Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft
File:                     _Ern2eP0GafSBKVMedHz76mn1sg.mft (raw, json)
Hash identifier:          BauNLj6q+u1kSUkmfX4otv62G0eLvmtLqZTvZdtdRCM=
Subject key identifier:   62:7F:FC:96:C7:80:17:67:16:57:B2:2E:80:BF:85:2F:90:4B:F3:E3
Authority key identifier: FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8
Certificate issuer:       /CN=A91262F0/serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8
Certificate serial:       01FF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft
Manifest number:          01FA
Signing time:             Sun 19 Oct 2025 04:47:09 +0000
Manifest this update:     Sun 19 Oct 2025 04:47:09 +0000
Manifest next update:     Sun 26 Oct 2025 04:47:09 +0000
Files and hashes:         1: _Ern2eP0GafSBKVMedHz76mn1sg.crl (hash: kB3H9NeIsCL93iDJmrfCYkTgsDB4+upr9dun0vttr8Q=)
                          2: 8E412748A33311EDA2CB2420C4F9AE02.roa (hash: VYee2tDfZOJDgRSyvh9847Isyru0Slu6wYlhlW9JZCM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl
                          rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 04:47:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 511 (0x1ff)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91262F0, serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8
        Validity
            Not Before: Oct 19 04:47:09 2025 GMT
            Not After : Oct 26 04:47:09 2025 GMT
        Subject: CN=68f46d4d-b614
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:36:f3:7a:cf:33:54:97:3e:75:17:e7:6d:b8:
                    62:50:66:8f:ef:20:8f:88:89:b2:e6:89:42:5e:b4:
                    c8:a8:e0:08:d9:51:e6:33:a3:6c:04:68:bd:7e:02:
                    88:96:e5:8b:69:60:9c:c7:bb:c6:c2:29:0d:fb:36:
                    4f:88:74:7b:f3:b5:a8:59:3c:67:d9:bf:72:a6:29:
                    ce:02:86:bf:62:d6:3d:99:72:a5:d7:a5:b9:e0:81:
                    87:53:23:49:15:c0:8d:b9:43:41:cd:96:bb:74:b7:
                    70:41:0f:71:4e:3d:cb:44:05:12:99:8e:5e:40:b4:
                    14:c1:bb:aa:75:c3:43:91:9b:7c:df:cf:e6:e9:a4:
                    8b:69:a2:8c:05:12:8d:e3:bb:b2:fb:a7:26:6c:8d:
                    ea:5d:45:32:50:49:3b:85:2c:7f:5c:25:a2:d5:6e:
                    9c:ac:23:c6:2e:03:d0:42:37:bb:c6:d7:87:73:d8:
                    9d:d0:68:31:2d:eb:03:36:ea:0c:a9:c7:45:36:1b:
                    a2:3d:76:a8:21:3c:a4:c6:9a:7e:01:f4:a1:02:39:
                    1b:1a:9b:82:5e:d8:5e:59:84:0f:31:3a:a1:e1:b1:
                    48:d2:0a:56:31:2c:6f:63:a9:13:f4:f7:5c:f6:30:
                    70:17:55:7c:9e:05:cf:09:93:ee:a5:39:50:60:b9:
                    83:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:7F:FC:96:C7:80:17:67:16:57:B2:2E:80:BF:85:2F:90:4B:F3:E3
