Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft
File:                     eERZpLZsg1_PXW5aVoctkkfUZYo.mft (raw, json)
Hash identifier:          ytbMKQ0PXuK5ki3ChPWfFpaUBeMZzFOjVOG+F2bIyD8=
Subject key identifier:   62:3F:9B:63:85:26:A7:3B:5C:66:2B:69:03:38:B4:C2:65:9C:B1:5C
Authority key identifier: 78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A
Certificate issuer:       /CN=A9145258/serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A
Certificate serial:       95
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft
Manifest number:          8D
Signing time:             Sun 19 Oct 2025 09:54:42 +0000
Manifest this update:     Sun 19 Oct 2025 09:54:42 +0000
Manifest next update:     Sun 26 Oct 2025 09:54:42 +0000
Files and hashes:         1: eERZpLZsg1_PXW5aVoctkkfUZYo.crl (hash: fUexwRbR19eGGqW7fajCMcdNXPbP3haQ8ocD7p417G8=)
                          2: 2C7AE786042711F0BCEB4A75C4F9AE02.roa (hash: ugBH0sY3xsy9vZ2jc2RKWYdBc6yrBC0CxRNIPq7VafI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl
                          rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 09:54:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 149 (0x95)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9145258, serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A
        Validity
            Not Before: Oct 19 09:54:42 2025 GMT
            Not After : Oct 26 09:54:42 2025 GMT
        Subject: CN=68f4b562-bd7f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:96:ae:1d:ce:46:7a:8c:99:8a:4d:35:55:b0:
                    e6:15:e2:1f:d5:68:4d:6a:f0:c5:70:77:7a:8b:3c:
                    dd:1c:6b:3d:e3:46:2e:5d:dc:a6:72:f4:67:28:4a:
                    36:91:d6:28:2c:c5:bd:0d:f9:8e:48:f1:cb:dd:24:
                    c8:72:7b:b3:61:a1:3f:19:96:27:2f:49:79:e9:ec:
                    5f:d3:04:72:f4:a3:73:b2:e4:39:7f:ae:18:5f:3c:
                    85:24:e4:41:47:a8:83:ee:b4:c8:f7:2e:86:a5:04:
                    cd:07:ec:2a:9a:6b:03:2a:4b:1b:d5:6b:2d:9d:a4:
                    ec:a5:6e:2b:97:3b:b8:b4:3e:e3:41:c5:75:cc:7a:
                    e6:45:01:23:5a:02:26:7c:aa:91:e2:07:0c:e0:6e:
                    2a:06:23:d0:e5:91:2a:78:64:3d:ea:f2:b5:ee:a3:
                    f7:b2:61:eb:9f:23:1b:0f:94:0d:6a:22:12:e6:3f:
                    bd:8f:46:9b:d1:d3:8a:27:46:ba:56:4a:e2:0f:9b:
                    c7:fb:cc:11:86:38:96:4a:cd:c7:f1:70:d7:ee:fe:
                    4f:73:3e:5b:0f:99:83:ce:69:3a:76:ab:68:4b:a8:
                    c2:08:37:ae:d4:4b:b6:b1:bb:50:f5:3b:eb:a2:ee:
                    80:c9:e1:66:7a:2f:a8:2e:48:22:0f:89:de:9b:f6:
                    de:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:3F:9B:63:85:26:A7:3B:5C:66:2B:69:03:38:B4:C2:65:9C:B1:5C
            X509v3 Authority Key Identifier:
                keyid:78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:eb:73:7c:5c:a0:dd:4a:fc:2c:ef:14:f4:4e:9a:24:45:86:
         dc:a4:d1:4b:01:b5:b3:b4:b8:8b:19:b7:31:1e:70:40:64:d9:
         37:c2:f6:b5:4c:cd:12:00:0c:31:b1:5a:2a:19:88:68:f3:99:
         50:37:a7:1a:34:e2:1a:83:bd:b0:99:ca:24:e6:88:65:b2:75:
         d6:e1:83:9a:49:79:8b:50:8b:53:ab:63:60:3e:ba:3d:e0:99:
         ed:e8:61:ef:ab:55:65:9d:0b:9a:e4:5b:aa:3d:3f:11:d8:52:
         12:e5:84:32:6a:9a:ae:bf:5d:37:95:ac:53:eb:7e:90:fc:4b:
         d0:c8:6b:6d:1b:4a:69:21:63:2a:84:d8:42:2e:41:d2:8f:8c:
         c6:8b:a5:6e:24:08:dc:46:fe:8a:d6:e9:2d:dc:c2:95:ad:23:
         0b:97:c2:17:63:fe:52:c3:bf:82:a3:84:a1:24:61:40:48:26:
         59:b8:f2:12:cf:16:ef:e6:1d:7f:db:7b:8f:be:26:17:08:4c:
         87:10:3c:c8:e3:78:cd:c5:97:cd:21:8a:18:f9:71:1d:8e:68:
         0f:fb:9f:60:84:dd:9c:aa:8b:51:10:95:bd:fc:c1:b0:d1:f5:
         de:ef:c2:c9:dd:22:db:68:7e:77:07:78:32:2c:1c:45:86:d1:
         08:21:02:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:01:25 2025 by rpki-client