Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft
File:                     LzabRI0hcVlrosk82-JY6vMxdZQ.mft (raw, json)
Hash identifier:          +MOJxYWrAHBTQEd59URkugyG+tnUxpY8gn4Gh8z6OAU=
Subject key identifier:   03:92:45:E0:7A:B9:45:10:3A:3F:2B:3A:7E:51:CA:3F:72:49:7E:A5
Authority key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94
Certificate issuer:       /CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594
Certificate serial:       06FF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft
Manifest number:          06F7
Signing time:             Sat 18 Oct 2025 23:23:56 +0000
Manifest this update:     Sat 18 Oct 2025 23:23:55 +0000
Manifest next update:     Sat 25 Oct 2025 23:23:55 +0000
Files and hashes:         1: LzabRI0hcVlrosk82-JY6vMxdZQ.crl (hash: SlSEkEzKG7WLxfQs+KVSe7L7DdUQswXlbsZhOZv5GI4=)
                          2: 79D611D265E711EBB6FD8A0DC4F9AE02.roa (hash: 8jITrnqODr3hbw+6QboJeBK8U7SJ4xuwPGHj3X5tTD4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl
                          rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 23:23:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1791 (0x6ff)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9161A5A, serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594
        Validity
            Not Before: Oct 18 23:23:55 2025 GMT
            Not After : Oct 25 23:23:55 2025 GMT
        Subject: CN=68f4218b-2602
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:c8:78:9d:f2:92:58:14:3f:26:29:ab:52:93:
                    07:d9:14:96:4e:44:2b:19:75:b6:6c:bb:78:88:0a:
                    14:d7:e8:be:f0:aa:d8:c5:dc:ee:fa:f9:8f:07:c6:
                    00:8e:91:63:ca:1c:bc:7b:96:6b:eb:e3:f2:50:78:
                    b1:c5:65:26:ae:cd:63:25:8b:70:53:a7:1a:81:26:
                    72:69:d9:24:e1:49:de:e3:ad:8d:7f:a5:3c:f9:6e:
                    f9:a4:99:3a:2d:f9:42:4e:4c:ed:98:e3:14:6c:19:
                    84:09:29:3c:90:44:25:49:e5:be:5e:c9:d4:9b:a7:
                    f1:28:3f:b8:99:8d:46:cd:6e:6a:f5:41:8d:e6:cd:
                    ca:f4:97:4f:45:46:5e:bd:0a:e0:42:1f:1c:f3:ca:
                    9a:80:93:43:f6:a8:30:d1:ea:7e:78:75:32:d8:a6:
                    45:dd:f3:6e:03:52:32:03:b1:46:0c:0a:fb:04:78:
                    8d:55:8b:e8:7c:d8:54:71:b3:77:67:d2:0f:6a:c5:
                    47:0a:2d:b0:6e:cf:7a:f3:4b:ef:28:86:5e:d7:29:
                    27:60:01:c6:b3:a6:c8:c7:41:87:62:53:24:72:95:
                    fb:77:5e:f8:d7:a0:00:0e:b0:49:94:4b:0c:ef:20:
                    ad:78:af:9c:9c:73:e4:80:d5:84:5b:11:d6:a8:2f:
                    c4:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:92:45:E0:7A:B9:45:10:3A:3F:2B:3A:7E:51:CA:3F:72:49:7E:A5
