Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft
File:                     iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json)
Hash identifier:          sWMwdfqSQz9Hf1Qt5IqY762gM8DJ7S7qV0yCZ+EJCXQ=
Subject key identifier:   F6:B5:7A:D0:27:80:54:E1:48:DA:A6:09:FA:39:D2:31:2B:4D:FB:85
Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77
Certificate issuer:       /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877
Certificate serial:       AF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft
Manifest number:          AC
Signing time:             Sun 19 Oct 2025 09:24:41 +0000
Manifest this update:     Sun 19 Oct 2025 09:24:40 +0000
Manifest next update:     Sun 26 Oct 2025 09:24:40 +0000
Files and hashes:         1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: lSpoXNLb5k5YE0UU435yP9gtNa9yxbNkpKAlYYprjWs=)
                          2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: CcfcyuDgdAXzM0C7pRrcqcGTmtCQX9kXzhcOgKQTSNM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl
                          rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 09:24:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 175 (0xaf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91394E7, serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877
        Validity
            Not Before: Oct 19 09:24:40 2025 GMT
            Not After : Oct 26 09:24:40 2025 GMT
        Subject: CN=68f4ae58-7ea1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:14:3d:86:b4:4d:45:8c:7f:fc:e7:a2:23:14:
                    2d:6e:c9:5f:54:56:36:28:da:7f:ba:17:f5:e5:c9:
                    ce:6b:c2:21:3f:45:95:81:58:cb:be:aa:84:fb:81:
                    be:e5:7c:43:9a:3f:ce:a7:da:87:0d:47:2b:7a:24:
                    ac:e4:06:96:45:0e:ca:00:e2:98:d2:c7:5f:06:db:
                    17:3e:36:3f:1e:29:d0:96:92:25:ea:21:3f:e4:05:
                    1b:8d:6e:a7:39:c5:2f:df:c7:90:81:b2:4e:cb:97:
                    76:33:b1:bf:be:7f:57:ef:53:f6:e7:21:9d:ab:d7:
                    df:b1:c3:2d:00:35:9d:27:63:f1:f2:36:e8:30:be:
                    94:ef:cf:34:16:13:f9:3e:92:28:0d:2c:c5:45:1b:
                    b4:ea:4e:43:18:0e:42:bf:29:ed:e4:1e:56:2c:9c:
                    6c:36:c9:1f:86:74:5c:19:27:5e:af:dc:12:45:d1:
                    54:d6:cf:24:a9:7b:15:22:30:f0:c1:01:c3:e8:30:
                    d9:08:a4:5a:7d:18:90:34:6c:0b:ce:8a:25:4d:06:
                    8f:6d:66:7f:99:e7:85:af:a3:5c:32:b5:81:63:e4:
                    ca:15:5b:e4:58:24:84:3c:f9:a9:89:a0:3c:d0:f8:
                    c2:c7:a5:b9:3f:e5:8d:4b:07:4d:55:b9:aa:4b:14:
                    da:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:B5:7A:D0:27:80:54:E1:48:DA:A6:09:FA:39:D2:31:2B:4D:FB:85
            X509v3 Authority Key Identifier:
                keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:77:e1:a0:26:80:06:fa:f3:41:33:96:51:02:1b:15:03:7c:
         c3:35:da:a4:8d:30:1c:16:cf:06:ec:eb:19:96:61:84:ed:41:
         c6:32:4e:b4:64:37:05:0c:b8:55:83:ed:64:58:24:29:e1:3b:
         bb:3c:ac:02:ec:b7:21:98:97:d3:aa:37:84:b8:6a:12:be:4f:
         4b:34:0b:34:c5:15:06:ce:76:bc:b7:61:c9:37:c3:9f:dc:d7:
         f0:39:da:2c:a2:18:74:6c:f1:53:83:e9:d0:50:1d:3c:76:5e:
         e4:aa:84:4a:a5:4e:5e:88:52:4d:a9:5f:7d:55:1c:2f:ec:ee:
         1f:69:53:7c:6f:e7:13:04:17:74:60:bc:9b:38:34:5d:2c:60:
         4b:f7:b5:4a:3d:40:f7:a4:1d:ec:9b:c8:3d:49:bd:83:6e:fa:
         2c:de:39:78:9c:96:32:ea:69:81:ac:af:70:28:ca:be:c3:1a:
         b0:7e:a5:00:47:b3:40:02:90:92:ee:77:5c:ca:9b:e3:68:9e:
         df:08:0b:0b:1b:2d:f9:0d:fc:ea:d4:29:e5:f2:18:c5:8f:6c:
         75:b5:94:80:79:67:df:7f:ba:86:23:fd:87:97:bc:aa:48:11:
         65:c2:81:71:22:9c:ab:e2:38:c6:d2:3f:3e:1a:92:ac:41:bb:
         c7:c6:6d:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:02:02 2025 by rpki-client