Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft
File:                     hsjX-0IuFSejmUSD0fne8sYKMHI.mft (raw, json)
Hash identifier:          NRvxO8Be+NPwgiBdB3Ypc0GKMmDpHdY9UzikyXv/94Y=
Subject key identifier:   69:3A:2F:62:4C:EF:3E:46:0A:F4:8A:80:3A:20:75:18:FF:8C:AB:DE
Authority key identifier: 86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72
Certificate issuer:       /CN=A91BEB11/serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072
Certificate serial:       34CB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft
Manifest number:          34CB
Signing time:             Sat 18 Oct 2025 15:02:48 +0000
Manifest this update:     Sat 18 Oct 2025 15:02:47 +0000
Manifest next update:     Sat 25 Oct 2025 15:02:47 +0000
Files and hashes:         1: hsjX-0IuFSejmUSD0fne8sYKMHI.crl (hash: /vdhjPB/2xd8rZUZ9tMR5hhTZJlBfTLKU3Gpb1n08WI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl
                          rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 15:02:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13515 (0x34cb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BEB11, serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072
        Validity
            Not Before: Oct 18 15:02:47 2025 GMT
            Not After : Oct 25 15:02:47 2025 GMT
        Subject: CN=68f3ac18-b2b5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:53:c5:8c:c9:55:73:94:8d:9b:b9:5b:e9:dd:
                    a2:49:ee:61:d6:6e:f0:5a:8b:db:92:5d:86:0d:f5:
                    a3:8e:c0:0a:77:ad:b3:0e:19:ad:21:54:31:69:a2:
                    99:45:75:dd:e0:a8:1d:83:1d:2d:7b:10:2b:9b:61:
                    52:cb:7d:45:eb:bb:d1:17:7a:ef:08:85:b7:57:0a:
                    b0:a2:bc:f5:fc:1b:fe:33:b2:8b:02:22:99:77:c9:
                    e3:f6:91:2c:a9:72:86:60:47:67:14:6d:c0:c6:d2:
                    5b:75:8a:0f:c7:21:8d:6e:70:c4:28:33:6b:23:6e:
                    eb:2b:ef:fe:29:9d:2f:0b:cc:51:b8:2b:b6:38:5a:
                    0a:b8:aa:ab:cf:b2:e0:bf:9b:b4:d0:cd:f9:ce:41:
                    8e:ed:fc:e0:54:a7:60:be:7e:52:ad:b6:59:47:4f:
                    0d:10:b2:3a:89:28:d9:e9:d3:bb:ae:fe:90:bb:b8:
                    d4:e1:95:f4:41:cc:9e:62:12:a7:73:b7:c1:bc:b8:
                    af:b5:07:2d:36:54:38:ff:13:31:f1:de:ef:2c:77:
                    5b:1e:54:95:bc:25:ea:3b:20:73:46:37:db:2d:18:
                    92:59:95:a0:a4:4d:4e:47:0a:15:df:e5:83:6c:12:
                    4a:da:8c:06:3c:7b:a5:62:73:f6:f3:a5:ce:03:40:
                    78:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:3A:2F:62:4C:EF:3E:46:0A:F4:8A:80:3A:20:75:18:FF:8C:AB:DE
            X509v3 Authority Key Identifier:
                keyid:86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:f5:a4:93:28:63:92:10:65:04:a0:e8:68:1e:90:10:af:55:
         31:89:81:89:ad:1e:46:64:09:6f:9e:82:6e:6c:fe:90:df:06:
         a8:15:2c:54:b0:fd:4f:3b:6a:73:c0:a3:39:b9:e5:b0:e7:19:
         10:fe:2d:5a:44:99:3f:4d:34:8e:ae:f0:ed:d8:11:71:da:c2:
         e9:8c:6a:e3:99:32:99:79:18:fa:4e:e4:07:ac:56:e4:82:5d:
         cf:c6:ed:ab:9e:3a:50:6d:bd:f6:04:39:34:c1:11:41:a7:d2:
         17:0a:8b:5a:09:13:32:7d:f4:a4:66:f2:f8:33:44:cf:b4:0d:
         d4:36:75:ea:d0:a5:5e:70:b8:88:80:c1:a8:a6:35:6a:86:b0:
         46:11:9a:24:01:95:21:68:4d:a7:ac:ce:15:fc:d3:82:e0:a6:
         3d:20:58:83:cf:fb:19:e2:37:b2:3d:9a:69:b8:69:b7:e5:a6:
         d1:0c:f9:40:b4:9b:83:24:c9:37:ac:a5:56:22:16:db:f6:af:
         ab:cd:cb:97:8e:59:ad:56:ee:7f:d2:f1:61:a9:09:53:61:53:
         bd:2b:c4:7a:59:96:81:59:62:24:f3:2a:2d:a3:8b:fb:50:06:
         df:3a:ef:d1:89:3e:17:ce:30:ce:7e:8f:6b:63:c5:7b:e0:fb:
         62:44:61:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:16:00 2025 by rpki-client