Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft
File:                     b5wj5AN3j-Ace8lQiL_R5rMoqps.mft (raw, json)
Hash identifier:          CayIiQuNFG9IacW1IVaxifeGSJkFS97SEycARIcyWmg=
Subject key identifier:   5B:EE:B7:83:70:7F:67:1E:72:13:C4:6E:49:4E:1C:55:E6:DF:8E:F4
Authority key identifier: 6F:9C:23:E4:03:77:8F:E0:1C:7B:C9:50:88:BF:D1:E6:B3:28:AA:9B
Certificate issuer:       /CN=A91DB6FB/serialNumber=6F9C23E403778FE01C7BC95088BFD1E6B328AA9B
Certificate serial:       0184
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5wj5AN3j-Ace8lQiL_R5rMoqps.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft
Manifest number:          017F
Signing time:             Sun 19 Oct 2025 06:21:00 +0000
Manifest this update:     Sun 19 Oct 2025 06:21:00 +0000
Manifest next update:     Sun 26 Oct 2025 06:21:00 +0000
Files and hashes:         1: b5wj5AN3j-Ace8lQiL_R5rMoqps.crl (hash: 6NSXtpB+ZPZhXdanH/KIRWSsUm39CAQ8zn3RZPhQt+8=)
                          2: 4F445CCE1FF311F0833FC50BC4F9AE02.roa (hash: nA6vWTnL300uu4FggAV8AGO2ytFxA/RG7/FrDd5UCmg=)
                          3: 512CFEFE68BD11EE87942B4EC4F9AE02.roa (hash: wxzifKiO/1duDLAOqG/EgJqXNOBnq5EBtgG/0AK/VlY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.crl
                          rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5wj5AN3j-Ace8lQiL_R5rMoqps.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 06:20:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 388 (0x184)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DB6FB, serialNumber=6F9C23E403778FE01C7BC95088BFD1E6B328AA9B
        Validity
            Not Before: Oct 19 06:21:00 2025 GMT
            Not After : Oct 26 06:21:00 2025 GMT
        Subject: CN=68f4834c-aacc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:23:ed:9f:ad:b2:9b:7a:cd:c6:f8:78:f0:f3:
                    38:db:a4:f9:2a:a7:17:f1:f9:63:d4:40:bf:f4:90:
                    b0:1c:d9:e1:5f:36:b3:a3:43:de:cb:19:f0:9b:39:
                    7d:88:8f:1f:3a:db:d0:23:a7:a9:0c:68:ec:26:96:
                    ee:45:8f:56:08:e1:22:75:37:13:07:96:b3:89:19:
                    32:44:7c:31:50:e0:e4:f4:d4:1a:b9:5e:55:cc:22:
                    24:f4:55:3e:93:e1:ff:0e:16:89:b8:8e:82:b2:23:
                    4f:9d:43:32:9f:1c:94:8c:e4:4e:1a:e8:60:ed:c0:
                    d8:11:63:bb:b6:4b:35:ac:4c:24:09:f9:6f:50:79:
                    5e:a3:84:c7:34:ba:54:fa:4f:62:0f:13:87:b8:50:
                    99:99:0e:15:3e:3a:a3:ba:27:0d:ea:e0:75:fc:b7:
                    27:99:79:b0:02:51:d1:3a:17:89:f9:3c:ea:d0:e3:
                    9f:01:e7:40:06:86:d6:05:af:82:15:f9:23:5e:8e:
                    37:da:fa:c0:a5:34:4a:d7:d5:51:9b:86:e5:e4:80:
                    63:86:67:7a:05:bd:e0:2e:e0:c9:c5:7a:93:1c:0f:
                    97:1a:c1:f6:30:14:5f:c2:d4:4e:da:79:eb:f4:57:
                    f9:31:0d:8b:b8:f9:0e:75:d4:5f:3a:0b:44:7a:5a:
                    43:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:EE:B7:83:70:7F:67:1E:72:13:C4:6E:49:4E:1C:55:E6:DF:8E:F4
            X509v3 Authority Key Identifier:
                keyid:6F:9C:23:E4:03:77:8F:E0:1C:7B:C9:50:88:BF:D1:E6:B3:28:AA:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5wj5AN3j-Ace8lQiL_R5rMoqps.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b1:80:07:8e:46:2f:9e:90:f6:bf:39:48:83:34:2a:50:4a:b7:
         75:9e:50:55:6b:07:ef:d1:42:22:84:1a:b9:12:43:3a:09:f6:
         9e:06:0a:da:0b:9c:c9:ca:76:28:2e:0a:4e:87:95:e4:db:42:
         fe:37:c2:02:d6:d6:7e:0c:a3:5a:39:e4:3c:b8:b8:3b:ae:79:
         f2:fb:f5:4f:a9:f5:8a:79:a9:eb:cf:e4:06:66:f7:79:92:8f:
         62:48:c2:7d:88:b2:97:90:f2:c6:af:85:0d:c9:34:19:be:bf:
         6c:12:12:bd:97:02:c4:92:a7:0b:93:34:6a:e7:fc:8e:b2:ff:
         f3:86:80:37:0b:20:af:79:0c:e2:9f:c8:1f:62:9c:d3:f8:7d:
         5b:86:86:5c:69:9b:97:1d:42:70:d2:70:85:3d:be:0c:3c:81:
         1f:02:1a:27:a8:b7:b9:f9:b1:e4:fd:80:9e:05:fe:1f:ef:da:
         3a:14:2c:01:7a:43:14:8d:80:dc:b4:13:ce:d5:f4:6a:38:55:
         9a:4d:c9:7e:98:5b:e8:d7:ff:af:bd:6a:db:d6:15:13:a3:43:
         f7:51:f9:38:73:6c:0a:a0:b5:32:89:9d:39:1e:a9:79:ae:f1:
         6d:74:5b:c3:2b:b6:75:1c:13:ab:40:90:ea:f2:4f:81:d3:2a:
         1b:1d:d5:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 05:50:01 2025 by rpki-client