Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft
File:                     qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft (raw, json)
Hash identifier:          PQLnojZKuuUfmyIvyz4cy4dBN/hFQcILKYbZJpDCF7o=
Subject key identifier:   65:47:F8:B4:F5:42:C4:FE:7E:0E:DF:3B:54:46:CE:0F:50:35:04:B6
Authority key identifier: A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5
Certificate issuer:       /CN=A91F5216/serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5
Certificate serial:       0228
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft
Manifest number:          0222
Signing time:             Sun 19 Oct 2025 04:21:47 +0000
Manifest this update:     Sun 19 Oct 2025 04:21:47 +0000
Manifest next update:     Sun 26 Oct 2025 04:21:47 +0000
Files and hashes:         1: qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl (hash: by8TaUD1j+6qVW+VLAHEcIqiLc1oxhN9Pz4mz2T2Fc4=)
                          2: CDA9BB546E0C11ED8BF41547C4F9AE02.roa (hash: 5xUQVljU0BWWuc6LYolHHzG3Hqi8KmssX696YCKuce8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl
                          rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 04:21:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 552 (0x228)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F5216, serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5
        Validity
            Not Before: Oct 19 04:21:47 2025 GMT
            Not After : Oct 26 04:21:47 2025 GMT
        Subject: CN=68f4675b-932a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:12:36:36:10:16:86:c7:7a:eb:48:65:76:91:
                    6d:0c:fa:25:af:60:12:a6:45:0f:ef:f3:fb:17:b2:
                    20:33:da:21:bb:be:86:84:d0:3c:54:66:1b:63:15:
                    ae:95:b1:a2:01:be:44:20:c8:fd:3c:c1:69:7c:7e:
                    53:d1:fe:59:e6:de:e6:b6:69:7e:78:d5:a4:d0:9c:
                    ec:42:94:d8:cd:23:3b:30:e6:32:a2:f2:86:4a:54:
                    50:06:94:fe:ec:49:4f:01:28:1c:2a:52:d3:44:ce:
                    28:1a:58:d1:92:8a:21:95:27:3d:28:d1:2e:23:2e:
                    dc:71:59:2f:68:d0:ed:bf:d9:28:12:6a:06:3a:a2:
                    0c:ac:31:a2:c4:11:b8:15:f0:81:68:50:61:01:21:
                    58:04:7a:73:bb:ca:e9:a7:14:b7:8b:cb:5d:43:74:
                    5e:82:ab:84:80:17:16:a3:99:73:29:fb:b1:59:b9:
                    19:23:24:9c:a6:9f:91:3e:43:86:df:5f:26:06:eb:
                    2f:f6:f4:1c:a6:eb:a1:e8:d3:2b:33:00:3a:9f:66:
                    cf:d9:d3:46:05:2b:b6:56:06:bd:84:cd:3f:4f:0b:
                    d7:d2:91:3b:7c:98:03:ea:a8:95:93:ac:d8:a7:89:
                    7b:7f:06:ee:cf:c2:c3:20:7d:6b:c8:b9:79:5a:30:
                    1f:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                65:47:F8:B4:F5:42:C4:FE:7E:0E:DF:3B:54:46:CE:0F:50:35:04:B6
            X509v3 Authority Key Identifier:
                keyid:A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:8b:24:a7:a1:c9:a5:f7:4d:c7:42:b9:96:8c:27:25:bf:a6:
         64:44:82:2c:0a:aa:23:ec:55:60:3e:6e:ca:53:98:8e:e7:a6:
         e7:9d:a5:4c:d2:69:cb:a2:fd:73:97:53:ba:54:24:c8:c8:89:
         76:5b:88:7e:13:01:81:a8:de:1d:0a:d2:9c:f2:d4:b8:5b:bc:
         fd:ce:38:ec:d6:99:23:8b:6a:40:7c:cb:b5:56:05:6d:01:7c:
         ca:bf:3d:8f:c9:2c:3f:96:bf:eb:92:86:76:35:1f:34:01:0f:
         bb:e3:dc:22:6f:bc:1b:f6:5b:81:87:34:09:23:bf:4f:26:17:
         bd:a5:71:80:9d:0f:5b:f6:e5:93:c1:c4:c2:77:43:58:0a:7e:
         e0:73:cb:f1:11:6b:28:76:b5:f8:19:02:da:3f:1a:92:9d:e8:
         12:a1:72:5e:9b:58:f6:6f:27:d4:c5:be:c7:50:ce:c0:7f:3d:
         6a:34:55:13:34:b8:14:b5:17:40:1e:c8:45:5d:58:94:32:42:
         fc:75:d7:b0:c1:3b:0d:b2:2c:c3:4e:f9:73:13:0c:21:7e:1d:
         0b:06:1c:9b:88:c6:d5:6d:e5:c3:1f:4a:46:e7:32:a3:9c:72:
         e9:ca:e2:a2:93:e4:7f:71:a6:44:5e:47:69:c8:42:04:6f:5b:
         2a:16:bb:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 23:31:57 2025 by rpki-client