Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft
File:                     0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft (raw, json)
Hash identifier:          U1L99xS1MHbXVbYl447lShaixu62PiVp/s5YezjiZSE=
Subject key identifier:   74:D7:E9:C8:EB:2A:E3:33:CC:E7:7B:52:F4:3C:96:0B:C7:16:21:40
Authority key identifier: D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4
Certificate issuer:       /CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4
Certificate serial:       08E0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft
Manifest number:          08D5
Signing time:             Sat 18 Oct 2025 21:32:54 +0000
Manifest this update:     Sat 18 Oct 2025 21:32:53 +0000
Manifest next update:     Sat 25 Oct 2025 21:32:53 +0000
Files and hashes:         1: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl (hash: LRL9sYdJka4GAkSqJ0KBClt3nLy3A68YAbCrOlEYhTs=)
                          2: 6E038820BF6211EA94C2957CC4F9AE02.roa (hash: PLkHHx8GaTekc9dmC5heFwXjJ3zz86/8Y8QSgJQ+mrU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl
                          rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 21:32:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2272 (0x8e0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AE08E, serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4
        Validity
            Not Before: Oct 18 21:32:53 2025 GMT
            Not After : Oct 25 21:32:53 2025 GMT
        Subject: CN=68f40786-d5d5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:c4:6a:36:a7:c9:a7:2b:18:1c:29:4a:fb:84:
                    b4:b8:7e:d8:0f:5a:14:5a:8c:dc:09:b6:af:a2:92:
                    ab:ee:e3:3b:51:50:db:65:41:eb:07:c0:e8:c9:e9:
                    93:30:f2:9c:5e:19:cc:a1:fc:f5:b4:40:41:0c:32:
                    c0:ab:7f:5b:76:d5:69:4a:48:ee:61:f3:78:d0:bd:
                    cc:ab:cb:07:54:14:b1:6c:d5:fb:c1:89:65:a4:1f:
                    4d:ed:a0:54:45:3e:9f:92:14:c9:77:28:9b:0b:b5:
                    cb:78:f7:3e:35:c1:27:ab:e2:07:eb:f1:a2:f5:9c:
                    d1:1c:32:0b:20:fc:e8:f4:6e:0b:95:66:8e:7e:eb:
                    fc:e2:2c:53:4b:56:3e:36:d1:60:2a:30:f1:81:d9:
                    5a:b8:57:2d:0e:90:da:b7:9e:05:40:c5:cc:24:f5:
                    50:cd:77:63:73:0f:b9:18:c4:c8:21:f8:2c:98:26:
                    6b:96:d6:6d:46:e0:ce:6d:87:04:bb:2c:63:ec:02:
                    4d:07:de:6a:2f:0d:db:d7:40:b0:81:73:1a:32:6a:
                    51:01:20:91:3a:54:b9:cc:e6:23:5a:72:3b:91:14:
                    58:7a:f9:fd:e5:74:c0:d2:c2:29:82:c3:72:8a:6a:
                    55:e3:81:cb:ab:5c:15:9e:5b:a6:7f:93:48:9b:45:
                    36:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:D7:E9:C8:EB:2A:E3:33:CC:E7:7B:52:F4:3C:96:0B:C7:16:21:40
            X509v3 Authority Key Identifier:
                keyid:D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:07:c8:b2:dc:f9:89:98:95:24:10:80:a1:ee:72:6f:3d:0e:
         ba:8d:8a:96:ee:90:d3:8c:bc:71:28:7b:47:d6:11:c8:7e:57:
         ac:cc:53:33:4b:15:e8:53:a2:02:04:a8:e5:9d:99:30:f3:30:
         b4:81:3c:d4:04:9f:85:3b:6b:92:10:e8:ee:5f:3e:0a:28:00:
         1a:c8:63:c0:cf:e2:0f:ae:d0:87:e8:00:05:91:3c:f6:1b:b9:
         81:87:da:15:9c:fe:f3:c6:4b:a5:1d:e6:41:7f:bf:ef:b8:96:
         08:ba:ef:10:84:20:08:f1:12:d8:2f:e8:80:f0:fe:29:27:35:
         64:97:1d:21:9a:fa:21:19:12:4f:98:22:21:24:de:fb:d2:b5:
         fa:c0:42:98:e6:59:22:73:80:4d:c0:99:cc:97:5e:6e:47:8b:
         dd:f9:e1:23:87:6b:62:a1:f4:dd:5c:4d:c1:a4:9b:dd:49:80:
         45:70:4f:ef:35:89:63:53:3c:5e:c9:cb:0b:70:05:37:3b:32:
         a6:5a:52:97:eb:80:a3:ed:8e:ab:3b:cf:6b:62:85:31:92:39:
         e7:b5:9a:a7:40:0f:81:9c:af:a7:25:f1:54:b1:4d:39:0c:0c:
         74:fa:f2:db:78:73:74:3c:a0:1b:0b:6e:bb:87:4e:27:2e:80:
         f1:03:42:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:44:54 2025 by rpki-client