Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft
File:                     97sXL8rsr7-evvJQihVCZDOuyd4.mft (raw, json)
Hash identifier:          hxH/D0jc5F2vVoxd3fFUjv4wudQDT/AmwAqt8rsoxc0=
Subject key identifier:   89:BF:8D:60:D2:CA:D9:5F:03:2E:E3:89:E2:73:46:8D:C0:8A:1C:E1
Authority key identifier: F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE
Certificate issuer:       /CN=A91CEDD3/serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE
Certificate serial:       0226
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft
Manifest number:          0220
Signing time:             Sun 19 Oct 2025 04:23:35 +0000
Manifest this update:     Sun 19 Oct 2025 04:23:34 +0000
Manifest next update:     Sun 26 Oct 2025 04:23:34 +0000
Files and hashes:         1: 97sXL8rsr7-evvJQihVCZDOuyd4.crl (hash: Uz1AbC58mTTx2MuziVFwzpXQXTyYz8a0RHj3du/gc4E=)
                          2: C714C5A6706211EDA9CCDB76C4F9AE02.roa (hash: AIFISpe4UUSb102JMnJULUVmkKzdqcMZuRuO6tOo8G0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl
                          rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 04:23:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 550 (0x226)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CEDD3, serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE
        Validity
            Not Before: Oct 19 04:23:34 2025 GMT
            Not After : Oct 26 04:23:34 2025 GMT
        Subject: CN=68f467c6-4d9c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:99:25:72:1f:c6:25:da:df:b3:26:da:95:9b:
                    96:c0:f2:e8:a5:fd:d4:41:cf:48:c9:84:55:0b:fd:
                    b9:30:bb:20:70:fa:64:ee:2f:fd:11:bc:14:c1:b0:
                    22:9a:93:c1:3e:e5:5a:49:63:31:1a:2f:26:c9:e8:
                    2c:0e:d0:e9:34:80:0c:51:89:3b:a0:f9:3e:36:14:
                    c6:96:42:3c:f4:3c:aa:51:30:5b:28:00:b8:da:00:
                    05:64:a0:39:41:45:89:72:64:09:40:b2:5c:5b:f2:
                    ee:e0:fc:f5:bd:65:33:46:af:89:43:e8:1f:d1:46:
                    92:b2:2b:77:90:7a:4a:bd:03:1e:1e:d1:3c:37:82:
                    ca:35:07:1d:32:98:a2:2b:d8:ac:5c:5b:4d:4b:3a:
                    ec:46:a5:55:23:77:b4:3f:26:d5:ab:c0:a2:04:b6:
                    97:df:6b:6b:43:c9:5e:1c:00:26:00:41:a0:c7:59:
                    c6:bd:e7:c9:38:90:20:b9:6c:d0:c0:ad:00:34:4b:
                    d3:2e:93:c3:61:1b:dd:18:d2:b0:23:61:70:4a:c5:
                    f7:72:49:5c:70:61:c2:25:b6:5a:03:4a:a4:d9:aa:
                    4b:16:29:25:b9:bb:9f:02:1b:23:ba:79:7a:ad:05:
                    69:6e:e0:18:5f:64:98:91:51:cd:c2:57:bb:49:84:
                    31:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:BF:8D:60:D2:CA:D9:5F:03:2E:E3:89:E2:73:46:8D:C0:8A:1C:E1
            X509v3 Authority Key Identifier:
                keyid:F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:1f:cf:ef:87:b7:0b:91:ac:2e:e5:4b:d4:a8:d1:93:ab:e8:
         85:41:fb:74:f9:20:4e:38:40:4d:52:2b:ec:8b:0b:84:e6:5c:
         45:04:c0:a1:0c:79:68:66:d2:e6:d6:3f:ac:a2:c9:e2:fc:d6:
         2e:0f:32:d2:84:92:bd:c0:a2:f7:81:eb:19:42:32:08:33:bb:
         54:46:e2:8d:53:3f:d7:51:f6:5c:7a:a2:f3:01:11:fa:31:2b:
         78:fd:0e:9c:19:83:cc:82:1b:a6:75:be:9b:ed:89:8e:3d:5e:
         50:ff:c2:e2:05:4c:3d:19:42:af:99:3d:6b:12:68:c4:e5:3c:
         d8:97:43:69:07:b7:81:98:7b:56:79:c7:d3:ef:cc:49:4c:e6:
         2a:87:92:44:32:28:1f:84:cd:28:39:48:a5:46:c2:8a:4b:23:
         4f:89:dc:1d:c6:56:1c:70:4e:ac:ae:a4:8d:11:b9:9c:2e:1a:
         30:06:a8:19:53:16:f2:3d:fe:50:bf:f0:15:d1:42:da:2a:90:
         fe:d8:d4:46:c3:8e:ca:5e:d8:49:01:be:b5:08:3e:61:27:55:
         3d:f5:6f:68:e5:ad:4b:6c:d1:0b:22:b5:6b:a1:c0:b6:17:b2:
         19:5c:ba:47:fb:36:ad:86:67:00:7d:f0:8b:b5:6c:a4:34:13:
         2c:f0:73:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 10:31:02 2025 by rpki-client