Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft
File:                     gHwED6kB5dhpWmU03mbD1qC_vMU.mft (raw, json)
Hash identifier:          cUG0UV3M4hV6MUnIjKkBy9KTZrBODReDfl50zdqMpbQ=
Subject key identifier:   1B:57:0B:1E:4A:7F:4B:E8:A2:C0:8A:AD:4C:0F:74:E4:41:9C:A5:AE
Authority key identifier: 80:7C:04:0F:A9:01:E5:D8:69:5A:65:34:DE:66:C3:D6:A0:BF:BC:C5
Certificate issuer:       /CN=A91BC3F1/serialNumber=807C040FA901E5D8695A6534DE66C3D6A0BFBCC5
Certificate serial:       0117
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft
Manifest number:          0111
Signing time:             Sun 19 Oct 2025 07:49:35 +0000
Manifest this update:     Sun 19 Oct 2025 07:49:35 +0000
Manifest next update:     Sun 26 Oct 2025 07:49:35 +0000
Files and hashes:         1: gHwED6kB5dhpWmU03mbD1qC_vMU.crl (hash: DzGMEXCPAs4bh0U/zhjztuoNtUbUHINmwavLUoxK7eU=)
                          2: 7D9F83FE10FA11EFADBBC431C4F9AE02.roa (hash: kRUKk6YhznpQLf70+sbW+4rHruxwNLVLHD+xyjgrv/8=)
                          3: A697738410FA11EF9A068536C4F9AE02.roa (hash: GgKSSa0DZkr/DMOZ+SWiE+267xJNKIhRXUimhakcIXw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.crl
                          rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 07:49:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 279 (0x117)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BC3F1, serialNumber=807C040FA901E5D8695A6534DE66C3D6A0BFBCC5
        Validity
            Not Before: Oct 19 07:49:35 2025 GMT
            Not After : Oct 26 07:49:35 2025 GMT
        Subject: CN=68f4980f-381e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:7b:5e:81:ba:12:65:cc:34:d0:2f:ea:36:b5:
                    0d:d0:c9:b5:33:97:b9:ab:a3:de:77:6c:bf:41:c0:
                    dc:bd:61:fd:7a:63:a9:2f:62:45:d5:99:29:79:b5:
                    66:eb:40:e1:23:cc:33:fd:83:fa:6b:fa:76:a0:fc:
                    1b:08:f1:1c:05:80:bf:4e:a3:d8:33:f8:62:b9:82:
                    fe:e3:b5:54:b6:2f:e4:16:4d:82:e0:b0:97:f6:ed:
                    50:a5:55:b9:2a:b0:ee:05:98:ff:56:63:2f:53:84:
                    53:b8:27:9c:ed:9b:18:59:62:aa:d3:07:95:bf:b9:
                    f4:24:17:84:1e:09:c5:ad:02:14:93:a3:40:0e:fa:
                    f7:03:c1:d0:63:b1:f4:d0:a2:d7:d3:b6:17:32:c7:
                    70:bd:58:d9:88:52:05:a7:17:d3:50:44:7e:61:43:
                    cb:91:ca:d6:5e:7a:66:dd:d3:c9:ff:39:02:ee:f3:
                    40:cb:1c:fe:25:85:32:1c:89:e1:1c:5d:59:9d:42:
                    0d:f7:4c:0e:e4:65:f2:e4:a1:ce:59:81:a6:a1:54:
                    de:5b:b1:d2:c2:76:af:8c:75:65:98:c1:c7:b5:8c:
                    db:24:18:fa:84:81:67:27:67:82:50:cd:ca:fe:dc:
                    8c:b8:58:04:bb:22:2d:de:b5:a5:50:5c:be:fa:3e:
                    2d:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:57:0B:1E:4A:7F:4B:E8:A2:C0:8A:AD:4C:0F:74:E4:41:9C:A5:AE
            X509v3 Authority Key Identifier:
                keyid:80:7C:04:0F:A9:01:E5:D8:69:5A:65:34:DE:66:C3:D6:A0:BF:BC:C5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         82:e0:e1:de:7d:1d:86:fa:77:08:ea:e1:2c:3a:5c:67:e2:c5:
         f7:f2:13:0b:80:bf:8b:35:12:d8:8f:b7:20:a9:20:79:5c:da:
         c5:90:d2:b6:45:38:81:f5:4d:14:60:9b:ea:8a:7e:9e:ae:fe:
         a7:da:5e:fc:19:77:65:eb:09:d9:38:27:21:cc:f7:e9:9d:6c:
         ca:4d:83:79:0d:bd:8e:23:e9:2b:54:e2:a7:e4:52:f3:d1:65:
         8f:be:0e:77:31:99:07:42:5a:8c:76:9b:d4:97:1f:0a:7c:16:
         e0:a2:da:9e:f4:a3:43:f5:fb:ef:7f:11:2b:3e:81:5e:d1:6f:
         ef:3d:67:2a:2b:ac:a5:ee:0e:5e:c8:04:8a:b4:d4:e7:8d:95:
         45:20:2d:5d:36:58:79:5a:26:d4:94:d1:d0:5c:a6:65:e5:ba:
         70:75:1b:d1:5d:1c:3a:87:0e:e1:1b:b5:a6:b7:11:b0:4d:60:
         58:cb:f8:8f:ce:c2:d0:12:bf:6c:87:70:09:7c:64:fb:86:fe:
         47:6c:03:f3:70:19:46:94:4b:15:7a:5e:3d:d1:b1:1b:b0:73:
         c5:e8:7c:e8:87:a1:d2:be:5e:bd:f5:cf:70:fa:17:72:54:8f:
         76:21:37:ef:65:9a:ee:eb:69:d2:af:a8:db:79:34:ea:73:b6:
         e8:97:aa:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:14:05 2025 by rpki-client