Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft
File:                     VB3RXhVOUI-wD9skXE528q09iB0.mft (raw, json)
Hash identifier:          rtoIxP39WzDHW5yHpQID77cYMzrA8dz+LNV8AzBG7oU=
Subject key identifier:   4F:36:0D:66:37:50:78:8B:8A:FF:04:6D:8E:0B:90:0E:37:76:2D:4E
Authority key identifier: 54:1D:D1:5E:15:4E:50:8F:B0:0F:DB:24:5C:4E:76:F2:AD:3D:88:1D
Certificate issuer:       /CN=A911CE4A/serialNumber=541DD15E154E508FB00FDB245C4E76F2AD3D881D
Certificate serial:       30
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft
Manifest number:          2F
Signing time:             Sun 19 Oct 2025 11:10:49 +0000
Manifest this update:     Sun 19 Oct 2025 11:10:49 +0000
Manifest next update:     Sun 26 Oct 2025 11:10:49 +0000
Files and hashes:         1: VB3RXhVOUI-wD9skXE528q09iB0.crl (hash: NGKpmFdG8D1aSmiHvJkbWl804EG8H8WjLKRgAiWneUI=)
                          2: BA2C0A9E673A11F0B876713DC4F9AE02.roa (hash: qV69gg2P4bFihZzX2d7CSbRtDBRP/ma/ao4YNWgRlJw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.crl
                          rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 11:10:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 48 (0x30)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911CE4A, serialNumber=541DD15E154E508FB00FDB245C4E76F2AD3D881D
        Validity
            Not Before: Oct 19 11:10:49 2025 GMT
            Not After : Oct 26 11:10:49 2025 GMT
        Subject: CN=68f4c739-f752
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:07:d3:bf:07:95:38:fc:b3:1d:b6:43:b9:b1:
                    b1:d2:eb:eb:64:09:4a:8f:07:59:da:e4:bd:a0:bc:
                    e7:3e:d1:cb:2f:3c:af:4f:8d:82:cd:7d:04:a4:8d:
                    6a:f0:fa:be:e1:d0:36:d7:82:f5:14:a9:62:91:0a:
                    00:2d:a2:eb:7e:99:dc:99:61:a6:44:62:fd:ee:73:
                    e1:48:e3:96:72:e4:ae:db:1b:79:2f:00:43:9f:d9:
                    77:52:5d:5f:04:ec:6a:d3:4a:51:6f:78:e4:b8:3d:
                    8e:1d:15:cf:49:49:fd:85:59:2c:05:30:7a:bf:89:
                    11:41:1e:8e:28:5b:23:21:1b:01:e5:d7:a1:98:56:
                    e4:b4:75:7a:30:2e:dc:c7:2e:a1:30:44:96:d9:39:
                    96:57:38:81:e8:44:06:9c:cc:d5:41:69:24:03:54:
                    98:91:73:82:5a:27:99:42:c5:2d:1c:7f:88:7d:a1:
                    44:e0:03:8d:c2:a9:f8:e4:7c:ae:aa:1d:1d:22:67:
                    53:1c:ef:62:d5:7b:b9:52:71:4e:a9:e2:9c:7b:25:
                    d7:75:e9:e0:8a:9e:fb:ca:47:dd:a0:f0:2a:66:56:
                    7d:ea:7a:1d:69:d4:cf:4f:0f:cd:e8:83:a6:5c:b9:
                    a0:d0:48:ef:eb:bc:b1:4b:3b:9e:20:d9:8a:b7:1d:
                    1a:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:36:0D:66:37:50:78:8B:8A:FF:04:6D:8E:0B:90:0E:37:76:2D:4E
            X509v3 Authority Key Identifier:
                keyid:54:1D:D1:5E:15:4E:50:8F:B0:0F:DB:24:5C:4E:76:F2:AD:3D:88:1D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:91:22:35:16:1c:f7:21:54:f3:c1:f1:0a:19:ec:d0:0b:92:
         40:cb:df:ef:a8:76:de:85:05:f6:cd:f8:01:ae:e9:94:04:8c:
         0b:0b:f3:08:2f:b2:08:f6:c8:b9:a5:ac:c2:93:1c:17:c1:9f:
         f8:7c:cc:f8:e9:ee:69:0c:c5:ee:ea:ba:ff:a8:f5:29:2f:d4:
         96:8a:56:a5:f4:0c:fa:f7:92:4b:86:0f:14:41:4c:3a:ac:09:
         dc:94:08:6d:cd:a0:d8:e2:ba:c6:ad:57:80:0e:d0:6b:0e:3c:
         59:5c:e4:2f:cb:c7:52:7f:6e:d5:a7:5e:78:5c:4a:33:47:36:
         bc:1d:1c:b7:e4:3a:c3:1f:ed:62:cf:7a:6a:24:22:cf:de:71:
         4b:69:55:a7:30:ff:bd:11:b3:70:74:15:a1:fd:82:1b:04:7b:
         d4:a0:a6:4e:ab:a2:08:93:b8:18:54:18:3c:1d:8d:c7:0e:3d:
         23:83:f7:88:57:f4:ec:e7:ba:de:e7:13:c7:a1:ad:2e:1e:84:
         bd:51:9e:34:39:37:59:82:ce:f5:96:9e:77:59:0f:fe:6b:51:
         ef:13:cb:1c:c3:b1:d6:8d:b1:4f:d9:55:10:3e:e9:0d:4a:80:
         9e:7b:89:29:e8:b6:03:3b:8d:11:05:23:75:67:55:09:0d:05:
         ae:d0:92:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 07:09:43 2025 by rpki-client