Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft
File:                     F2vOFchi1HunYKH2ZTj4HVxJO4E.mft (raw, json)
Hash identifier:          IzMNzaHy2/33zHbhBwl0Kyb7Ri6YxehbL256EBz/NK0=
Subject key identifier:   FE:1C:CD:C1:53:6A:07:E8:76:B8:5C:AE:39:F4:DE:55:E8:83:40:16
Authority key identifier: 17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81
Certificate issuer:       /CN=A91706E4/serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81
Certificate serial:       AC
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft
Manifest number:          AB
Signing time:             Sun 19 Oct 2025 09:20:04 +0000
Manifest this update:     Sun 19 Oct 2025 09:20:03 +0000
Manifest next update:     Sun 26 Oct 2025 09:20:03 +0000
Files and hashes:         1: F2vOFchi1HunYKH2ZTj4HVxJO4E.crl (hash: T6kg34ZzYVmHobr5sTszVectbkO/0SNm9nkGDd21jFA=)
                          2: 2CE10886A68511EFB0CF9981C4F9AE02.roa (hash: veK+ihHT7rgGehPtR5m7GK/hbNWI81sjRNiKcGQwWGg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl
                          rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 09:20:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 172 (0xac)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91706E4, serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81
        Validity
            Not Before: Oct 19 09:20:03 2025 GMT
            Not After : Oct 26 09:20:03 2025 GMT
        Subject: CN=68f4ad44-a62a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:73:27:68:db:bf:7a:55:cd:bf:c4:2a:1f:e9:
                    73:be:25:45:f0:c3:42:68:cf:b8:b8:49:05:2f:1c:
                    c3:46:29:fa:98:58:fe:ac:da:69:17:8d:03:a3:99:
                    73:f0:7e:e6:33:01:75:1c:4e:8b:c4:d6:00:30:52:
                    99:b2:dc:98:40:de:4d:15:6b:7f:38:84:ee:7a:4c:
                    66:cd:0a:fd:3c:39:a7:af:6b:07:aa:9e:d7:da:98:
                    ba:49:e0:d6:5d:34:da:18:e6:ef:19:9b:2b:22:6b:
                    95:80:0a:1d:94:55:be:ce:32:c5:68:31:5d:53:22:
                    1c:e2:85:70:7e:af:6e:ca:d7:ac:0c:20:3a:74:76:
                    2c:59:88:6d:e5:7d:47:33:87:13:a1:c3:8a:96:b9:
                    80:cf:36:5a:4f:b6:8f:2b:40:79:d6:e0:7a:c7:32:
                    b4:2d:01:6c:8f:0f:3d:61:77:0e:6f:08:1a:d2:6e:
                    05:4a:c8:78:71:3c:7b:88:d1:b5:79:12:6e:ab:59:
                    ba:b4:6e:d3:44:94:1f:bb:58:ac:60:dd:bb:a8:43:
                    5b:4f:4a:e9:81:64:e8:d6:8b:53:7b:1f:54:d4:f8:
                    8e:46:a1:4c:96:4d:4e:6c:2f:17:76:cd:e3:74:34:
                    f0:f9:01:ab:b6:3a:9a:a8:9a:6c:d4:55:65:3f:1b:
                    09:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:1C:CD:C1:53:6A:07:E8:76:B8:5C:AE:39:F4:DE:55:E8:83:40:16
            X509v3 Authority Key Identifier:
                keyid:17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:2c:08:41:3a:0c:e6:2a:02:c2:27:59:2a:cc:c0:20:76:3a:
         ff:87:19:f1:37:09:28:a7:1f:41:98:21:09:8d:e7:a7:d9:b0:
         c1:df:de:dd:4e:31:1e:6f:fa:0f:fc:4f:70:76:2b:70:f3:c5:
         b9:3f:bf:25:79:51:e2:16:f7:6e:54:78:24:05:13:b6:8c:f1:
         92:ab:68:a1:df:c5:f6:1a:eb:b6:50:f9:13:00:3d:3e:4c:b5:
         4d:b2:9b:ef:4e:b6:96:62:68:8d:29:9c:fe:a5:b9:79:89:a1:
         7b:c8:d5:b7:2d:e4:47:60:4a:ef:68:87:20:a3:4a:cd:fe:e6:
         3c:01:8e:37:e6:14:3b:15:4c:53:af:9d:89:e5:7c:4c:74:f3:
         80:28:80:2b:81:83:e1:17:6c:10:1d:f7:c6:a3:7d:5e:e1:c9:
         e4:f1:34:60:65:d0:e7:b3:96:32:e2:58:74:b9:5f:67:54:d3:
         9b:cd:8c:3d:e7:b1:a4:26:c9:da:4f:f7:d7:ba:31:55:74:84:
         83:77:a8:f7:e7:75:3e:65:c1:37:38:ad:16:d0:43:66:0e:e3:
         55:20:47:8c:af:17:37:8e:14:fd:3c:38:69:fb:08:b3:8f:cd:
         71:c0:df:a5:7d:3c:0b:f0:d0:09:4c:f0:20:61:a8:f7:e3:08:
         01:81:68:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 03:06:34 2025 by rpki-client