Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft
File:                     76QjuvW_0YkxbmUDHozq9aP_oUs.mft (raw, json)
Hash identifier:          z++dgFkcLnuECSP57xwd+sloF6o/guGmNwKgZPcmZGU=
Subject key identifier:   B5:B1:42:C3:BA:76:16:93:EA:8D:99:27:40:B5:97:E7:60:22:0B:D5
Authority key identifier: EF:A4:23:BA:F5:BF:D1:89:31:6E:65:03:1E:8C:EA:F5:A3:FF:A1:4B
Certificate issuer:       /CN=A91F264C/serialNumber=EFA423BAF5BFD189316E65031E8CEAF5A3FFA14B
Certificate serial:       70
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft
Manifest number:          6C
Signing time:             Sun 19 Oct 2025 10:21:31 +0000
Manifest this update:     Sun 19 Oct 2025 10:21:31 +0000
Manifest next update:     Sun 26 Oct 2025 10:21:31 +0000
Files and hashes:         1: 76QjuvW_0YkxbmUDHozq9aP_oUs.crl (hash: Ac4m6qEWBpx+zaF4zCkwBSj76PcHB5HZ2D6ZbKgZxEA=)
                          2: DB5AB9A0195A11F081485C3AC4F9AE02.roa (hash: JaGf75N3pf7IqU+djnr2Hy5ZxGye9c0JY8fFDo/3ks0=)
                          3: DFFEA4B47DA811F099EED066C4F9AE02.roa (hash: +Swxw+RWaMzKezJT4sLmr+6sX9zbG1r9DoCRoOjCRH0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.crl
                          rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 10:21:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 112 (0x70)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F264C, serialNumber=EFA423BAF5BFD189316E65031E8CEAF5A3FFA14B
        Validity
            Not Before: Oct 19 10:21:31 2025 GMT
            Not After : Oct 26 10:21:31 2025 GMT
        Subject: CN=68f4bbab-5c23
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:fb:21:f8:35:0a:87:5b:cc:04:dd:4b:af:06:
                    aa:cc:00:9e:46:04:8e:0e:ba:f5:9c:90:72:7a:cd:
                    e4:cc:31:f0:9d:00:f1:66:19:df:33:92:32:f1:65:
                    f0:8d:b4:5f:f4:9e:00:0d:49:91:2d:3b:8f:71:26:
                    f8:07:0f:d7:85:7f:fd:69:32:f2:1e:0c:cf:54:fe:
                    0e:e6:80:58:fc:79:34:89:42:40:df:bd:84:89:af:
                    de:27:dc:76:58:24:cf:12:5c:0a:bc:c8:eb:dd:99:
                    da:f9:0e:4c:64:06:27:94:e5:7e:6c:47:96:8c:d1:
                    71:42:35:46:01:2a:b0:5e:e5:fe:e7:e4:b1:6d:57:
                    a1:9d:1f:13:89:9e:3b:94:d0:1f:33:bd:eb:dc:40:
                    22:2b:45:b1:ad:4c:8b:2b:00:21:bc:ba:9c:e2:e0:
                    f9:3b:cd:8e:74:d8:4f:2b:eb:2b:af:ed:3d:19:d4:
                    f9:03:f5:05:28:18:23:05:e6:93:31:0a:03:7b:cd:
                    cb:de:5d:51:60:ff:f0:e4:26:d0:b5:85:2f:36:2d:
                    8b:8e:ad:4b:25:f7:7b:03:21:c7:ee:82:87:76:1c:
                    24:e7:8d:47:cc:66:cf:ac:7b:09:2a:c9:e0:cc:48:
                    17:00:14:7c:be:31:62:7b:02:2d:18:97:d7:28:6b:
                    b1:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:B1:42:C3:BA:76:16:93:EA:8D:99:27:40:B5:97:E7:60:22:0B:D5
            X509v3 Authority Key Identifier:
                keyid:EF:A4:23:BA:F5:BF:D1:89:31:6E:65:03:1E:8C:EA:F5:A3:FF:A1:4B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:59:56:44:0f:e5:d7:65:68:18:e6:55:a4:fc:cc:4a:e9:dc:
         04:89:d5:10:d1:0e:36:1a:17:cd:38:35:0b:1d:b8:e3:43:1b:
         8b:d3:d8:30:56:e4:1f:31:7b:89:85:81:5b:c4:6a:47:69:f6:
         6b:22:d7:ee:4e:45:3e:f6:1f:96:a4:90:bd:56:23:7b:eb:e3:
         af:98:c4:22:af:73:b1:74:ba:00:69:df:e7:7b:8e:d8:32:46:
         e6:ed:0e:0d:d8:b0:ee:05:54:21:fa:ad:df:de:9f:7b:0e:0d:
         04:20:d5:20:c1:12:4a:ef:04:a3:36:11:ea:8a:72:4e:6b:32:
         90:54:c6:3f:92:fd:05:fc:90:72:10:89:1e:e4:52:05:4e:af:
         8e:b8:87:44:38:8f:9d:f3:79:8e:98:8f:0c:0a:9a:85:3c:25:
         c1:48:bf:a8:56:e5:62:ec:b5:69:ea:d9:f3:a8:13:71:1d:bc:
         59:7b:7b:31:aa:d1:36:a9:fe:48:41:7d:01:4c:ce:d1:c2:a9:
         39:c3:39:97:23:6d:15:69:d8:74:94:f2:bd:43:a9:76:a2:c5:
         9c:f9:a1:a5:dd:89:4b:20:43:b5:0c:ff:80:34:ef:3d:e9:16:
         e5:03:0c:ed:59:87:50:3f:48:43:ce:85:2f:56:d3:87:5d:34:
         fc:ce:d9:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:42:56 2025 by rpki-client