Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft
File:                     TiWbqHpAtm2EKsjOCup4TkvXOC4.mft (raw, json)
Hash identifier:          gLy94JrPx5BFVLaCXuL2Sm7hRQQ545Jj7uCtTD9YsO8=
Subject key identifier:   EC:7D:24:49:E2:A8:CD:94:CB:9A:F4:D4:87:25:64:83:23:4E:F7:C4
Authority key identifier: 4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E
Certificate issuer:       /CN=A91E57A9/serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E
Certificate serial:       0107
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft
Manifest number:          0104
Signing time:             Sun 19 Oct 2025 07:57:41 +0000
Manifest this update:     Sun 19 Oct 2025 07:57:40 +0000
Manifest next update:     Sun 26 Oct 2025 07:57:40 +0000
Files and hashes:         1: TiWbqHpAtm2EKsjOCup4TkvXOC4.crl (hash: SCLxpyiqI43DY6p/8gEPnuMi370rPC/xSyHWRrN10ws=)
                          2: 4647BCD66E7F11EF9223EA62C4F9AE02.roa (hash: ktZfaMlA6IUEVI7ymclMb6B8SOgTxjLIP6VRKiXLA/E=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl
                          rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 07:57:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 263 (0x107)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E57A9, serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E
        Validity
            Not Before: Oct 19 07:57:40 2025 GMT
            Not After : Oct 26 07:57:40 2025 GMT
        Subject: CN=68f499f4-ca08
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:a8:ab:8c:fc:45:3c:ae:8e:1f:99:72:ae:32:
                    28:a7:37:e1:ff:65:4b:73:bc:99:c3:8c:71:c9:b2:
                    e2:81:1c:f4:73:f4:74:f9:9e:b4:cb:dd:3a:b1:86:
                    1b:8d:30:d6:bc:78:8e:e1:93:bd:33:33:89:37:5b:
                    8b:ad:9c:9e:06:2c:6a:f2:97:1c:e5:8f:fe:30:80:
                    8e:50:3b:b6:69:c0:35:37:be:37:8f:58:0a:79:89:
                    03:ac:c5:e5:1f:20:04:39:28:44:27:4f:37:a8:c9:
                    0c:ac:72:42:69:d0:8c:5d:b2:99:93:ee:81:eb:a5:
                    17:79:fa:26:90:dc:32:df:3f:28:89:4a:37:df:b9:
                    cb:58:33:e6:a6:9a:54:80:e0:f3:7d:31:26:68:da:
                    f6:3b:21:b7:b3:ab:7d:f5:33:7c:f7:2b:9d:f6:7e:
                    6c:f7:5c:db:5a:56:2d:57:cf:1c:9b:4c:39:71:91:
                    0b:0e:6f:ad:22:e6:fc:e4:6e:99:67:9e:fb:3d:64:
                    24:07:ef:c2:1b:9d:33:c6:3f:87:bd:3b:34:2f:1c:
                    13:10:c2:45:fc:e7:91:3a:93:fa:0c:f4:c7:9f:2a:
                    af:2e:4e:72:0b:41:75:d1:b4:18:2e:b7:24:be:3d:
                    d0:21:40:df:03:b4:35:2c:14:ee:68:8b:a7:58:20:
                    36:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:7D:24:49:E2:A8:CD:94:CB:9A:F4:D4:87:25:64:83:23:4E:F7:C4
            X509v3 Authority Key Identifier:
                keyid:4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:bf:71:30:f3:8b:6a:1f:a0:5b:f4:d7:66:46:8a:60:1e:fe:
         03:de:91:2e:1e:eb:26:d7:da:bf:62:a2:58:50:7d:70:00:2a:
         f6:51:be:a1:d2:47:26:59:8f:6c:a2:31:f8:79:25:89:b1:bd:
         b9:7f:19:b9:9b:eb:df:eb:25:44:87:01:92:25:5e:3d:0f:69:
         29:a4:12:02:84:cf:0d:19:ab:7e:b8:86:c7:2c:01:92:e7:55:
         b5:32:9f:13:6d:13:76:e4:63:42:31:bd:8a:6b:9e:32:81:26:
         fe:7f:58:54:21:9c:91:a4:32:a2:d7:99:d2:aa:e7:4b:85:21:
         3a:00:3e:f2:c7:97:a1:85:ff:87:57:94:db:a3:f6:f9:80:65:
         b0:e4:89:02:27:4a:34:21:fd:19:b5:5c:c3:76:f7:d4:e5:72:
         98:50:56:39:86:08:db:ec:58:e2:0b:de:f8:18:17:e0:83:34:
         f2:38:bd:9f:2f:7f:cc:2c:2f:28:1d:bf:b0:c2:28:e2:29:98:
         cc:06:bb:d8:eb:19:26:cf:f1:ac:d7:14:ef:8b:3b:eb:1f:80:
         08:96:db:f3:8a:5d:0e:e3:75:e9:8c:15:15:25:e9:4f:c0:b8:
         1f:8f:3c:7f:67:9e:35:52:31:a5:e6:47:fe:dc:45:cc:94:56:
         8b:30:4c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 01:11:57 2025 by rpki-client