Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft
File:                     xl_8-yz82bzWja6waX0xbPNbI_A.mft (raw, json)
Hash identifier:          er0xglZNiZiPMYBnaO/XEZ/2bjf7SOZ/TzAuA+ijfAk=
Subject key identifier:   47:DC:1F:F6:46:EF:C0:13:43:D1:FE:20:5A:C3:E6:53:50:B5:FE:6D
Authority key identifier: C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0
Certificate issuer:       /CN=A91472E2/serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0
Certificate serial:       02DB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft
Manifest number:          02CF
Signing time:             Sun 19 Oct 2025 03:33:31 +0000
Manifest this update:     Sun 19 Oct 2025 03:33:30 +0000
Manifest next update:     Sun 26 Oct 2025 03:33:30 +0000
Files and hashes:         1: xl_8-yz82bzWja6waX0xbPNbI_A.crl (hash: Bag4odltx/E9xvw+Vuv/Ivvxx9mqXhgIjrgOaMYWMIY=)
                          2: 216EE802F87A11EDAAE56C0DC4F9AE02.roa (hash: le7JEqoYvZIMl+uq0wwq/akdNhi0QtrKh8LNnkVREXQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl
                          rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 03:33:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 731 (0x2db)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91472E2, serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0
        Validity
            Not Before: Oct 19 03:33:30 2025 GMT
            Not After : Oct 26 03:33:30 2025 GMT
        Subject: CN=68f45c0a-9110
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:3f:24:a4:b7:2f:86:04:57:a8:31:35:9a:a8:
                    01:f1:fd:6d:4b:3f:36:59:8d:98:fd:b0:88:6f:83:
                    e0:e2:7b:e8:f0:e5:01:3f:91:d9:62:7e:ff:66:d4:
                    a2:bd:98:49:fe:c3:89:26:40:68:ae:b2:fa:32:cc:
                    06:bd:59:68:9e:a8:04:36:ed:ff:72:2c:8a:13:ae:
                    1f:23:f8:8c:ed:c5:fc:22:57:eb:f1:bc:40:72:68:
                    79:0d:88:99:e2:3f:2a:80:6d:28:8b:de:53:b3:b6:
                    fc:f5:ed:a5:2a:3d:18:41:e4:b2:19:4b:e0:93:42:
                    e0:0b:60:44:85:1f:e7:c0:97:30:71:d7:57:21:1b:
                    d2:08:83:fc:95:15:45:0c:96:60:f1:3c:e3:52:56:
                    35:ba:6b:79:33:e0:b2:92:d8:ba:41:d7:d7:2e:e0:
                    8c:1b:f6:c3:81:bf:f1:b6:76:82:5a:a9:9d:c0:73:
                    b8:77:9f:31:ba:96:cb:d9:9f:79:93:f9:f6:8b:95:
                    df:c6:d3:63:09:82:a0:d3:7f:e4:f6:c6:16:08:5b:
                    40:cf:fc:14:ab:de:25:d2:6f:9c:2a:eb:be:02:99:
                    a6:5f:7d:cc:f6:3f:ec:5b:1a:70:85:09:62:a2:90:
                    fe:a1:6f:a7:3e:97:7a:47:4c:e6:b5:85:f9:a4:f0:
