Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft
File:                     -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json)
Hash identifier:          6MLLCCsW+K0Q6CTO438+bNkgDs4u00lZ4oa5GWIfOZ8=
Subject key identifier:   3F:3E:85:A6:D8:96:84:05:37:1A:79:65:6C:37:8A:1B:4A:A7:F2:5A
Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73
Certificate issuer:       /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673
Certificate serial:       0393
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft
Manifest number:          038F
Signing time:             Sun 19 Oct 2025 02:48:21 +0000
Manifest this update:     Sun 19 Oct 2025 02:48:20 +0000
Manifest next update:     Sun 26 Oct 2025 02:48:20 +0000
Files and hashes:         1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: C84HURtW7dyoLP8k1g4q9L8NEYlv0MiLnlMU0M0HObs=)
                          2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl
                          rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 02:48:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 915 (0x393)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673
        Validity
            Not Before: Oct 19 02:48:20 2025 GMT
            Not After : Oct 26 02:48:20 2025 GMT
        Subject: CN=68f45175-16cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:d7:6c:1d:78:1a:ac:ae:1b:e0:78:ce:4d:d1:
                    bb:2a:20:76:37:ea:90:1e:f0:3d:d3:9b:7b:68:e6:
                    2c:06:13:3a:73:97:3e:3a:da:bb:5c:25:52:8e:90:
                    bc:8d:16:4d:60:48:28:40:96:4f:76:c3:f2:00:f4:
                    d1:a9:7d:ac:80:68:a3:64:4b:c3:ee:ca:54:49:94:
                    26:e5:64:ad:72:b2:ac:cc:85:7a:2b:f2:54:8b:9d:
                    da:1b:29:8d:0e:53:ea:1c:d5:bd:0d:fb:2d:27:2a:
                    d5:39:f3:52:d0:ae:86:ba:bd:4d:a8:2e:74:d6:b6:
                    85:31:9f:56:4a:96:06:d0:a7:4a:57:46:34:5e:32:
                    cd:48:08:96:f4:b0:07:4a:93:51:70:74:a7:4e:f7:
                    c3:be:1b:af:1d:07:c2:41:66:bf:8f:79:56:04:1c:
                    85:30:1c:4a:4f:6e:fd:31:dc:38:6a:f2:04:c0:d0:
                    d8:0b:13:8f:f9:b5:60:f7:c8:a6:c2:e4:7e:d0:d4:
                    bd:f2:bd:16:a3:7a:de:0e:be:8a:3b:a9:37:a5:a2:
                    37:3e:fe:8d:ec:3d:95:2d:7f:98:52:4b:81:1f:8f:
                    07:e2:57:7b:3b:aa:88:07:e4:c8:cc:3c:85:1b:9d:
                    1c:b9:de:2c:5f:b4:c5:66:d9:31:6a:30:39:0a:38:
                    96:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:3E:85:A6:D8:96:84:05:37:1A:79:65:6C:37:8A:1B:4A:A7:F2:5A
            X509v3 Authority Key Identifier:
                keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b6:41:3a:81:39:27:70:c0:c8:ce:a2:62:ed:6a:5a:e4:2a:ba:
         ea:16:72:23:c2:63:49:c6:e1:90:c0:00:8d:92:de:81:47:d6:
         e4:23:00:52:34:1a:4d:a7:f9:a0:44:c6:d9:b4:c9:44:ab:a8:
         d2:f7:94:95:d5:7d:5c:89:69:04:34:4c:2e:37:aa:38:66:4e:
         d8:bb:b2:16:54:89:bc:08:e2:8e:0a:e8:74:32:be:e6:9b:01:
         a2:3c:bf:49:99:a3:96:11:d5:90:7b:7b:3e:bd:81:37:ef:bd:
         9d:85:35:69:77:dc:d5:e7:25:e5:41:b5:75:9f:e6:a9:a6:69:
         97:b6:7a:c1:af:5f:47:41:32:44:9a:a0:ec:f2:58:20:36:e0:
         b8:a4:a0:98:80:71:ce:81:72:29:77:ea:98:da:01:10:92:86:
         e1:26:65:e9:89:c8:b3:73:31:06:42:95:6d:0a:28:e1:b8:1c:
         f7:54:25:41:83:41:d5:62:c2:23:03:f5:e0:80:b4:29:4a:e9:
         23:dc:2c:b9:d4:b3:eb:a6:43:15:0b:e0:f5:11:13:32:ae:ee:
         20:7e:a3:5a:fe:fa:30:bc:3a:88:1e:6a:18:81:2e:ef:e2:94:
         8a:92:b7:d0:96:76:ea:10:7e:6d:b6:19:97:df:1e:d1:7e:39:
         05:57:4b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:38:33 2025 by rpki-client