Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft
File:                     l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json)
Hash identifier:          RucJLLxdhv+Bcxc5XxYX2HhE6scxD/u26QOuXhOVXW8=
Subject key identifier:   A8:32:21:D8:49:FB:46:F4:02:2C:DB:26:F4:0B:2C:05:FB:71:75:63
Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50
Certificate issuer:       /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050
Certificate serial:       0617
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft
Manifest number:          060E
Signing time:             Sun 19 Oct 2025 00:28:52 +0000
Manifest this update:     Sun 19 Oct 2025 00:28:51 +0000
Manifest next update:     Sun 26 Oct 2025 00:28:51 +0000
Files and hashes:         1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: cJzoI774XHD+c/oFQ8rw3c1cM5LSM04izBVV+GzCz30=)
                          2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: 9l/idt3LJislssNxfPBsqgjifz4U+6PzxoXpIp44G34=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl
                          rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 00:28:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1559 (0x617)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050
        Validity
            Not Before: Oct 19 00:28:51 2025 GMT
            Not After : Oct 26 00:28:51 2025 GMT
        Subject: CN=68f430c4-5cf5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:03:0f:db:dd:04:73:9a:72:c2:39:66:46:86:
                    b7:84:0b:15:ba:2a:7b:d3:29:1b:76:78:0b:49:c6:
                    9f:9c:f4:7d:76:e2:e6:ea:8e:e2:b1:31:42:e0:5b:
                    ce:24:4e:ef:b8:d5:a7:e0:2d:97:cc:d4:53:0b:e3:
                    66:de:a0:11:d0:f0:40:a8:04:49:32:8c:23:c4:b3:
                    96:0b:1c:45:2a:b6:ec:4c:f9:25:a5:64:b2:ce:4c:
                    34:8e:10:da:b6:7f:c0:2e:d7:b2:0c:4e:3a:9b:e0:
                    ae:d1:aa:16:2d:13:8f:4e:b7:da:69:37:d2:1a:01:
                    78:c7:1c:f9:e2:e2:f4:e7:f4:da:32:9d:1b:50:62:
                    fa:0d:ed:23:ec:8a:e4:40:5b:6a:b5:c8:b3:93:2c:
                    57:9c:4e:00:00:d5:3f:57:f5:e0:a5:2f:55:e3:c4:
                    91:01:d3:d5:6b:3a:e9:51:11:dc:aa:c6:5e:f2:53:
                    05:be:3c:2d:f5:df:bf:0d:62:83:8f:78:d0:33:36:
                    61:1f:c7:ee:ed:0e:4c:ce:35:a3:7f:82:f3:95:16:
                    53:f6:ab:fc:ac:ba:bd:7d:00:cb:5c:b5:2d:89:2d:
                    aa:03:fd:c6:87:9f:4b:28:b9:ea:24:35:53:92:fa:
                    19:6c:c7:e0:43:6c:62:b4:3b:48:7c:70:a7:fa:65:
                    5a:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A8:32:21:D8:49:FB:46:F4:02:2C:DB:26:F4:0B:2C:05:FB:71:75:63
            X509v3 Authority Key Identifier:
                keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:5b:13:5b:fe:72:a9:c0:8b:27:d5:c3:d8:b7:24:c1:43:bc:
         34:fa:18:b8:c0:df:5b:5e:2c:e5:73:fd:f8:7b:13:19:59:cf:
         32:84:13:47:c4:1e:67:e4:87:e1:3e:e5:2e:11:bb:31:68:9c:
         b8:cc:68:0c:27:a3:cb:1a:3d:25:16:4d:c4:33:00:eb:ed:d7:
         cd:79:33:83:e1:bd:0c:18:00:7f:6c:e9:44:d6:9e:32:2d:7d:
         a0:18:85:3d:bc:a8:d6:ed:4d:f3:90:47:e9:ca:0c:69:e8:8b:
         99:f0:70:ee:1c:53:73:cd:8d:3d:c8:1d:c3:b2:f4:a9:e4:41:
         b3:f4:65:a9:23:08:80:19:04:41:85:da:32:2b:42:d5:21:72:
         58:6e:76:51:b3:a4:44:fd:da:4d:ef:1a:02:b2:ae:ab:cb:29:
         7d:13:12:20:f7:2e:e5:6b:89:d7:c9:97:b1:d6:43:57:4d:23:
         d3:74:c6:b4:be:0b:b1:99:16:52:50:09:ee:9f:56:84:c1:c1:
         95:bd:4f:7e:0a:18:59:d6:74:85:8c:da:b7:5b:3d:40:78:df:
         89:0f:58:85:c5:cb:79:0f:51:20:69:95:4b:c1:35:fe:b7:f0:
         db:eb:71:95:ab:5a:3c:ad:38:20:37:ce:e4:f2:85:20:4d:f4:
         c3:3a:fc:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:20:19 2025 by rpki-client