Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft
File:                     4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json)
Hash identifier:          dC4cxXM4pnfbXLajS+4s8nFXSgBiLcAIgvf3vQDx/WY=
Subject key identifier:   88:91:F1:EF:66:4D:C5:7C:50:E5:7A:C6:00:94:27:B6:67:FD:0C:6E
Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1
Certificate issuer:       /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1
Certificate serial:       06ED
Authority info access:    rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft
Manifest number:          06C9
Signing time:             Mon 20 Oct 2025 17:15:51 +0000
Manifest this update:     Mon 20 Oct 2025 17:15:51 +0000
Manifest next update:     Mon 27 Oct 2025 17:15:51 +0000
Files and hashes:         1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: OG6cIhikYX56ZnHKsFitrRd/dreUdQe0Mnz5wE0IMfA=)
                          2: 91E868D4902B11EF87435A54C4F9AE02.roa (hash: qm9tOH02ZhUyhN95rojnAyTLcNLxX4GEOIv6/MzX5Qk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl
                          rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft
                          rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer
                          rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
                          rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 27 Oct 2025 14:50:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1773 (0x6ed)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917E678, serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1
        Validity
            Not Before: Oct 20 17:15:51 2025 GMT
            Not After : Oct 27 17:15:51 2025 GMT
        Subject: CN=68f66e47-15b8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:bc:b1:70:5a:01:63:40:39:b0:a3:75:76:2f:
                    a0:a1:5d:84:d0:84:4a:29:54:e5:a2:01:10:aa:61:
                    fc:29:53:13:5a:ad:48:3e:6f:4b:80:5c:6b:ef:68:
                    0c:09:99:f4:f0:0b:9b:b8:60:7f:34:48:a9:13:ad:
                    14:95:4c:2d:0e:93:b4:95:92:50:95:1f:96:7e:48:
                    23:95:19:61:4a:18:bc:70:c0:aa:3f:70:0a:b5:de:
                    c0:fd:4a:11:fb:63:18:de:dc:09:52:a9:23:7b:f0:
                    6d:fe:ab:fb:ff:92:f8:1f:83:2b:c4:35:4e:b9:d0:
                    e5:70:36:86:55:24:2c:5b:55:1b:b3:b4:07:90:f5:
                    18:c4:2b:94:3d:c9:14:f0:08:47:fd:c1:fb:1c:66:
                    26:cb:5c:32:08:c9:2e:f4:e9:08:36:fd:59:b0:33:
                    d0:54:68:6a:65:8d:43:89:94:98:0a:c2:d8:12:17:
                    dc:cd:3f:08:24:aa:5e:51:a0:e8:97:2e:fe:c6:23:
                    29:e7:66:87:f6:d7:23:8c:5b:da:3f:ce:da:80:94:
                    59:44:78:e8:94:70:f3:57:34:1c:ad:f3:6d:c9:e0:
                    21:46:35:21:c3:de:12:8f:c4:15:4c:77:c2:42:81:
                    d5:3f:dc:d4:7b:ed:90:7a:ea:a2:79:48:49:9e:6b:
                    98:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:91:F1:EF:66:4D:C5:7C:50:E5:7A:C6:00:94:27:B6:67:FD:0C:6E
            X509v3 Authority Key Identifier:
                keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         cb:59:dc:eb:91:79:ee:99:45:03:8f:7e:8a:b4:1c:b7:0c:03:
         8d:b5:9b:49:a0:78:04:a6:cc:f4:16:a1:35:13:0b:2b:c1:af:
         e5:a5:3b:a9:24:6a:a1:b1:d7:ad:39:86:45:39:17:7d:07:00:
         89:36:87:d7:d8:4b:b1:e7:36:b2:13:2c:9d:46:b2:01:de:e9:
         3d:83:3d:e7:94:e7:59:b7:7c:f6:bd:9e:a9:88:78:e8:59:72:
         bd:8c:ce:51:b2:8b:3b:8b:65:e9:ee:72:52:b2:47:e5:13:94:
         92:58:b2:60:18:17:3d:7c:e5:af:67:f9:f3:e6:7c:15:24:5e:
         0b:7c:4a:1a:83:55:e5:08:68:c7:e5:d4:7e:a9:cb:0b:18:dd:
         0d:79:2e:eb:56:70:85:74:0e:d6:87:bc:40:0b:20:cc:9f:92:
         6d:ef:1d:d4:e8:ba:58:aa:1b:cd:9a:d0:36:28:65:70:d3:db:
         11:0b:49:4d:9d:8a:34:db:39:e2:55:a3:9d:f3:5e:2d:19:34:
         a5:90:16:33:da:f5:85:5e:52:6d:81:f9:02:bb:9e:18:77:64:
         4c:11:6d:09:db:9f:8e:06:01:3a:24:73:91:0a:ed:34:97:2c:
         7b:68:c9:76:a4:d5:1f:96:54:76:d4:3a:44:26:fd:0d:05:9b:
         14:45:d2:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 02:26:43 2025 by rpki-client