Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft
File:                     7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json)
Hash identifier:          EZBbzz66p/7JW/AqRRFYRUI1VqlRRci0ffKe0zmYt0Y=
Subject key identifier:   10:13:DA:D2:B8:20:64:08:5C:E3:6A:24:5F:4B:99:45:12:0B:37:F6
Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33
Certificate issuer:       /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33
Certificate serial:       0AAA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft
Manifest number:          0A95
Signing time:             Mon 20 Oct 2025 20:20:55 +0000
Manifest this update:     Mon 20 Oct 2025 20:20:54 +0000
Manifest next update:     Mon 27 Oct 2025 20:20:54 +0000
Files and hashes:         1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: ahdMUFveXDAjLZ7PDhD+Z/DrqVRLpbtWd88ppAa2G48=)
                          2: 923B6404466B11EE8B37E13CC4F9AE02.roa (hash: horX5P75gumDA8WyF+ghzmHcSe0CjNBHMfSInHVl7ao=)
                          3: C2E32E34466B11EE988B243DC4F9AE02.roa (hash: hBn0Qcv2Wj2OFO1BXPRpxsQ8U4zswJ2i/kTyMm1Zr1Y=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl
                          rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 27 Oct 2025 20:20:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2730 (0xaaa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912D3CB, serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33
        Validity
            Not Before: Oct 20 20:20:54 2025 GMT
            Not After : Oct 27 20:20:54 2025 GMT
        Subject: CN=68f699a6-797a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:13:89:f0:e1:ff:83:51:91:22:37:f2:3a:af:
                    85:04:30:c8:5e:13:82:93:bf:ce:9b:67:47:62:97:
                    53:d2:78:ff:f0:60:c4:44:d7:10:3f:41:6a:17:3d:
                    4c:f0:04:84:54:01:d2:13:ec:86:a3:96:24:d0:7d:
                    e2:d6:19:60:d1:68:98:c3:92:55:9c:67:43:1b:3f:
                    da:01:18:75:dd:5c:e3:1a:ae:e7:4c:35:86:b6:cb:
                    8e:aa:e3:e9:e7:aa:b4:3a:77:ff:d5:e5:6a:73:31:
                    ca:82:4e:bd:c3:d9:c5:d5:58:42:04:26:34:7b:2b:
                    18:c5:79:c1:b3:75:ea:9e:03:a2:36:5d:ee:6d:7a:
                    c7:44:2a:aa:ad:54:6d:dc:d9:70:18:f6:a1:a2:1b:
                    a7:36:d8:1f:0b:41:63:5e:9c:9e:54:d6:29:06:b6:
                    68:4d:62:04:96:a9:6b:84:11:72:c9:3f:e2:96:07:
                    e5:eb:78:60:14:34:f0:96:27:45:8e:80:b6:4b:6a:
                    98:3d:8c:7f:c6:ff:ee:a0:7b:57:c2:92:27:9f:da:
                    dc:f0:d2:9f:a7:9c:e7:a5:92:20:cd:97:e7:09:4b:
                    fd:b7:71:c4:8e:95:66:c9:db:d2:9f:c6:5e:43:8a:
                    22:b1:ae:f2:2f:ed:67:cc:e6:0d:85:b7:95:ce:44:
                    b6:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:13:DA:D2:B8:20:64:08:5C:E3:6A:24:5F:4B:99:45:12:0B:37:F6
            X509v3 Authority Key Identifier:
                keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:07:24:92:58:cc:3f:3f:e1:a0:04:79:53:9a:15:04:00:7c:
         fd:80:ec:0c:3e:7f:09:ef:b2:7b:82:2c:61:8a:b5:b9:1d:0e:
         73:29:b5:20:bf:48:08:2d:91:ed:49:6c:29:54:1b:9e:d3:35:
         b4:94:e4:53:2b:6a:23:43:9f:e7:8d:69:bf:65:36:ed:36:c6:
         e8:e7:14:37:64:b0:d6:b1:66:69:4e:a5:75:b2:71:f1:39:67:
         e0:91:75:40:c6:a3:35:c6:c9:d9:00:f4:96:c2:75:c6:2a:8d:
         09:2c:04:61:e6:10:eb:56:f5:9b:e6:b5:35:ff:2e:d6:ea:fb:
         c4:82:db:15:e5:c1:6b:39:f8:d8:9e:a0:d3:a7:00:16:4b:90:
         5e:92:a9:a5:6c:bd:5f:59:05:ab:24:c2:bb:97:6a:96:89:fd:
         ae:65:de:7a:64:da:69:b7:16:eb:fd:16:9c:33:86:fb:72:27:
         e5:e0:a8:a4:74:c4:85:44:63:1d:98:08:cb:41:45:25:cd:08:
         41:e3:82:70:5a:2d:4a:f4:33:df:dd:9c:65:29:f0:3d:c3:7a:
         9b:81:fa:31:94:15:df:4a:7b:02:d8:a8:90:c7:78:99:91:32:
         c1:a9:ed:6b:ad:b9:b1:77:62:5d:29:28:b4:7f:44:e9:4a:b2:
         14:54:3f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 07:55:02 2025 by rpki-client