            X509v3 Authority Key Identifier:
                keyid:FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         73:c0:82:00:cf:89:8f:a1:90:25:da:78:08:10:32:9e:ec:cc:
         78:b7:f4:5d:b2:0b:2e:bc:db:f6:78:8e:ae:f4:37:91:a6:49:
         04:cd:75:22:e7:1f:97:8f:e5:ff:08:5a:e4:29:79:7b:eb:6e:
         13:7f:27:5c:1c:46:b6:26:12:db:89:f9:54:50:a0:ac:57:a6:
         b4:b4:c8:ed:75:45:91:18:c5:a1:85:2d:e3:34:78:67:2a:2f:
         09:3e:0c:8a:c0:a7:da:ee:7d:63:73:cf:55:c9:31:e3:3b:60:
         53:ec:cc:59:e7:47:59:b0:81:eb:50:0a:20:c3:db:63:c1:a9:
         3d:88:a9:7e:82:0e:4e:0f:ee:62:36:57:31:3b:8b:cb:2c:10:
         cb:68:f9:06:20:e7:2d:13:62:c0:35:8f:1e:6e:4c:17:03:9b:
         66:00:05:98:c8:a3:a6:60:37:b9:3b:b2:07:e9:14:05:8e:8d:
         8b:23:36:09:0f:bd:42:9d:a5:4f:e4:d5:94:73:59:26:4b:28:
         20:cb:ed:04:5f:d7:ac:b2:1e:7e:d4:b5:5c:a1:83:fb:0c:2d:
         74:98:7d:8b:4e:a8:1a:da:dd:17:7a:15:fa:8a:40:98:ac:ae:
         c6:ea:06:ce:27:72:04:08:ee:ba:90:f5:35:06:a7:a6:12:54:
         53:bb:44:07
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjYyRjAxMTAvBgNVBAUTKEZDNEFFN0Q5RTNGNDE5QTdEMjA0QTU0Qzc5RDFGM0VG
QTlBN0Q2QzgwHhcNMjUxMDE5MDQ0NzA5WhcNMjUxMDI2MDQ0NzA5WjAYMRYwFAYD
VQQDEw02OGY0NmQ0ZC1iNjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4Tbzes8zVJc+dRfnbbhiUGaP7yCPiImy5olCXrTIqOAI2VHmM6NsBGi9fgKI
luWLaWCcx7vGwikN+zZPiHR787WoWTxn2b9ypinOAoa/YtY9mXKl16W54IGHUyNJ
FcCNuUNBzZa7dLdwQQ9xTj3LRAUSmY5eQLQUwbuqdcNDkZt838/m6aSLaaKMBRKN
47uy+6cmbI3qXUUyUEk7hSx/XCWi1W6crCPGLgPQQje7xteHc9id0GgxLesDNuoM
qcdFNhuiPXaoITykxpp+AfShAjkbGpuCXtheWYQPMTqh4bFI0gpWMSxvY6kT9Pdc
9jBwF1V8ngXPCZPupTlQYLmDWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJ//JbH
gBdnFleyLoC/hS+QS/PjMB8GA1UdIwQYMBaAFPxK59nj9Bmn0gSlTHnR8++pp9bI
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJGMC8zM0FEMEE2MkEz
MEMxMUVEQjMzODhDMENDNEY5QUUwMi9fRXJuMmVQMEdhZlNCS1ZNZWRIejc2bW4x
c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL19Fcm4yZVAwR2FmU0JLVk1lZEh6NzZtbjFzZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
NjJGMC8zM0FEMEE2MkEzMEMxMUVEQjMzODhDMENDNEY5QUUwMi9fRXJuMmVQMEdh
ZlNCS1ZNZWRIejc2bW4xc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBzwIIAz4mPoZAl2ngIEDKe7Mx4t/RdsgsuvNv2eI6u9DeRpkkEzXUi
5x+Xj+X/CFrkKXl7624TfydcHEa2JhLbiflUUKCsV6a0tMjtdUWRGMWhhS3jNHhn
Ki8JPgyKwKfa7n1jc89VyTHjO2BT7MxZ50dZsIHrUAogw9tjwak9iKl+gg5OD+5i
NlcxO4vLLBDLaPkGIOctE2LANY8ebkwXA5tmAAWYyKOmYDe5O7IH6RQFjo2LIzYJ
D71CnaVP5NWUc1kmSyggy+0EX9essh5+1LVcoYP7DC10mH2LTqga2t0XehX6ikCY
rK7G6gbOJ3IECO66kPU1BqemElRTu0QH
-----END CERTIFICATE-----
Generated at Mon Oct 20 01:42:35 2025 by rpki-client