Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft
File:                     8HDB502tEidOj1dd_gu3wU69yZA.mft (raw, json)
Hash identifier:          +nblGCFiNEJAR6nS7siwxfHGL9ZsLIeW6OmPwMZw5Ws=
Subject key identifier:   ED:56:11:81:CC:1F:1E:05:7F:32:44:94:21:3A:11:E9:25:69:BD:C6
Authority key identifier: F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90
Certificate issuer:       /CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990
Certificate serial:       0387
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft
Manifest number:          0382
Signing time:             Sun 19 Oct 2025 02:50:50 +0000
Manifest this update:     Sun 19 Oct 2025 02:50:49 +0000
Manifest next update:     Sun 26 Oct 2025 02:50:49 +0000
Files and hashes:         1: 8HDB502tEidOj1dd_gu3wU69yZA.crl (hash: xhlovFimccnRt3HVsWP0Q3xUtEGFIwJ+k3Lp8/yG8Vg=)
                          2: 06A2C3E2C1E211EC86C79687C4F9AE02.roa (hash: 3Kdq8iB7GHkmorOzNCkj5Eih8OtxQjBmOJhG+WoD4A8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl
                          rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 02:50:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 903 (0x387)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91348DF, serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990
        Validity
            Not Before: Oct 19 02:50:49 2025 GMT
            Not After : Oct 26 02:50:49 2025 GMT
        Subject: CN=68f45209-a599
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:fe:3c:f7:12:75:eb:23:46:a5:5f:fd:56:8e:79:
                    05:b0:98:bc:da:11:f1:33:ca:61:f6:7c:59:73:14:
                    e6:53:fd:cf:99:3b:be:d6:a4:da:e7:95:d0:b4:d4:
                    5a:5f:bf:15:ff:e4:9d:23:87:7d:e2:90:ce:e0:66:
                    3d:44:a3:66:82:5a:ee:33:c3:58:6c:b8:05:9f:4c:
                    76:f4:c3:af:c6:06:6d:8f:15:75:7e:ee:18:f7:d8:
                    f4:81:98:cb:a6:b8:51:62:dd:63:02:7a:fa:d2:a6:
                    88:63:53:d9:69:7d:9d:21:8f:aa:64:96:df:92:06:
                    89:73:32:37:65:32:13:4a:77:c8:3d:fe:dd:bc:35:
                    d2:6e:e5:a6:ca:ed:32:8a:a6:f9:18:fd:74:a8:1b:
                    23:58:a7:31:1b:a8:a5:ec:2a:b6:1b:8f:d8:1d:88:
                    0b:4a:f1:7b:bd:dd:41:3c:cd:6f:43:c3:53:7a:2c:
                    0d:5e:a1:07:f8:3e:08:a1:fb:08:1a:8f:85:eb:a2:
                    2c:d4:09:da:c7:61:e8:d3:b4:0b:07:d6:7d:fd:4c:
                    30:9a:fa:e4:f2:b2:ed:03:a5:1b:93:a7:2f:93:98:
                    5d:17:50:44:e5:ab:d8:a0:4f:23:c5:a1:65:d1:41:
                    d8:51:8e:e7:39:93:74:7c:5a:08:21:b5:c0:f2:8a:
                    1d:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:56:11:81:CC:1F:1E:05:7F:32:44:94:21:3A:11:E9:25:69:BD:C6
            X509v3 Authority Key Identifier:
                keyid:F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:21:43:74:2c:39:06:50:d5:ff:ac:64:12:46:58:f0:b7:da:
         08:d1:c4:39:3f:23:cd:4d:d3:2b:4e:a8:34:89:c5:4a:4c:11:
         96:15:14:ee:d8:da:91:a0:32:cd:6b:83:a0:bc:a1:30:a6:80:
         95:b1:e0:57:ba:05:a1:e8:ef:b5:c9:1e:4c:d4:ab:f8:7a:b5:
         d8:d0:9b:d7:73:60:07:bf:bc:c4:39:0a:45:22:d6:09:46:50:
         d2:a8:dd:89:74:a1:db:3a:07:ce:d2:5f:6a:7a:ef:f2:a5:89:
         75:93:58:d8:01:8c:34:4f:df:10:16:34:d6:0e:97:21:30:16:
         7e:f0:f1:18:c0:7a:c2:78:77:68:7b:c9:b9:83:f7:ed:22:1e:
         ef:0e:9c:98:5b:f3:df:60:01:6c:83:5a:52:60:c7:06:61:a8:
         0b:42:c1:3d:c7:52:30:3a:fb:1f:dd:76:b7:dd:b1:e9:22:ee:
         a8:b0:a9:9d:78:2a:15:77:1a:f7:55:aa:a7:7b:ac:82:6f:c7:
         5f:9b:0d:fa:85:82:20:5b:92:25:89:85:3a:3f:97:f5:22:73:
         41:ee:91:28:d4:f5:53:32:b2:40:18:41:57:13:82:6c:61:3c:
         d1:3d:9a:13:a0:11:3d:6a:4f:e9:30:10:48:12:ab:79:ad:6d:
         41:4a:51:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:00:13 2025 by rpki-client