Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft
File:                     fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft (raw, json)
Hash identifier:          1TbVJotEmGslEar0OVJegOG/nPub2ljEVfCJLqOjh6A=
Subject key identifier:   49:34:3E:B6:43:D6:33:7D:07:5D:8C:82:E7:7D:89:98:CF:92:D1:54
Authority key identifier: 7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B
Certificate issuer:       /CN=A9152A4E/serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B
Certificate serial:       0687
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft
Manifest number:          0680
Signing time:             Sun 19 Oct 2025 00:00:26 +0000
Manifest this update:     Sun 19 Oct 2025 00:00:25 +0000
Manifest next update:     Sun 26 Oct 2025 00:00:25 +0000
Files and hashes:         1: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl (hash: XKFNNTc91Qiik+/umcfAYWwKQMY3L6zidyx7yI1pXlg=)
                          2: AB791BEE7BC711F0B0A56A74C4F9AE02.roa (hash: lK7bGVCygyPQRcWZjT3XlPriu2CyfUJlUxTwi2dzB50=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl
                          rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 00:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1671 (0x687)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9152A4E, serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B
        Validity
            Not Before: Oct 19 00:00:25 2025 GMT
            Not After : Oct 26 00:00:25 2025 GMT
        Subject: CN=68f42a19-3a4d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:28:71:7a:21:0b:c0:c1:dd:0b:c3:7d:b8:30:
                    a1:f9:0b:67:91:1d:12:a4:eb:a1:95:a5:df:9f:ce:
                    81:5e:b9:57:84:99:ed:4d:c9:3c:31:fc:2e:da:f8:
                    41:3b:d9:bb:1e:ed:44:3f:d5:74:bf:d6:26:59:d2:
                    96:02:89:94:8d:78:52:51:23:18:41:23:69:15:e9:
                    c0:98:ee:92:0a:a4:02:ce:28:29:bf:ba:d0:36:d6:
                    35:8a:cb:f9:aa:f3:42:34:04:8e:86:8e:8b:0d:36:
                    b0:ce:8b:ef:40:39:1f:f0:f8:72:ca:ca:e3:be:7b:
                    d7:19:8d:e9:8f:9b:d4:33:f4:e7:24:5b:d9:34:a9:
                    f5:dc:f3:0d:12:53:0e:98:9f:1d:25:c2:e6:6a:36:
                    cb:d1:fe:73:9b:13:43:b3:92:54:aa:ae:11:0f:83:
                    b4:6f:77:05:ae:47:c8:14:a9:c7:c0:2a:6a:f4:f4:
                    a4:52:a5:2a:56:63:d4:dd:30:e2:f7:ab:cf:10:ae:
                    11:cd:2a:6b:09:39:ce:58:58:59:d5:92:dc:89:32:
                    c7:2c:fb:0d:73:c7:c1:ab:a7:37:05:86:54:43:33:
                    83:57:7e:0b:bb:4f:2e:15:90:81:91:d1:23:17:28:
                    83:d3:88:4a:51:5e:6d:9c:67:9f:48:d0:f4:82:98:
                    3b:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:34:3E:B6:43:D6:33:7D:07:5D:8C:82:E7:7D:89:98:CF:92:D1:54
            X509v3 Authority Key Identifier:
                keyid:7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         95:a1:d1:7f:16:54:ee:ee:f9:54:4e:87:86:97:30:94:eb:f7:
         5a:c8:12:57:b6:37:78:25:dc:62:18:0e:75:21:d9:23:33:e3:
         32:9f:79:4a:1a:1c:20:02:a5:45:17:f9:e3:18:5d:c4:30:0a:
         81:76:dc:a1:d8:9a:c9:33:80:99:48:06:11:80:66:02:1c:65:
         33:7b:12:12:f8:e9:6c:ba:72:2b:6f:af:61:b8:24:05:9e:d3:
         1d:92:ea:90:9a:d3:c9:63:5d:2c:57:86:7c:ed:ee:04:7c:30:
         d1:30:6a:46:70:0e:4a:14:20:52:3b:98:ec:e6:4b:70:f2:ae:
         b3:e5:74:f3:90:bc:78:fa:23:50:09:c0:a8:65:46:37:80:8b:
         a9:92:59:42:0f:09:e8:bb:ab:7b:71:66:8e:79:9f:34:24:41:
         40:27:0f:87:59:97:c0:35:c3:ce:b0:37:c1:ea:3f:52:be:cf:
         cd:1a:08:08:2a:e9:36:34:55:fc:56:63:79:fa:77:a6:c6:7f:
         04:30:f8:af:93:de:17:90:f7:5b:af:65:74:2a:53:5e:a6:1e:
         6c:76:31:fc:bc:58:81:2b:c3:cf:0f:ee:c7:7f:65:66:14:58:
         b9:36:7d:ea:38:54:d2:84:22:df:f6:1e:9b:0e:77:e6:a4:8b:
         c6:5e:08:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:27:12 2025 by rpki-client