Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft
File:                     km2a3G-4c9dlu0EicoDB8RhG7hc.mft (raw, json)
Hash identifier:          csreFgyceuUs4yN9nRhCvb0V4HwNKwaxKLT/f2wTrQ8=
Subject key identifier:   74:9F:D9:EA:47:AB:BF:BB:AF:0E:A6:43:97:A7:C1:74:AD:76:A2:C2
Authority key identifier: 92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17
Certificate issuer:       /CN=A91EBA0E/serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17
Certificate serial:       01FF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft
Manifest number:          01F5
Signing time:             Sun 19 Oct 2025 04:59:38 +0000
Manifest this update:     Sun 19 Oct 2025 04:59:38 +0000
Manifest next update:     Sun 26 Oct 2025 04:59:38 +0000
Files and hashes:         1: km2a3G-4c9dlu0EicoDB8RhG7hc.crl (hash: Alx8Mj2LV0OFyWLg1KH3kxCUZGmAlzfA989xE4y0mco=)
                          2: 1B5E26228FA911EF90043A7CC4F9AE02.roa (hash: Kf03AsTj/sjKaJ/vafb1jrYT0WQ+1IyxISSmBFOh+2M=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl
                          rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 04:59:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 511 (0x1ff)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EBA0E, serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17
        Validity
            Not Before: Oct 19 04:59:38 2025 GMT
            Not After : Oct 26 04:59:38 2025 GMT
        Subject: CN=68f4703a-d5a8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:9e:52:74:fa:de:49:50:6f:d6:f5:51:92:59:
                    31:52:fd:f0:36:24:66:e6:02:bb:2e:18:fe:fa:46:
                    d4:36:2e:1d:38:c7:ba:46:53:a0:a9:7a:75:0f:3d:
                    a5:68:12:3a:0f:ef:45:11:23:9a:c3:fc:1f:11:87:
                    ae:59:69:b7:99:88:33:44:33:d5:ed:b5:a5:bb:bd:
                    c4:6c:fe:f2:aa:79:db:9f:bc:a1:a3:c6:26:e1:6f:
                    89:05:14:24:5b:73:6b:44:12:9c:44:9c:28:60:5c:
                    50:d3:c7:e0:fd:46:dc:71:24:fd:bf:dd:f4:45:c5:
                    42:38:7d:02:d5:2a:7a:01:1e:6d:db:f3:19:8f:c6:
                    ed:d8:0c:4b:4f:bb:ba:a1:f5:6a:00:a0:ee:4d:87:
                    8e:21:d5:ce:0c:e3:f5:42:78:d8:42:93:73:a4:6d:
                    01:68:d9:27:31:2f:b1:fd:2e:55:71:31:47:d8:98:
                    ee:8e:34:8f:fa:5d:18:65:14:35:19:e3:67:10:46:
                    8f:ce:39:15:0a:f3:fb:cb:86:f1:37:f0:1c:0e:9c:
                    1e:8f:1c:ab:c5:ca:c6:04:71:12:26:a1:24:d2:7f:
                    b3:a2:b1:8b:0a:65:75:04:8c:df:07:c3:4e:17:44:
                    f4:69:a9:74:be:8d:b4:f0:e7:ae:b3:e4:34:63:14:
                    61:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:9F:D9:EA:47:AB:BF:BB:AF:0E:A6:43:97:A7:C1:74:AD:76:A2:C2
            X509v3 Authority Key Identifier:
                keyid:92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:ce:20:53:8e:40:40:df:84:10:cd:f5:55:35:08:18:c3:03:
         0c:9c:fc:1f:1b:38:cc:70:da:47:c9:07:f0:8d:a4:e4:c5:dd:
         34:3b:3b:15:a4:cd:ac:c3:99:12:a6:4c:87:37:3f:a0:e6:85:
         56:cb:dc:ef:e6:33:c1:5c:64:5f:37:39:66:8f:e0:7c:2f:ab:
         b5:38:30:95:f7:83:9e:f5:f6:a9:74:12:73:6c:56:4b:1c:3d:
         d3:b0:9a:dd:4d:61:bc:01:48:53:27:29:cb:99:51:05:86:8b:
         90:ce:fb:3e:7a:12:0d:3b:53:2e:b2:4f:bc:9b:77:92:46:bb:
         6d:24:12:75:04:0c:1c:99:27:53:3e:7e:e7:71:79:51:e8:5a:
         cc:c5:65:92:6a:e4:de:6d:0c:7a:d2:37:22:18:a4:d8:02:3e:
         65:4f:9a:94:19:22:27:1c:cc:cd:10:89:be:81:bf:5e:14:2e:
         19:ae:56:a0:3d:a3:a8:6a:be:00:da:c4:15:c5:46:f8:df:8c:
         8c:b4:bb:7f:c9:30:52:14:00:12:6e:1f:32:19:62:01:a0:21:
         f0:c7:99:d8:59:6b:f1:0f:69:a5:f6:3a:58:ac:f7:5e:a2:c5:
         0e:ee:9c:d6:a1:50:cb:1d:00:82:b5:19:24:91:40:e0:b1:66:
         94:ef:e7:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:16:27 2025 by rpki-client