Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft
File:                     0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft (raw, json)
Hash identifier:          T7tpXeGqtCjKpkP9wk4flsD9lYKOmk6649lrPdwEXEQ=
Subject key identifier:   F3:F9:EA:DC:4C:AE:B5:B7:05:0E:D3:77:8D:7B:A0:59:86:76:F3:E2
Authority key identifier: D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51
Certificate issuer:       /CN=A91DA8C2/serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51
Certificate serial:       72
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft
Manifest number:          71
Signing time:             Sun 19 Oct 2025 10:13:47 +0000
Manifest this update:     Sun 19 Oct 2025 10:13:46 +0000
Manifest next update:     Sun 26 Oct 2025 10:13:46 +0000
Files and hashes:         1: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl (hash: EkLsesXeDKX2Ra8H0ihm9+nRqKGmN17006WNl3ywO4o=)
                          2: 32EE2B68005411F08A6FEB4BC4F9AE02.roa (hash: wwcr+8+DOyZmloRteEL56x1j3vM+7vfdbP5INKVgy7U=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl
                          rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 10:13:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 114 (0x72)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DA8C2, serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51
        Validity
            Not Before: Oct 19 10:13:46 2025 GMT
            Not After : Oct 26 10:13:46 2025 GMT
        Subject: CN=68f4b9db-7038
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:46:8f:44:bd:a7:79:48:66:6a:73:73:57:2d:
                    4f:c2:54:3c:a8:ef:30:a5:43:3e:56:71:f7:fe:9e:
                    30:c7:80:09:a2:46:83:c7:d3:fb:20:d1:ae:6a:ee:
                    3d:4f:f2:b1:19:c0:b7:c4:7d:e6:1a:6f:f3:27:86:
                    2f:97:c1:6b:a6:9d:14:40:2d:a8:bb:76:a7:00:86:
                    aa:99:b4:14:b3:cd:2b:53:2b:97:70:81:32:66:9b:
                    a1:94:b2:c9:10:0a:75:f9:1a:9a:08:3c:70:82:9f:
                    55:47:d4:fd:96:c7:2f:0b:84:cd:4e:64:ce:f6:19:
                    07:bf:ca:a0:ee:a7:90:9e:33:5a:fe:d8:60:b2:d1:
                    4b:08:4b:07:28:d2:3f:04:76:d3:78:47:b3:00:6d:
                    02:14:66:84:e3:7d:67:b1:73:ae:b4:ca:1b:59:b9:
                    35:7c:27:4e:3b:74:19:c1:03:07:55:16:1b:56:74:
                    61:31:45:21:b7:90:6b:1c:00:48:8d:47:4c:b4:c8:
                    3a:3e:af:5d:60:5b:e4:e2:12:04:48:e8:6f:50:eb:
                    11:a0:d3:27:e2:62:85:c1:5b:2c:12:25:bb:94:ac:
                    a9:8c:54:19:97:57:8b:8b:ca:f7:96:3b:9b:12:e9:
                    af:73:10:fb:f2:02:9b:17:25:bd:90:6c:74:5e:bd:
                    f2:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:F9:EA:DC:4C:AE:B5:B7:05:0E:D3:77:8D:7B:A0:59:86:76:F3:E2
            X509v3 Authority Key Identifier:
                keyid:D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         82:a4:77:06:5e:4e:dc:f7:42:68:3c:c8:fc:1b:52:7a:91:ed:
         4e:13:03:30:cf:f5:2b:0d:bc:82:4a:91:90:01:f4:93:90:07:
         93:b6:58:da:d4:50:da:2d:c3:50:cf:15:60:42:5e:40:2e:06:
         d0:d5:85:b3:f1:56:36:10:e9:cd:c8:89:13:dd:1b:2b:3c:e9:
         79:d5:c4:8c:cc:b9:d9:09:e6:c9:94:89:c3:db:54:9e:91:97:
         56:eb:49:b5:87:93:93:91:e9:9c:58:e3:1c:52:39:ee:57:1f:
         e4:e5:b2:97:5f:9b:23:bb:6a:bc:59:95:90:e7:9a:4d:d6:6b:
         1e:6a:b3:e7:eb:83:2f:21:4c:db:ea:8c:21:96:59:e0:89:78:
         da:ba:8f:b8:0a:bd:b8:79:12:16:88:49:ff:97:93:16:81:ab:
         5a:ab:be:1c:f7:39:57:bd:ac:02:5e:f8:62:f6:2d:c1:22:48:
         21:28:9f:15:83:2f:ac:f5:1c:84:26:a2:55:af:81:f0:76:3a:
         07:3d:57:b9:5c:9a:83:e3:ce:b0:ec:6c:b9:bc:b6:f4:29:cb:
         a2:e0:23:0b:e6:41:f4:31:79:00:af:1d:b2:21:02:cd:5b:cf:
         5e:94:f2:b3:32:23:6a:5b:d5:1a:f1:3c:91:a7:d7:dc:39:8b:
         b1:76:da:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:25:24 2025 by rpki-client