Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft
File:                     8VAZIKVfOnwnEDkUn_oop8HMOPE.mft (raw, json)
Hash identifier:          SnhN/7RZ0LlqwlpkfhdwY48hk9TUo3vs8LbWIogFcBs=
Subject key identifier:   01:49:A5:1F:63:C0:7F:95:E1:C9:76:94:26:AB:D0:C3:41:C1:7D:35
Authority key identifier: F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1
Certificate issuer:       /CN=A91B49C0/serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1
Certificate serial:       03A8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft
Manifest number:          03A4
Signing time:             Sun 19 Oct 2025 02:43:50 +0000
Manifest this update:     Sun 19 Oct 2025 02:43:49 +0000
Manifest next update:     Sun 26 Oct 2025 02:43:49 +0000
Files and hashes:         1: 8VAZIKVfOnwnEDkUn_oop8HMOPE.crl (hash: N/WLmxpNvFg+5r302tlAvypiPl8DwWQo2QKORTWZYv8=)
                          2: 8304B142B34711EC90A6DA67C4F9AE02.roa (hash: WXC/B6Dbe8kPnOwbgfCf/9me935cYsiOJufkenUuGQo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl
                          rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 02:43:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 936 (0x3a8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B49C0, serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1
        Validity
            Not Before: Oct 19 02:43:49 2025 GMT
            Not After : Oct 26 02:43:49 2025 GMT
        Subject: CN=68f45065-a472
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:0c:30:9e:19:63:e9:72:8e:15:69:3a:5e:f0:
                    d5:7e:8c:87:a8:ca:a5:24:a3:19:52:83:23:da:60:
                    1c:28:8f:0b:9b:34:94:3c:d7:5d:92:88:4e:f2:dd:
                    0d:55:e1:ec:6d:95:85:02:f0:f3:cc:10:1d:6a:3c:
                    10:ca:f0:0c:a2:08:fc:fb:70:4b:17:51:ee:2d:c3:
                    4e:3e:16:29:99:0a:a3:e5:0f:d1:94:df:9d:76:2c:
                    7f:8b:59:58:50:31:96:59:cc:bb:47:56:27:f8:7f:
                    af:25:0c:1f:34:78:7d:e5:19:08:ba:5d:16:00:0c:
                    d9:6a:5b:52:96:c5:4c:c0:85:77:08:98:1d:71:99:
                    c0:57:05:3a:bd:65:3e:7c:68:d3:d9:0f:59:f7:95:
                    a5:40:f9:d4:18:9e:c5:7a:f7:7b:1a:e3:d3:40:71:
                    33:39:b3:d6:b4:57:4e:35:d0:e0:b6:94:c4:6b:e4:
                    89:1e:06:a9:17:5b:6a:9d:f0:09:b8:63:1d:63:be:
                    3e:e5:2d:41:9e:08:c6:92:b1:4c:81:a4:57:cd:40:
                    54:e9:f8:d3:51:0e:b0:c1:d0:10:3c:df:a3:19:f4:
                    48:55:91:08:69:8e:f9:31:c5:d9:c7:d2:a9:38:f6:
                    e1:62:86:70:42:f3:d1:ed:9e:c1:77:85:93:f3:e2:
                    f9:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:49:A5:1F:63:C0:7F:95:E1:C9:76:94:26:AB:D0:C3:41:C1:7D:35
            X509v3 Authority Key Identifier:
                keyid:F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:bc:6f:c8:37:51:83:a5:af:b5:69:94:88:a1:a2:63:42:36:
         8e:3d:0c:7c:33:ca:87:3c:cc:6f:7b:36:ea:57:9f:95:fb:dc:
         20:88:e8:5f:43:9b:0d:9a:64:74:a4:b4:1b:e5:b3:72:bb:45:
         68:b0:08:32:1f:e2:3b:a0:21:6c:75:3a:8a:e0:18:bd:13:ef:
         fa:0d:cc:62:33:57:f8:3e:d6:67:3b:4f:14:4d:c9:b6:4e:0a:
         49:2d:e6:97:90:b7:af:8f:5b:17:ae:03:b7:75:f5:da:a1:56:
         02:d3:27:55:e1:44:59:7e:44:6e:a9:b7:84:5b:b4:cf:63:3d:
         b6:42:3c:48:e1:64:17:f9:78:b1:d5:44:80:d1:de:6c:35:d3:
         7b:15:dc:61:38:0c:25:62:9f:93:3a:39:a6:e6:ac:54:b2:8f:
         33:21:91:b8:68:32:93:d0:9b:03:27:44:e0:0b:5e:a2:58:2e:
         ff:3e:90:5d:7d:64:d8:bc:55:4a:18:db:66:d5:ff:5b:fe:73:
         fa:19:ea:da:8e:75:13:77:ee:5f:43:96:f4:fa:72:90:51:15:
         4c:e0:06:52:97:81:0a:b9:11:42:b4:33:bc:7a:52:56:95:20:
         ee:ff:1b:9d:3d:26:c8:58:fd:8b:35:da:3a:99:80:36:8a:c5:
         c9:08:e7:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:42:45 2025 by rpki-client