Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft
File:                     xIKbbAf9gE3wklz_wWHGcCgHoCY.mft (raw, json)
Hash identifier:          KB2HyfM5m4D/pp+Np1hbducfQ1MOsHsKRlNRQlEmIps=
Subject key identifier:   42:1A:85:AC:BF:C6:60:EB:BB:9A:B2:8C:93:72:12:6C:DE:50:5B:3F
Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26
Certificate issuer:       /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026
Certificate serial:       0A53
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft
Manifest number:          0A1D
Signing time:             Sat 18 Oct 2025 20:52:12 +0000
Manifest this update:     Sat 18 Oct 2025 20:52:11 +0000
Manifest next update:     Sat 25 Oct 2025 20:52:11 +0000
Files and hashes:         1: xIKbbAf9gE3wklz_wWHGcCgHoCY.crl (hash: Axe6oVNDp4nAPEqwUWbEhmqtQU6NNenpCUy8qMMyWs0=)
                          2: 7A976A4E0A7011F0AA901820C4F9AE02.roa (hash: fT5I6I+PgWW4dacN3a4Ms0RKDB8N3MNCREMj8FDesrg=)
                          3: 0FD437CAC11811EE8328EF7AC4F9AE02.roa (hash: 2Dd7cd8I4OSARGKZ0mccoyZW6iVZIc9ObRTGe4O/Dcc=)
                          4: 9406C1209FDB11EDB88C5662C4F9AE02.roa (hash: NOfiYVkjVgVKJdndF7rjEsZWLBXmxcXaA+rDg1JFfcI=)
                          5: E8137EDEA29011EAA7A47878C4F9AE02.roa (hash: eb8Dxmgs1pJ56B+p/g4fWelI2bfJeXR9VvaW0O1EVCY=)
                          6: FBA017C0B26F11EF9B327759C4F9AE02.roa (hash: Fh5T2BpUHXj8z7zvCSIDzf9GCkAnUEieH5BE04K3ZeI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl
                          rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 20:52:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2643 (0xa53)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E7E45, serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026
        Validity
            Not Before: Oct 18 20:52:11 2025 GMT
            Not After : Oct 25 20:52:11 2025 GMT
        Subject: CN=68f3fdfb-6efa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:07:9a:a9:de:35:ca:30:c4:8d:c8:dd:11:e7:
                    36:94:0c:4b:65:b5:0f:b6:aa:70:a4:66:21:3f:12:
                    01:3d:1a:6c:11:e0:82:80:46:5e:36:51:8f:c3:d7:
                    b5:5d:d5:32:da:21:b7:0e:c3:2c:ca:ef:a9:ce:db:
                    8e:f3:f6:b1:6f:b4:6e:80:8c:85:cf:91:6d:fc:61:
                    19:d6:fa:4a:72:1e:fa:65:a6:f7:b2:4a:f2:5c:d8:
                    ff:24:eb:e0:19:37:a3:21:80:9a:cb:e9:08:54:17:
                    8a:b6:1d:57:26:49:44:fd:73:5d:09:ff:c5:97:40:
                    73:90:ed:a7:ca:89:cd:63:38:b9:08:c7:0b:44:02:
                    75:3d:b7:9b:40:d1:f5:0e:73:9e:bd:0f:94:c1:d0:
                    d2:ef:e2:50:a4:cd:6e:3a:ee:89:b5:ca:8b:06:04:
                    0a:f2:89:68:82:cc:c7:e8:47:b9:13:a0:6f:bd:c1:
                    72:6a:ad:c9:07:58:a6:38:ce:0c:73:fd:75:05:1f:
                    ac:07:ee:b7:42:f1:4f:98:ab:79:ad:3f:ad:79:ee:
                    e1:32:50:b6:84:6b:aa:e0:a7:4d:df:1f:ea:a5:aa:
                    db:2f:77:46:f6:b7:42:8f:ca:b5:76:ec:e3:b5:10:
                    40:cf:e8:8b:5c:9a:62:87:6e:3b:7d:0e:9c:7c:69:
                    b1:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:1A:85:AC:BF:C6:60:EB:BB:9A:B2:8C:93:72:12:6C:DE:50:5B:3F
            X509v3 Authority Key Identifier:
                keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:fc:ac:a6:33:cf:d6:be:fe:e3:36:65:4b:66:6a:0c:68:fe:
         8e:00:15:d0:a4:04:2e:53:d7:7d:99:01:10:fd:0d:f2:65:c7:
         2d:da:db:a6:26:d9:8b:4b:5a:d5:5c:76:14:50:98:d8:1f:e1:
         fe:7d:0b:f3:0b:ed:7d:8b:d0:e6:c8:01:2c:1a:2d:07:2f:10:
         81:47:bb:4c:db:a8:be:a6:31:d8:45:44:19:32:a9:2f:6a:f9:
         01:4c:63:27:9d:dc:68:a4:87:3d:50:af:fc:4c:9b:7a:30:27:
         5f:d9:2f:0e:e7:e4:49:ce:43:46:2b:f1:39:f4:e4:e3:93:55:
         06:27:3c:34:ee:76:db:59:99:ec:ab:76:fa:21:c5:2b:8a:22:
         40:32:e6:b7:41:bf:1c:a5:f4:ee:e7:c0:9a:76:3c:db:2c:77:
         4a:54:41:43:fb:8a:75:76:24:9e:fb:50:f6:de:b2:bd:02:38:
         ed:a8:cb:06:7d:d6:52:b5:4a:a3:28:03:f4:bd:8d:bc:97:28:
         3f:73:c8:08:35:ca:1f:8d:2b:03:97:be:c9:30:b1:16:dc:c7:
         b9:5f:9f:d5:e0:5e:1e:e4:45:a5:6e:0d:82:72:68:b2:63:1f:
         4e:46:3e:94:92:12:7c:f0:f2:23:1d:53:83:ee:e4:11:98:36:
         b7:80:ad:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:40:28 2025 by rpki-client