Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft
File:                     Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft (raw, json)
Hash identifier:          TUiQUtDQPcQpSjjFnsD5UrC14EllHOmB4SlHT9Gz3YA=
Subject key identifier:   59:6C:6C:AF:0E:73:08:1F:4C:25:5B:4E:E2:3D:5A:CF:04:BE:D6:AD
Authority key identifier: 56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71
Certificate issuer:       /CN=A91203DC/serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071
Certificate serial:       21CD
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft
Manifest number:          21C1
Signing time:             Sat 18 Oct 2025 16:09:09 +0000
Manifest this update:     Sat 18 Oct 2025 16:09:08 +0000
Manifest next update:     Sat 25 Oct 2025 16:09:08 +0000
Files and hashes:         1: Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl (hash: 3PX0w4wWPUpHBQIbX7UX49x4dvF4f175luj9LORgTTs=)
                          2: 1D9DC82A652311EBA8CF3C4CC4F9AE02.roa (hash: dCLTxe5AeU3EWuhpQGl4ZlWRgK483ALuIyneqH0vPGA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl
                          rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 16:09:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8653 (0x21cd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91203DC, serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071
        Validity
            Not Before: Oct 18 16:09:08 2025 GMT
            Not After : Oct 25 16:09:08 2025 GMT
        Subject: CN=68f3bba4-7c79
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:b3:03:5e:13:6c:7a:13:2b:e7:d5:29:f5:20:
                    6f:b5:7a:87:65:f7:af:9b:a6:d0:3a:40:6a:67:1c:
                    f6:7e:e3:e6:7a:05:0d:5b:72:82:9e:00:38:29:a5:
                    fd:67:46:82:1e:86:40:eb:e0:f8:ea:ab:e3:64:4c:
                    35:b7:7c:49:5f:7a:9d:73:39:f5:4b:15:f3:a6:ea:
                    6a:cb:32:85:ba:11:bf:de:d8:78:a7:62:67:95:aa:
                    c6:73:11:c6:d1:11:11:66:63:f1:7f:e2:8b:79:7a:
                    ab:79:20:c3:3f:51:b5:d3:df:6f:95:25:7c:c6:4d:
                    b0:79:97:85:51:23:d5:32:c9:56:b0:e7:a5:e4:e1:
                    de:14:6a:81:08:99:df:f0:dc:e2:a2:a9:7c:8a:34:
                    0d:8f:75:77:ca:1f:ef:c6:3a:3a:45:4d:9c:6b:e0:
                    24:94:86:ba:27:5e:ed:7d:e1:0e:65:d8:3c:b1:7d:
                    37:50:5e:65:53:54:c1:7f:96:8c:0b:95:45:6b:7d:
                    4a:78:69:b9:23:6c:40:29:c5:95:37:24:03:56:74:
                    c3:71:92:4d:8d:eb:20:c8:ec:33:c5:62:df:37:fe:
                    b0:22:d8:86:1b:68:f7:14:b4:4a:e9:8e:11:fe:b0:
                    7f:8f:6a:6a:c3:3b:8d:37:f2:4c:db:04:e6:0d:2f:
                    b2:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:6C:6C:AF:0E:73:08:1F:4C:25:5B:4E:E2:3D:5A:CF:04:BE:D6:AD
            X509v3 Authority Key Identifier:
                keyid:56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:a8:b3:8f:12:58:62:fb:75:20:46:ce:f3:84:a8:cf:72:ef:
         a6:48:c2:66:67:49:a4:61:59:33:13:c1:d4:44:f1:b5:17:0c:
         a4:6f:88:ba:19:67:2c:c9:69:e0:12:df:98:8c:cc:84:92:62:
         2e:4b:be:89:38:a5:94:42:6a:5e:08:65:8b:90:db:b3:3d:d1:
         92:26:ab:82:05:27:e1:57:99:04:50:99:8f:6e:d2:ab:44:78:
         17:9d:fb:f4:8a:5c:53:39:cb:12:44:91:9e:c9:f5:65:ff:6a:
         fe:18:eb:3f:8d:03:67:15:af:10:bb:7f:b8:d1:28:7e:02:1b:
         50:eb:e8:a2:b8:e6:39:e8:bc:2a:eb:df:ce:f2:9e:9d:4a:f9:
         59:78:91:b0:5e:6e:9b:47:68:87:2b:6e:0f:99:a8:0d:7a:47:
         59:e3:75:1c:30:7e:ee:98:32:31:54:da:17:b6:d0:7f:d5:b7:
         45:8d:80:a3:ed:e4:b6:39:48:c7:44:fa:e3:5f:92:6b:b2:00:
         7e:f9:aa:51:38:e8:ee:47:90:c3:d3:a3:4e:ff:f7:79:ff:8f:
         6f:93:84:fc:45:1b:05:2d:dd:05:46:5f:e0:9b:63:87:95:00:
         7b:03:58:6f:ea:e7:6b:22:4c:a6:85:17:07:b3:c1:7a:e3:c0:
         e9:94:5c:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:38:20 2025 by rpki-client