01:4c:71:d0:8f:f3:9e:0a:81:25:95:84:42:2e:7f:
                    a9:e7:fa:d6:57:a9:58:a5:40:78:30:91:3c:07:0a:
                    ac:28:97:63:58:64:41:16:f6:ee:49:e6:0e:96:d2:
                    b2:b4:2b:9d:24:0c:1b:29:27:e3:c4:da:f8:90:45:
                    73:88:e3:f1:87:79:28:fd:30:35:a1:3a:17:b7:11:
                    c7:ef:f9:12:7e:2a:82:9c:ea:91:ad:27:00:8c:10:
                    b9:37:c2:b8:53:c9:ad:37:d0:a0:f6:f5:5d:dd:25:
                    5a:80:16:4e:e2:b8:77:76:0d:f2:a6:18:49:f8:60:
                    9a:cb:98:5f:a8:51:5b:13:3f:78:57:7d:e5:be:d8:
                    6d:9c:23:29:5c:23:47:36:34:d3:f4:54:0d:79:53:
                    c7:a1:6b:81:65:28:75:eb:43:8c:53:ac:0b:5e:a8:
                    1d:5a:d3:73:c2:37:f2:b9:dd:59:6b:0c:ed:0c:67:
                    45:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:44:F9:7E:9B:15:A8:7F:A7:57:90:B1:24:A0:CE:A4:97:8E:A5:A3
            X509v3 Authority Key Identifier:
                keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:c1:00:bc:c0:68:0b:52:23:0d:ae:ff:d8:bb:6d:98:91:5e:
         3f:77:85:3d:7f:6c:0b:82:f6:70:60:d3:90:c6:f9:c1:f7:ba:
         23:6f:82:6f:8b:8c:d6:54:d0:61:f4:96:e4:71:1b:c1:87:15:
         2d:7d:b4:2c:41:29:f2:ce:40:64:17:15:dc:65:59:dc:82:ac:
         85:a6:c3:ac:4a:c6:1d:c1:84:6a:10:24:c9:2d:fc:a9:9e:a3:
         7d:fd:ce:e3:e4:9a:0f:29:40:6a:6c:35:3d:78:37:a4:99:d4:
         ec:20:13:22:25:d5:1d:36:29:0d:20:4d:77:eb:f2:35:fe:7d:
         58:e4:37:4d:e1:c5:2f:bb:e4:80:12:21:a2:0d:88:1c:9c:9d:
         75:9e:1a:50:2f:e9:44:90:59:8d:7d:f7:7b:81:53:c3:e2:dc:
         7a:f4:ea:e6:29:70:ee:0d:7e:33:89:f1:04:f0:c0:b6:e2:6a:
         d2:e8:5c:f8:e4:e0:64:11:cb:fe:7a:fb:6f:0f:c5:77:46:8c:
         08:88:8a:24:55:0c:44:fb:97:cf:98:42:36:ae:ae:54:dd:e8:
         21:38:02:18:6c:f1:3e:cd:66:ec:73:44:e0:5c:ce:ad:e0:7e:
         f8:d9:a9:bc:c6:e8:9d:7e:a2:a2:0c:40:a6:9e:e9:1d:4f:72:
         be:7e:8f:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:40:42 2025 by rpki-client