Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft
File:                     S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json)
Hash identifier:          YJNtP/6dLMXKJMbs6MY6AKp0XOesEuE22aNNRg77QUw=
Subject key identifier:   C8:DF:00:17:BF:23:BD:76:7A:80:45:E6:C4:09:9F:06:34:2C:08:56
Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9
Certificate issuer:       /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9
Certificate serial:       037D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft
Manifest number:          0377
Signing time:             Sun 19 Oct 2025 02:53:41 +0000
Manifest this update:     Sun 19 Oct 2025 02:53:40 +0000
Manifest next update:     Sun 26 Oct 2025 02:53:40 +0000
Files and hashes:         1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: QGVmEpHx34QqUDtaLRcbx2bngDkVOrc6WynnnISiDEU=)
                          2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: hQOYHlCjx2ScuN+oMwFJ/ejTbPq4orU4F7qi3kUTHdM=)
                          3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: 7Gmx6aG6mVa6tW4ZmRdx25+Dm056uxm4nK4BIHzJbm8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl
                          rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 02:53:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 893 (0x37d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9
        Validity
            Not Before: Oct 19 02:53:40 2025 GMT
            Not After : Oct 26 02:53:40 2025 GMT
        Subject: CN=68f452b4-ad95
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:60:92:62:aa:9a:e5:ed:f9:e1:19:1a:d1:c0:
                    a4:b4:43:86:77:d0:b7:ab:0a:39:bd:59:a8:e4:5a:
                    e5:09:7d:de:b3:87:ec:f4:9a:14:c8:00:4b:4f:89:
                    89:ea:f5:e8:bc:8c:ec:0b:ca:38:3e:20:1f:bc:08:
                    68:0b:c3:d7:42:4d:d5:1f:21:83:8e:d3:ad:1e:34:
                    f6:27:79:f2:b8:01:88:47:84:48:77:d1:ee:06:a7:
                    1a:e2:f9:99:27:48:30:a9:6f:c7:9c:3d:0c:c1:f7:
                    9c:99:f4:6f:9e:db:ab:42:f1:fe:69:6c:fa:2f:52:
                    a9:c3:be:b8:0d:b1:14:ab:c4:b1:26:50:19:dc:56:
                    41:bd:38:f5:7a:cb:f3:62:af:0a:47:9b:f7:c5:9d:
                    5c:21:57:4f:4d:19:ac:1f:c9:d0:81:d4:75:7f:d6:
                    70:10:7b:ac:c1:81:b0:ca:ea:26:6a:6b:c8:a7:f3:
                    d8:41:31:47:db:f2:84:4c:7b:7d:33:ec:b8:55:3f:
                    0c:b0:22:c2:f7:d4:39:e6:48:ae:a2:bc:56:4e:78:
                    67:8a:19:d1:f9:51:f4:a0:6d:94:c0:19:a7:63:90:
                    44:f3:a3:66:dd:da:34:99:06:e1:45:d8:ab:6e:f1:
                    24:6b:b9:3a:1f:b2:2f:15:67:39:c4:0c:09:20:04:
                    5f:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:DF:00:17:BF:23:BD:76:7A:80:45:E6:C4:09:9F:06:34:2C:08:56
            X509v3 Authority Key Identifier:
                keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:3c:9c:79:42:65:f4:c3:5b:f2:fe:5b:6a:30:e2:bd:14:7f:
         9d:84:42:8f:bc:e7:7d:3d:92:f4:30:cb:28:fc:41:ab:6f:9a:
         bf:c7:2e:d6:0c:35:98:0f:35:16:72:f3:0d:ef:6c:52:1d:a7:
         25:01:12:0b:7b:09:ff:80:38:4c:55:c9:41:8d:26:63:a1:9a:
         95:a1:cb:e1:8d:19:f0:7e:88:70:49:83:3e:d7:65:12:63:cc:
         48:c4:a1:31:de:dc:5e:69:7c:d5:b8:04:01:ee:62:dd:f9:bd:
         11:c0:24:86:34:51:4b:d9:37:d1:01:89:bb:90:08:30:3b:bb:
         b2:df:cd:d7:bc:31:81:4e:c4:95:22:13:98:f5:5d:56:7d:5a:
         5e:d7:70:ac:87:7a:32:ac:7f:64:a7:bf:ec:52:cb:2c:58:88:
         1e:25:3d:a9:54:c9:0e:73:8f:e0:75:a3:b8:1b:88:e1:30:f4:
         f8:ec:94:1e:88:0d:d6:8f:e4:40:55:cb:69:40:ac:d7:8d:36:
         6d:91:1b:b6:61:04:23:32:d4:aa:47:4f:20:c2:c3:95:92:88:
         ec:ed:7f:69:2a:ca:12:f7:ba:ef:ca:83:14:5c:76:47:e8:0e:
         0b:31:47:2a:c3:91:a8:44:bc:48:5a:2d:3e:f3:e9:e9:33:9c:
         de:95:af:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 17:49:37 2025 by rpki-client