Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft
File:                     VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json)
Hash identifier:          qeLFSn3L96AT9l/u8KEz02JiAa3gtUtci97xmrFJJF8=
Subject key identifier:   0C:E2:A3:B4:20:E1:26:72:F8:CA:49:BA:4C:0E:5D:33:ED:C4:43:3E
Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21
Certificate issuer:       /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421
Certificate serial:       0120
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft
Manifest number:          011D
Signing time:             Sun 19 Oct 2025 07:42:50 +0000
Manifest this update:     Sun 19 Oct 2025 07:42:49 +0000
Manifest next update:     Sun 26 Oct 2025 07:42:49 +0000
Files and hashes:         1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: EkCimBoDPfn1QP0vlUfWmqO1pse6yU6GgY2hzehwE+U=)
                          2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: ntYNg2NxlTO59svip/Wfi9QINiH7RWI4kV7Rh6n46eE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl
                          rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 07:42:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 288 (0x120)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9165556, serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421
        Validity
            Not Before: Oct 19 07:42:49 2025 GMT
            Not After : Oct 26 07:42:49 2025 GMT
        Subject: CN=68f4967a-2adf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:e3:9b:99:2b:2d:e8:bd:20:36:fa:3f:29:03:
                    18:d3:15:75:0a:44:c2:18:52:f2:a2:3e:ee:10:13:
                    66:a0:9c:7b:18:96:7c:f6:c4:53:28:2d:ef:9a:70:
                    df:7a:4d:e0:59:98:3a:c5:f9:00:11:12:7c:c8:6f:
                    9f:fa:d3:f4:4b:c5:e2:4a:72:de:f9:84:55:0b:65:
                    0b:b2:03:9d:65:4b:c0:3d:96:b7:11:fe:9d:f8:b1:
                    98:48:14:3b:3e:fd:32:e5:1b:7f:51:2b:6e:6d:91:
                    e8:bf:76:a5:3b:b0:67:17:ec:34:38:92:87:c2:cd:
                    69:8e:c5:f4:a5:4f:86:a2:75:35:2f:e4:f7:a3:d9:
                    d9:15:6e:23:6b:b4:e1:de:da:65:40:3e:d5:43:68:
                    7f:41:6e:ed:27:3a:b8:11:89:df:bf:2a:bd:29:3e:
                    a7:bb:f7:17:81:0d:39:e6:b7:20:99:a6:52:c1:c6:
                    ac:44:f2:63:01:a3:cf:ba:59:37:40:80:70:66:61:
                    00:a7:c0:89:f7:b2:f3:4b:e5:e7:93:0f:ec:f7:85:
                    ec:22:6f:88:d7:b5:03:80:a0:25:77:86:f2:7b:35:
                    a2:5d:7c:51:98:b9:6a:71:a4:96:42:78:b7:4e:e7:
                    0c:aa:a9:17:72:17:e6:3a:fb:87:9e:0e:c5:77:66:
                    e1:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0C:E2:A3:B4:20:E1:26:72:F8:CA:49:BA:4C:0E:5D:33:ED:C4:43:3E
            X509v3 Authority Key Identifier:
                keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         09:de:bd:36:c1:7a:61:af:97:8f:82:7b:15:64:ed:3c:d8:aa:
         d4:e4:2f:53:79:31:bd:56:7d:6a:0c:51:2e:08:08:58:4f:2c:
         e3:c3:b1:4a:eb:d1:23:ab:4a:5a:f6:ec:39:84:dc:bc:bf:b3:
         e6:b5:11:77:35:4a:48:97:e3:65:45:17:81:86:99:5d:43:02:
         34:27:1c:52:5d:65:20:18:5a:5c:05:13:ac:f1:b5:38:68:45:
         7d:34:f7:96:48:b1:f2:fa:1b:12:1c:70:93:56:c3:67:04:0a:
         81:e6:a4:13:7c:66:cf:e0:8e:94:20:bb:e8:1f:e3:7f:be:b9:
         0a:3f:ea:fa:d3:07:3a:37:71:50:3f:22:41:86:57:20:39:ae:
         13:f6:a8:6f:b8:2d:24:2d:78:53:ce:c3:11:05:40:49:87:7b:
         a9:c2:6c:b2:0e:38:d9:b1:31:d9:c9:01:c3:8d:75:15:12:c1:
         47:e4:ec:d4:2c:9e:72:57:7a:98:4d:ab:13:fd:83:63:fa:00:
         13:8e:55:84:42:71:ee:f7:0f:ff:a2:59:6f:4b:f2:3f:7a:14:
         5a:5c:b1:20:56:fb:68:12:a8:67:35:ec:f4:09:f7:95:c3:65:
         a1:d9:80:61:17:eb:12:4b:1c:2f:94:3a:fd:c3:4c:31:6f:b4:
         7b:1b:aa:6f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjU1NTYxMTAvBgNVBAUTKDU0QUE0RjIxMTNBMEQxQTFCN0VFNTUxMkJFQUU1Mzcx
RUM2REE0MjEwHhcNMjUxMDE5MDc0MjQ5WhcNMjUxMDI2MDc0MjQ5WjAYMRYwFAYD
VQQDEw02OGY0OTY3YS0yYWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsOObmSst6L0gNvo/KQMY0xV1CkTCGFLyoj7uEBNmoJx7GJZ89sRTKC3vmnDf
ek3gWZg6xfkAERJ8yG+f+tP0S8XiSnLe+YRVC2ULsgOdZUvAPZa3Ef6d+LGYSBQ7
Pv0y5Rt/UStubZHov3alO7BnF+w0OJKHws1pjsX0pU+GonU1L+T3o9nZFW4ja7Th
3tplQD7VQ2h/QW7tJzq4EYnfvyq9KT6nu/cXgQ055rcgmaZSwcasRPJjAaPPulk3
QIBwZmEAp8CJ97LzS+Xnkw/s94XsIm+I17UDgKAld4byezWiXXxRmLlqcaSWQni3
TucMqqkXchfmOvuHng7Fd2bh3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzio7Qg
4SZy+MpJukwOXTPtxEM+MB8GA1UdIwQYMBaAFFSqTyEToNGht+5VEr6uU3HsbaQh
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU1Ni9CMTQ1RDAyRTAx
N0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBhRzM3bFVTdnE1VGNleHRw
Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBDRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
NTU1Ni9CMTQ1RDAyRTAxN0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBh
RzM3bFVTdnE1VGNleHRwQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAJ3r02wXphr5ePgnsVZO082KrU5C9TeTG9Vn1qDFEuCAhYTyzjw7FK
69Ejq0pa9uw5hNy8v7PmtRF3NUpIl+NlRReBhpldQwI0JxxSXWUgGFpcBROs8bU4
aEV9NPeWSLHy+hsSHHCTVsNnBAqB5qQTfGbP4I6UILvoH+N/vrkKP+r60wc6N3FQ
PyJBhlcgOa4T9qhvuC0kLXhTzsMRBUBJh3upwmyyDjjZsTHZyQHDjXUVEsFH5OzU
LJ5yV3qYTasT/YNj+gATjlWEQnHu9w//ollvS/I/ehRaXLEgVvtoEqhnNez0CfeV
w2Wh2YBhF+sSSxwvlDr9w0wxb7R7G6pv
-----END CERTIFICATE-----
Generated at Mon Oct 20 10:30:57 2025 by rpki-client