Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft
File:                     iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft (raw, json)
Hash identifier:          G8/IXv/M4OgZ8/sjdm/dRJOoMfs5UPi2HM+Cnf/W5Ck=
Subject key identifier:   6F:72:E8:A2:D9:C7:4A:C7:7D:CC:47:52:F3:FB:B8:88:F2:F7:D4:36
Authority key identifier: 89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE
Certificate issuer:       /CN=A91F40E0/serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE
Certificate serial:       27
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft
Manifest number:          24
Signing time:             Sun 19 Oct 2025 11:18:38 +0000
Manifest this update:     Sun 19 Oct 2025 11:18:37 +0000
Manifest next update:     Sun 26 Oct 2025 11:18:37 +0000
Files and hashes:         1: iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl (hash: jR6ATBMBaipi6xXY0evoWl6cPXBVZRrd1KCHf3avz0w=)
                          2: 399480C4ACD011F08828DD7BC4F9AE02.roa (hash: yI8N6F4qsuPIqNv8+UqyC5GcVGdjbU6jQ0lT/VBamLY=)
                          3: 7C22B5E6ACD011F0921D9C7CC4F9AE02.roa (hash: q8Z6X3DeoMVrth4Q8UYf9kXqa/5qh/fwxwMPWXC7Eug=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl
                          rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 11:18:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 39 (0x27)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F40E0, serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE
        Validity
            Not Before: Oct 19 11:18:37 2025 GMT
            Not After : Oct 26 11:18:37 2025 GMT
        Subject: CN=68f4c90e-ce50
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:db:51:29:33:52:6b:b6:ee:c2:38:6e:bb:cd:
                    60:07:47:2a:1d:92:f5:a9:80:70:97:17:a1:a1:33:
                    52:1e:53:35:7e:16:57:2e:8e:8a:91:88:66:be:b5:
                    a0:01:5c:98:2d:c0:32:38:de:40:6c:6f:03:19:ad:
                    9f:ab:3f:73:78:96:cf:91:ff:b8:38:a7:c1:0d:f1:
                    bd:81:e6:6b:33:69:c9:8d:43:4b:b7:cc:bf:2f:84:
                    e1:60:b7:bc:53:d7:55:ef:ad:d5:af:b6:26:df:2c:
                    78:fd:8f:9a:72:c5:50:d3:5e:63:f3:f6:f6:45:18:
                    9b:3b:cb:34:3e:d7:42:0a:78:07:3c:f7:ba:2f:01:
                    f5:cc:e8:f3:0c:07:dc:35:3a:74:ac:ad:c8:65:1f:
                    79:b2:73:12:97:c6:1c:fb:a6:30:38:bb:67:69:75:
                    eb:a9:3f:a8:64:fe:4b:a4:46:1f:d9:ea:9e:cc:cf:
                    0b:be:3d:e5:55:a0:56:73:a3:2a:49:15:f4:7a:a2:
                    ef:40:2a:16:bb:29:37:6d:93:92:e9:72:ff:c2:ab:
                    15:bd:bb:65:5c:8e:b1:a0:6e:25:4b:63:55:39:68:
                    c0:f1:40:1e:1a:bb:3a:2a:9a:7b:61:d9:8c:cc:87:
                    b4:8d:bf:d2:3c:41:54:39:e7:4b:f1:9d:b1:90:5c:
                    a3:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:72:E8:A2:D9:C7:4A:C7:7D:CC:47:52:F3:FB:B8:88:F2:F7:D4:36
            X509v3 Authority Key Identifier:
                keyid:89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a6:18:00:1d:90:e7:4b:8d:c5:43:b1:03:18:a2:85:bc:66:6b:
         7a:68:89:1c:22:2f:87:ef:0d:30:38:f1:50:24:2d:4f:42:88:
         a0:45:10:6e:0e:6f:ff:39:96:86:d1:76:3f:a7:df:e5:62:0a:
         7c:a0:13:71:c0:88:56:78:f8:0c:12:03:49:58:03:39:27:6f:
         0a:21:5c:b3:04:d0:cd:67:e2:b6:18:68:07:ae:14:7b:fa:71:
         98:fd:2d:c3:18:fd:d3:9c:fd:5c:49:cf:c5:52:90:b0:10:41:
         6e:ee:b2:af:fc:2c:fa:81:9f:7c:09:24:58:f8:ac:ae:25:21:
         70:e9:bd:36:f2:1c:2d:7c:d9:9a:ba:28:d8:0b:20:3a:f6:e8:
         5c:b8:41:5b:b0:1e:dd:84:90:a1:db:88:0f:fc:75:65:99:d4:
         16:e0:d0:9a:7a:69:fe:8f:d2:91:17:ae:06:97:17:73:43:b9:
         1d:a5:fd:f9:f8:b6:29:c6:47:e3:59:fe:e1:6a:de:62:90:32:
         14:cf:1b:91:dd:af:6c:23:a0:aa:4f:00:71:ee:f8:9e:d0:07:
         2f:99:d6:81:50:05:ee:59:b6:cd:67:64:67:c5:f7:70:33:2a:
         a4:d3:c2:ff:ae:9e:8f:d7:d5:e4:e4:e3:50:78:23:de:cf:0c:
         62:a4:8c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:40:34 2025 by rpki-client