            X509v3 Authority Key Identifier:
                keyid:2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:7f:e1:4e:34:31:be:32:ec:cc:fd:41:4d:d2:70:f7:ea:c1:
         7e:99:67:dd:45:72:29:3f:67:5c:1e:cc:21:e6:80:47:86:27:
         5c:f7:bb:5d:be:3e:1f:9f:cd:fa:2e:74:d0:5e:a9:d3:6c:7b:
         66:15:0e:5e:70:45:40:27:f0:c3:0b:30:df:a5:e7:32:95:10:
         1f:4b:d9:8f:e8:ed:e8:b7:db:6d:69:67:56:08:05:7f:3b:d7:
         84:94:cb:c5:e2:15:f3:26:97:48:af:98:d7:34:1e:11:45:29:
         b2:b0:46:49:37:44:9c:79:0d:d4:4d:6a:8e:24:5f:33:f5:29:
         09:ff:e3:83:57:17:4b:92:bc:7f:ab:91:68:73:d3:ee:01:76:
         0a:99:44:be:2e:d5:2e:1b:e5:52:a4:fe:b4:95:c0:95:60:72:
         60:ac:79:55:32:11:32:5f:a6:ab:da:7e:8e:18:48:bf:27:fa:
         f0:0c:03:12:18:29:a2:bd:df:a6:52:6f:4f:7d:f2:a7:f6:89:
         81:a8:30:cb:76:f0:db:4b:35:99:04:25:c4:54:73:96:7b:11:
         41:84:8a:62:74:39:90:69:16:3b:80:87:8c:78:dc:18:6e:9b:
         23:8e:9f:c5:3f:1b:b2:4f:5e:6f:48:74:63:57:5d:e7:ef:19:
         6e:6e:0a:29
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjFBNUExMTAvBgNVBAUTKDJGMzY5QjQ0OEQyMTcxNTk2QkEyQzkzQ0RCRTI1OEVB
RjMzMTc1OTQwHhcNMjUxMDE4MjMyMzU1WhcNMjUxMDI1MjMyMzU1WjAYMRYwFAYD
VQQDEw02OGY0MjE4Yi0yNjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqsh4nfKSWBQ/JimrUpMH2RSWTkQrGXW2bLt4iAoU1+i+8KrYxdzu+vmPB8YA
jpFjyhy8e5Zr6+PyUHixxWUmrs1jJYtwU6cagSZyadkk4Une462Nf6U8+W75pJk6
LflCTkztmOMUbBmECSk8kEQlSeW+XsnUm6fxKD+4mY1GzW5q9UGN5s3K9JdPRUZe
vQrgQh8c88qagJND9qgw0ep+eHUy2KZF3fNuA1IyA7FGDAr7BHiNVYvofNhUcbN3
Z9IPasVHCi2wbs9680vvKIZe1yknYAHGs6bIx0GHYlMkcpX7d17416AADrBJlEsM
7yCteK+cnHPkgNWEWxHWqC/EzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOSReB6
uUUQOj8rOn5Ryj9ySX6lMB8GA1UdIwQYMBaAFC82m0SNIXFZa6LJPNviWOrzMXWU
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1QS9COEJCNTY4RTY1
RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNWbHJvc2s4Mi1KWTZ2TXhk
WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0x6YWJSSTBoY1Zscm9zazgyLUpZNnZNeGRaUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
MUE1QS9COEJCNTY4RTY1RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNW
bHJvc2s4Mi1KWTZ2TXhkWlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAgf+FONDG+MuzM/UFN0nD36sF+mWfdRXIpP2dcHswh5oBHhidc97td
vj4fn836LnTQXqnTbHtmFQ5ecEVAJ/DDCzDfpecylRAfS9mP6O3ot9ttaWdWCAV/
O9eElMvF4hXzJpdIr5jXNB4RRSmysEZJN0SceQ3UTWqOJF8z9SkJ/+ODVxdLkrx/
q5Foc9PuAXYKmUS+LtUuG+VSpP60lcCVYHJgrHlVMhEyX6ar2n6OGEi/J/rwDAMS
GCmivd+mUm9PffKn9omBqDDLdvDbSzWZBCXEVHOWexFBhIpidDmQaRY7gIeMeNwY
bpsjjp/FPxuyT15vSHRjV13n7xlubgop
-----END CERTIFICATE-----
Generated at Mon Oct 20 23:14:28 2025 by rpki-client