Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft
File:                     grTScd4hLgYzXAtF5mUXtQi4NRY.mft (raw, json)
Hash identifier:          wX8Qkc07YN5YyRo6qPWCYv3urA2SedBoylL1FSdz4XA=
Subject key identifier:   38:FD:BE:D8:57:42:0C:56:4A:09:F8:1F:3D:D8:9A:78:F2:E7:24:80
Authority key identifier: 82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16
Certificate issuer:       /CN=A91E379F/serialNumber=82B4D271DE212E06335C0B45E66517B508B83516
Certificate serial:       F6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft
Manifest number:          F3
Signing time:             Sun 19 Oct 2025 08:14:00 +0000
Manifest this update:     Sun 19 Oct 2025 08:13:59 +0000
Manifest next update:     Sun 26 Oct 2025 08:13:59 +0000
Files and hashes:         1: grTScd4hLgYzXAtF5mUXtQi4NRY.crl (hash: ho/nEVul95Wuvd2P004V4+jHJpZeDVHwDEY1UjW4SDE=)
                          2: 621428CE3CFB11EFB0BF040BC4F9AE02.roa (hash: cLX/NcpRBUgL7nqhk0rMjH0omx3nN9XKcz3vUbvy2EE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl
                          rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 08:13:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 246 (0xf6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E379F, serialNumber=82B4D271DE212E06335C0B45E66517B508B83516
        Validity
            Not Before: Oct 19 08:13:59 2025 GMT
            Not After : Oct 26 08:13:59 2025 GMT
        Subject: CN=68f49dc7-0afc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:2e:b6:47:4b:de:c3:dc:56:4d:bf:1e:3d:0a:
                    2b:2b:91:b2:3d:00:05:64:89:6b:63:b9:db:8e:f7:
                    e8:f6:e8:b1:a6:8d:34:72:eb:cc:0c:e7:b4:e7:4e:
                    1e:ce:94:36:73:76:f8:2a:de:62:21:b4:5f:f8:2d:
                    e8:3d:69:38:d0:b0:53:fc:13:14:98:f2:8f:48:31:
                    0a:4e:5c:28:96:d2:a3:a6:03:90:8a:88:9c:21:d0:
                    8c:30:0b:35:cd:59:00:56:1b:a9:66:f4:36:be:c8:
                    31:da:94:58:26:d5:d1:34:05:db:17:7d:7f:72:84:
                    1e:c2:e0:30:9c:bf:cc:1a:f6:77:ea:4b:5e:c5:dd:
                    f1:85:f1:e6:bd:09:0c:98:15:79:70:40:41:21:ae:
                    a5:1f:da:bb:9c:7d:23:de:6a:d8:33:ed:83:99:9b:
                    66:26:1b:69:38:b2:f1:68:56:5f:4c:73:19:88:c5:
                    9b:14:5c:75:26:f1:9d:ae:1a:4d:b4:a3:1c:6e:b2:
                    88:be:2a:6b:f5:ed:a4:ad:ba:1e:8e:8e:69:35:01:
                    bc:ec:c8:73:f1:2d:21:fb:1e:e8:74:68:f4:09:72:
                    8c:9a:d1:c7:ac:4b:9e:7f:56:71:f4:de:0d:c1:c8:
                    06:88:8a:39:bd:c3:b2:50:1e:a0:42:87:1d:bf:ae:
                    e6:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:FD:BE:D8:57:42:0C:56:4A:09:F8:1F:3D:D8:9A:78:F2:E7:24:80
            X509v3 Authority Key Identifier:
                keyid:82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:55:65:3c:35:42:2b:12:40:2d:d5:8c:d1:80:3c:e3:12:82:
         4c:ad:f6:48:1d:57:11:da:32:29:2f:70:c7:1c:7c:a9:bd:8f:
         cb:b2:ed:3f:fd:43:8b:75:5e:ce:bc:33:e8:37:ca:d0:e7:cd:
         34:5e:d3:4f:d8:b5:28:a3:a9:55:db:e3:c8:84:9a:06:d2:a9:
         5d:51:d5:7e:7a:d1:b2:30:fa:73:cd:56:d6:c4:55:6f:55:7a:
         06:d5:59:2c:41:88:6b:5f:f9:3d:71:60:18:50:4e:98:64:6b:
         2e:ce:1c:36:7e:14:8d:d0:69:21:7b:9e:14:00:20:86:d1:c8:
         b8:6f:89:a1:ae:7e:60:9e:59:94:52:82:f0:be:94:84:f0:dd:
         45:36:c2:b4:cc:ad:e7:4b:b8:4c:48:86:a8:19:f5:cc:3f:5c:
         0a:d3:6f:31:cb:6d:79:08:97:eb:97:fa:a5:c3:4e:7e:9d:e6:
         f5:bf:d5:7d:93:f5:44:c1:fa:aa:ab:26:39:69:29:82:e1:4e:
         de:7a:ef:a9:fa:fd:e3:f6:06:e1:28:98:45:d8:93:a7:be:dd:
         26:8c:5a:4a:e1:67:85:93:31:21:8b:54:6a:69:2f:a3:f3:41:
         ee:45:ef:49:7a:a3:0d:12:3c:44:7b:5f:7c:59:2c:95:4c:62:
         25:36:06:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:40:35 2025 by rpki-client