                    8b:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:DC:1F:F6:46:EF:C0:13:43:D1:FE:20:5A:C3:E6:53:50:B5:FE:6D
            X509v3 Authority Key Identifier:
                keyid:C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b2:5f:46:6b:50:24:72:2d:74:02:92:ea:56:e1:1c:9a:e9:5e:
         53:ad:4d:2c:1c:37:11:ae:8d:58:ae:6d:62:3f:dd:d0:44:d8:
         4d:13:96:9e:cb:f3:70:9c:7f:2b:33:e5:7d:21:05:0a:97:35:
         15:f6:39:04:df:1a:1f:8e:81:f2:f5:34:50:05:64:4b:fd:c7:
         fc:c9:18:8c:7c:1c:57:1e:34:1f:ae:b3:31:76:08:fe:eb:db:
         ec:c7:f7:61:a7:7d:96:b4:eb:81:65:7b:b1:55:b8:8d:08:c8:
         b2:3d:cb:fa:d0:69:d4:f2:2b:10:ee:ca:9b:03:d5:7a:ae:7f:
         b0:ad:24:77:52:b0:32:8b:1a:bc:55:83:28:59:90:b6:a7:02:
         32:e1:0c:e6:fe:ee:5e:7c:80:98:25:eb:5d:77:55:1f:1f:4d:
         af:78:c5:68:33:df:ca:ec:5d:f9:f0:a2:ff:75:40:07:26:a0:
         12:77:6d:7a:e1:4a:1d:66:da:be:bd:73:b8:04:ca:d8:27:b9:
         f1:f6:14:69:5c:eb:e2:22:a6:0f:eb:33:21:4d:1a:41:e5:48:
         58:62:46:77:58:bf:2f:32:ce:c9:53:f5:13:71:5e:2f:be:d8:
         cf:05:cf:65:1b:83:71:36:05:73:97:22:27:a9:1d:0f:d3:ff:
         7f:41:28:2b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDcyRTIxMTAvBgNVBAUTKEM2NUZGQ0ZCMkNGQ0Q5QkNENjhEQUVCMDY5N0QzMTZD
RjM1QjIzRjAwHhcNMjUxMDE5MDMzMzMwWhcNMjUxMDI2MDMzMzMwWjAYMRYwFAYD
VQQDEw02OGY0NWMwYS05MTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtz8kpLcvhgRXqDE1mqgB8f1tSz82WY2Y/bCIb4Pg4nvo8OUBP5HZYn7/ZtSi
vZhJ/sOJJkBorrL6MswGvVlonqgENu3/ciyKE64fI/iM7cX8Ilfr8bxAcmh5DYiZ
4j8qgG0oi95Ts7b89e2lKj0YQeSyGUvgk0LgC2BEhR/nwJcwcddXIRvSCIP8lRVF
DJZg8TzjUlY1umt5M+Cykti6QdfXLuCMG/bDgb/xtnaCWqmdwHO4d58xupbL2Z95
k/n2i5XfxtNjCYKg03/k9sYWCFtAz/wUq94l0m+cKuu+ApmmX33M9j/sWxpwhQli
opD+oW+nPpd6R0zmtYX5pPCLCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfcH/ZG
78ATQ9H+IFrD5lNQtf5tMB8GA1UdIwQYMBaAFMZf/Pss/Nm81o2usGl9MWzzWyPw
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzJFMi8yRjE5NTM1QzBD
QjIxMUVEOTVDRUM5NUNDNEY5QUUwMi94bF84LXl6ODJieldqYTZ3YVgweGJQTmJJ
X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3hsXzgteXo4MmJ6V2phNndhWDB4YlBOYklfQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
NzJFMi8yRjE5NTM1QzBDQjIxMUVEOTVDRUM5NUNDNEY5QUUwMi94bF84LXl6ODJi
eldqYTZ3YVgweGJQTmJJX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCyX0ZrUCRyLXQCkupW4Rya6V5TrU0sHDcRro1Yrm1iP93QRNhNE5ae
y/NwnH8rM+V9IQUKlzUV9jkE3xofjoHy9TRQBWRL/cf8yRiMfBxXHjQfrrMxdgj+
69vsx/dhp32WtOuBZXuxVbiNCMiyPcv60GnU8isQ7sqbA9V6rn+wrSR3UrAyixq8
VYMoWZC2pwIy4Qzm/u5efICYJetdd1UfH02veMVoM9/K7F358KL/dUAHJqASd216
4UodZtq+vXO4BMrYJ7nx9hRpXOviIqYP6zMhTRpB5UhYYkZ3WL8vMs7JU/UTcV4v
vtjPBc9lG4NxNgVzlyInqR0P0/9/QSgr
-----END CERTIFICATE-----
Generated at Mon Oct 20 18:53:09 2025 by rpki-client