Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft
File:                     Xs7vXyjy82UFPfuM780W4cPehK4.mft (raw, json)
Hash identifier:          1wJJFLiVAxIYF2iOLLqn19hm6l9zTiVv3E2t9mUgPGk=
Subject key identifier:   4C:D4:25:83:5D:B9:40:29:54:28:55:B2:83:85:A6:1E:CA:AC:D5:C6
Authority key identifier: 5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE
Certificate issuer:       /CN=A91DB8D9/serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE
Certificate serial:       03F4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft
Manifest number:          03EB
Signing time:             Sun 19 Oct 2025 02:28:59 +0000
Manifest this update:     Sun 19 Oct 2025 02:28:59 +0000
Manifest next update:     Sun 26 Oct 2025 02:28:59 +0000
Files and hashes:         1: Xs7vXyjy82UFPfuM780W4cPehK4.crl (hash: XrKBH04I8Gi4nVvoC6+rrlAbflhnAgxmWBEMxHdPhlI=)
                          2: 728139D62FA311F0A9129814C4F9AE02.roa (hash: guIJtqQN+EFa/f6cWPw4iUlLONR7odnIq46PWDEQXBE=)
                          3: F31E86967B2311EF93801A72C4F9AE02.roa (hash: Um+5nEX9UGWaeunNGOXHeeYETiEJM95laBvW70lUPDE=)
                          4: 7E044E58A06B11ECBF29B644C4F9AE02.roa (hash: EglzY5P8gEG+IosP670+janTnu12u5QYgDoCSiDyeR8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl
                          rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 02:28:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1012 (0x3f4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DB8D9, serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE
        Validity
            Not Before: Oct 19 02:28:59 2025 GMT
            Not After : Oct 26 02:28:59 2025 GMT
        Subject: CN=68f44ceb-4db5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:04:e3:d0:9f:63:7c:db:da:d6:a4:a6:ff:c9:
                    82:54:cf:2c:84:5f:db:ba:52:67:78:6f:40:99:1e:
                    43:bb:da:7a:02:22:d7:01:30:2a:d9:1b:5f:81:d6:
                    82:fb:28:6c:64:ab:e7:5a:23:8f:2c:1e:c4:09:b9:
                    11:9c:f5:c7:ea:09:85:13:47:6a:2a:e2:2c:67:d8:
                    b6:fc:c2:b3:28:5c:3b:e6:2b:c1:7a:e1:00:cc:ca:
                    95:bd:6b:26:a5:21:c1:72:3e:83:91:1c:ec:b8:93:
                    fe:42:78:0f:be:16:2e:f8:65:c0:24:4b:a7:a3:58:
                    3d:f7:4f:c4:3d:eb:2f:6e:e8:fa:4a:ab:7c:d9:6a:
                    fd:53:f8:cc:ce:a6:b3:9f:c3:0e:11:71:d2:33:e1:
                    f3:db:8c:84:e6:e2:38:6b:b5:3e:c6:c4:00:96:1b:
                    07:b9:63:91:bb:4b:fc:02:2b:74:32:60:fd:f7:bf:
                    d3:7a:d4:2c:d2:6a:72:42:02:cc:3c:00:98:ed:cf:
                    1c:58:e4:52:21:d8:c3:b4:ee:13:4c:71:99:87:7f:
                    ba:d9:e3:52:e6:c2:8f:f1:15:b2:83:dc:d2:c9:b6:
                    e7:b8:99:de:5a:a4:5c:d7:3f:13:9e:4c:4b:4d:33:
                    38:29:12:1f:4a:85:c3:6b:f5:8d:06:a9:fe:e0:76:
                    2e:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:D4:25:83:5D:B9:40:29:54:28:55:B2:83:85:A6:1E:CA:AC:D5:C6
            X509v3 Authority Key Identifier:
                keyid:5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:1f:63:c3:c5:ac:49:fd:75:bd:88:7f:c1:79:74:62:7e:6e:
         97:8b:e4:a1:ac:da:7a:46:57:8f:28:3b:8e:25:9f:c1:bd:85:
         c2:e3:90:d8:8e:a0:ab:ba:85:eb:39:63:e6:76:e1:39:d8:1b:
         b2:8d:e2:ae:11:03:4c:c8:96:2b:c8:a4:2d:07:cd:c4:81:18:
         46:85:eb:a9:6f:4d:a4:3d:99:6a:cb:18:00:15:eb:b8:26:c7:
         ff:d9:04:3c:c1:16:f6:fb:72:a8:cf:90:14:04:1a:f8:14:74:
         19:09:24:0e:6e:2b:1f:9b:c8:8d:e2:45:90:e3:c1:c2:90:e6:
         be:fb:41:cc:00:39:36:a5:25:61:90:ba:c6:e8:a2:ec:da:69:
         4b:f5:d1:f3:d0:c8:20:c2:03:b4:db:af:a6:e2:9a:8b:4d:42:
         bf:6b:08:49:c7:6f:bc:96:eb:b9:13:a1:0e:b1:71:f5:d8:25:
         8a:35:55:dd:73:fd:05:bc:94:19:2e:dd:77:af:96:03:9e:64:
         9a:f4:c2:bd:35:f1:30:bb:8e:8c:50:bd:1d:3f:61:82:44:4f:
         92:79:78:59:7f:51:be:ef:af:f7:11:82:94:85:58:1d:76:a1:
         02:78:5c:45:d7:be:4b:4c:72:9e:d6:e3:53:d2:bc:c2:b1:89:
         6e:c4:e0:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:32:24 2025 by rpki-client