Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft
File:                     O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft (raw, json)
Hash identifier:          V/Ou28awj7utekbYD2Yng59OPHg9us3VvWLSgO/qF4I=
Subject key identifier:   B1:23:62:80:10:39:C1:28:A2:72:74:5B:9C:79:D4:3E:A3:8F:79:11
Authority key identifier: 3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04
Certificate issuer:       /CN=A911750B/serialNumber=3B8358535BC628564AF56F31D8758648E1D04304
Certificate serial:       45
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft
Manifest number:          44
Signing time:             Sun 19 Oct 2025 10:51:27 +0000
Manifest this update:     Sun 19 Oct 2025 10:51:26 +0000
Manifest next update:     Sun 26 Oct 2025 10:51:26 +0000
Files and hashes:         1: O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl (hash: MWLFiKWaKFqQPp7zir/js0p/IBQpsjgyFdhi45b8V5E=)
                          2: D922E45E468D11F0B5D0835EC4F9AE02.roa (hash: RqRFm0koAI1zOC0qjZBwbHn7EgeV9Uebi2RR1Lc++cg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl
                          rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 10:51:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 69 (0x45)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911750B, serialNumber=3B8358535BC628564AF56F31D8758648E1D04304
        Validity
            Not Before: Oct 19 10:51:26 2025 GMT
            Not After : Oct 26 10:51:26 2025 GMT
        Subject: CN=68f4c2af-9a44
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:27:cf:2d:a6:b4:41:d2:25:ca:4f:d2:da:74:
                    fa:32:cc:39:f9:15:b1:c9:c1:3f:b3:d8:c6:f6:c5:
                    fc:ad:49:13:72:99:a6:48:5a:20:c5:bf:3a:b0:00:
                    86:2f:33:0e:46:03:ba:d9:74:d2:c8:0d:f8:20:82:
                    9a:24:5a:3a:07:10:05:9d:3e:ec:a7:f0:98:62:2a:
                    ca:15:3e:63:ba:b7:1c:b9:d3:59:66:61:54:4a:87:
                    b2:d4:3b:f4:49:60:66:43:ea:93:32:81:06:9e:a1:
                    a9:b5:3c:82:6e:e2:3a:c5:2d:b1:74:ee:5d:02:ad:
                    98:f0:0c:34:7d:56:0c:27:ca:5d:6c:1d:aa:b9:fa:
                    50:c2:42:d0:69:76:d9:64:bd:3a:fe:85:96:1f:44:
                    72:71:df:05:56:7a:f8:f0:a7:f2:e8:76:b6:fb:fc:
                    9c:3b:ac:f5:86:56:c4:89:ec:79:f9:1f:a0:4d:36:
                    34:56:a2:5e:72:0d:68:eb:95:13:7d:a4:52:2f:26:
                    de:fe:f0:c9:2b:6a:95:28:b6:c6:1c:06:aa:a2:7d:
                    bd:90:42:b7:ff:4f:19:f8:eb:33:22:dc:10:0c:83:
                    bd:05:37:9a:bc:68:5c:c3:ce:cf:69:f2:c2:41:5c:
                    9a:f0:6c:42:a5:44:2f:d2:f0:40:b5:09:98:c1:53:
                    f2:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:23:62:80:10:39:C1:28:A2:72:74:5B:9C:79:D4:3E:A3:8F:79:11
            X509v3 Authority Key Identifier:
                keyid:3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b3:ad:ae:44:e3:11:03:c7:8e:41:f6:ec:6c:79:69:16:bf:6e:
         d6:30:12:05:87:37:86:42:0b:43:a7:ce:d3:a0:80:53:cc:a8:
         85:a3:37:0e:27:ab:6b:4b:28:7a:2c:a8:ae:e2:f1:05:40:c9:
         1d:36:31:b1:3c:e7:74:60:a5:9c:58:a0:d3:ed:94:e1:f4:40:
         c2:38:ad:18:66:70:98:c1:85:54:22:b3:c5:b6:1a:29:99:b9:
         8c:47:fc:ee:62:ae:c3:08:e1:b1:12:1e:98:d8:46:6e:b0:b4:
         a2:2a:5b:02:fd:ae:2e:ae:d7:e9:c6:a8:07:b1:6b:ec:45:9d:
         48:0d:94:d2:35:75:82:e4:86:2a:41:fa:ef:d7:2b:92:99:15:
         cd:77:70:31:bf:bf:48:96:36:78:72:1f:11:3d:d9:88:fb:9b:
         fd:be:71:9e:ae:ee:1a:8e:9f:b4:44:f4:be:95:76:b0:8b:b6:
         70:ca:1c:ec:9f:a6:99:72:1a:48:8f:9e:72:ee:30:98:e3:a9:
         05:24:3b:64:b8:cd:e4:5e:b6:87:95:65:c5:1c:f1:54:c9:11:
         37:fb:4d:11:eb:4c:a5:40:b4:c2:91:55:10:f4:90:e4:0c:80:
         1f:59:dc:cd:f6:c1:46:84:e1:bc:2f:b6:ea:bb:70:77:13:04:
         2b:e9:af:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:00:05 2025 by rpki-client