Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft
File:                     kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft (raw, json)
Hash identifier:          v4khwS/LXDbogRjjzlE5Cdd5nQ/+IpAMPtn35lSK/JA=
Subject key identifier:   DF:CF:B3:CC:3F:D0:D3:73:21:7E:17:70:C3:5E:46:08:57:81:65:2D
Authority key identifier: 93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA
Certificate issuer:       /CN=A91D6503/serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA
Certificate serial:       082B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft
Manifest number:          0824
Signing time:             Sat 18 Oct 2025 22:01:27 +0000
Manifest this update:     Sat 18 Oct 2025 22:01:27 +0000
Manifest next update:     Sat 25 Oct 2025 22:01:27 +0000
Files and hashes:         1: kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl (hash: Dkwa8k4476PLHD0S38cwPTCdiwgXtEdWyGZ0MUhHxZk=)
                          2: 3CC77D02EE8811EA9225690DC4F9AE02.roa (hash: OLDN/ETZEgU2Ia5DmtJOCvYxeDvefwm7Ut9VsY92Tg8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl
                          rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 22:01:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2091 (0x82b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D6503, serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA
        Validity
            Not Before: Oct 18 22:01:27 2025 GMT
            Not After : Oct 25 22:01:27 2025 GMT
        Subject: CN=68f40e37-3c1b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:59:23:75:e8:86:7d:06:b5:d2:0f:e5:1d:1b:
                    d7:a7:68:39:71:52:88:90:04:9d:2c:a3:70:7b:19:
                    65:45:fa:1c:d7:58:17:34:87:8c:b7:e0:3f:97:39:
                    8b:c3:f0:4d:4d:43:d7:19:ca:fd:b6:74:64:55:58:
                    a4:9d:9d:96:ff:e6:cb:7f:c1:19:aa:83:e5:c3:c3:
                    19:66:93:2a:e3:89:40:42:63:95:02:5e:88:ad:0f:
                    37:03:e9:71:18:bd:34:e6:08:bf:75:ff:df:68:3d:
                    ed:20:fc:ae:eb:4e:45:c4:d2:9e:cd:46:01:e8:68:
                    14:b6:4e:02:e7:23:b8:cc:9c:10:1b:e7:2a:84:65:
                    10:b3:ce:d1:56:67:37:18:91:27:fa:53:2d:b8:88:
                    8d:f2:6e:0e:8a:24:63:d4:f9:b1:8f:23:50:1d:3c:
                    b0:5a:4a:d6:cf:21:12:b9:aa:0e:70:9a:d4:ef:70:
                    ec:8a:4e:85:08:55:dc:dc:bd:3e:00:8e:87:bc:e7:
                    75:64:b0:28:4d:35:70:e4:2a:30:dc:7a:06:cb:35:
                    51:60:30:b9:06:c4:4e:f8:5e:c4:09:77:df:c9:d7:
                    58:c9:2e:0d:c2:a4:72:91:ff:9d:4f:d6:a1:2a:af:
                    69:f5:04:88:77:2e:4c:22:64:d9:81:cb:ed:43:dc:
                    ff:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DF:CF:B3:CC:3F:D0:D3:73:21:7E:17:70:C3:5E:46:08:57:81:65:2D
            X509v3 Authority Key Identifier:
                keyid:93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:9e:8d:01:a4:75:dc:49:62:80:2c:a5:70:1e:ea:01:b5:5d:
         bb:9e:61:55:ab:1f:5d:b8:20:bc:8a:e1:36:5d:ff:e6:3e:6f:
         1b:92:bb:35:3a:18:b5:d3:3e:a1:92:62:b6:07:a7:f6:41:89:
         70:62:e6:e7:2e:8b:84:27:95:0c:97:77:2b:9a:13:91:4d:48:
         28:b9:40:a7:63:d2:4b:14:31:a7:e6:21:53:23:09:d0:c8:c0:
         65:7b:10:d6:1c:4f:3e:41:49:98:50:2a:6d:2f:28:07:a3:44:
         2d:6c:cf:f5:65:20:3e:9f:42:17:76:a6:81:1c:43:b4:c6:a3:
         c4:26:c6:20:ad:71:5d:c2:8a:74:9a:d7:78:a3:bc:64:74:78:
         df:a5:3a:d1:aa:c6:f9:34:90:b5:5e:7f:94:b1:12:04:98:86:
         15:23:64:13:70:a0:cb:69:ae:3d:bc:a7:5b:97:c5:0d:c6:ca:
         01:71:d5:8d:90:b3:10:52:63:b3:5b:c7:dd:00:93:a3:35:c3:
         65:1f:07:e7:53:82:98:5c:d9:5d:74:e3:bd:1f:3f:86:17:9f:
         02:66:b2:99:29:9c:35:46:83:6e:94:41:a4:82:ca:a6:f9:5a:
         45:a3:86:bc:33:8c:85:60:06:3f:07:88:9f:86:72:7e:5a:f8:
         96:ca:07:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:30:57 2025 by rpki-client