Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft
File:                     VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft (raw, json)
Hash identifier:          N9HC9+/EpcykTQAqBOhI9I7LLUMah9zGkBlUVIKA5ws=
Subject key identifier:   50:88:12:A3:35:AC:96:68:C7:F6:69:2D:A0:E4:6E:35:61:4B:7E:B1
Authority key identifier: 56:BB:6F:31:37:D8:DD:9E:B9:7E:38:3B:C7:F4:61:D9:0F:85:DD:FE
Certificate issuer:       /CN=A91433B3/serialNumber=56BB6F3137D8DD9EB97E383BC7F461D90F85DDFE
Certificate serial:       01F0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft
Manifest number:          01ED
Signing time:             Sun 19 Oct 2025 04:54:19 +0000
Manifest this update:     Sun 19 Oct 2025 04:54:19 +0000
Manifest next update:     Sun 26 Oct 2025 04:54:19 +0000
Files and hashes:         1: VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl (hash: 45q+iW9ZtPmH9i147EEj8TX0IyjRMV74iKSJLsHJdro=)
                          2: AB6C302EB5F311EDA0148B2DC4F9AE02.roa (hash: 4FOvuF+lrbDRETyeVF9s3HBZnjQN5y+IfUmzH88TfmQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl
                          rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 04:54:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 496 (0x1f0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91433B3, serialNumber=56BB6F3137D8DD9EB97E383BC7F461D90F85DDFE
        Validity
            Not Before: Oct 19 04:54:19 2025 GMT
            Not After : Oct 26 04:54:19 2025 GMT
        Subject: CN=68f46efb-282e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:22:cd:4c:d9:e6:9d:d3:77:0c:76:ac:58:d8:
                    5b:79:a9:2c:dd:d6:38:7d:ac:41:dd:69:f0:eb:af:
                    e5:d3:14:de:ac:95:a6:54:85:32:28:61:95:66:a2:
                    d3:76:f4:1e:54:b2:7f:ee:2f:df:53:d8:d8:b3:2f:
                    ae:b4:f8:6d:07:4a:af:a9:67:9b:c7:52:ae:af:cd:
                    ee:eb:47:bf:3f:89:21:6d:af:d6:a2:2d:bb:90:0e:
                    d7:95:e0:f1:f1:2c:4c:3d:14:c3:c7:f8:54:68:b2:
                    70:f5:3b:04:db:7e:0b:8c:3c:ed:98:32:fa:08:67:
                    30:63:0d:23:bd:00:60:6b:c6:a9:72:6d:b9:3f:36:
                    d9:6d:d5:dd:06:95:5b:38:57:30:b9:cd:23:86:b6:
                    19:af:6c:2c:86:33:30:f2:95:35:28:b6:b3:66:26:
                    5f:e0:05:a1:d9:d9:a4:6c:aa:d0:67:10:8c:62:53:
                    a7:1e:0a:26:a4:ed:5a:ea:ca:05:c4:2e:31:84:4b:
                    a2:fe:71:9a:0d:d7:c1:c0:61:74:cd:b2:9b:c5:68:
                    44:8a:26:9a:77:de:9d:a5:e3:bf:1b:80:d9:1b:05:
                    68:86:f0:c4:62:1d:3e:75:a7:6c:c8:ff:43:41:50:
                    a3:34:ed:1d:be:87:28:d7:c7:23:c4:1c:72:b5:48:
                    de:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:88:12:A3:35:AC:96:68:C7:F6:69:2D:A0:E4:6E:35:61:4B:7E:B1
            X509v3 Authority Key Identifier:
                keyid:56:BB:6F:31:37:D8:DD:9E:B9:7E:38:3B:C7:F4:61:D9:0F:85:DD:FE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:19:df:d5:a3:8a:10:21:18:04:37:0d:df:4a:38:68:83:05:
         dc:86:90:ac:c8:e8:4f:57:61:8a:5c:bd:77:e6:0d:87:95:e1:
         f5:09:7c:dc:b1:c5:f2:c0:a0:cc:10:82:21:0f:c0:7d:2c:3d:
         fa:09:ac:4a:7e:ba:f2:11:db:60:f5:c2:4a:d7:91:a4:ef:b8:
         3d:40:d7:62:3e:b4:9c:99:bb:08:70:a5:c7:8e:7e:fe:55:62:
         c1:68:ef:1b:14:7d:01:be:62:c7:c4:47:c1:ec:9f:12:9f:ae:
         1a:80:c5:89:e8:4e:82:00:20:1c:41:fa:3e:0f:2d:ab:98:8e:
         78:75:39:89:01:50:dd:b5:93:a5:cf:d4:0c:64:6f:bc:55:fa:
         7b:9e:4b:eb:e9:b4:75:d4:01:df:4d:1d:e6:62:87:95:9e:25:
         ad:46:d0:38:88:0a:95:d1:f9:2b:23:df:a2:ce:aa:02:b5:93:
         35:c0:a0:1b:51:30:c5:6e:aa:0f:0d:65:94:f6:ef:85:1e:44:
         c8:e7:04:ea:2c:f7:9f:48:df:de:3d:65:7b:25:b7:e2:0d:ca:
         e6:ac:d6:f1:95:82:0a:c6:d0:f3:aa:ec:1e:c4:08:f7:6d:54:
         c0:b7:7c:3b:38:e2:d9:37:a8:4a:d0:6d:36:e1:48:b6:51:a4:
         8a:91:21:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:00:23 2025 by rpki-client