Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft
File:                     R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json)
Hash identifier:          QsNUAFJratBmWsIFuBB++F0P9C20XIYPWpveTkqHumg=
Subject key identifier:   AC:AB:F4:91:66:3E:F4:9F:35:69:33:25:D2:A6:B2:A9:CE:A1:78:C3
Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA
Certificate issuer:       /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA
Certificate serial:       0E1D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft
Manifest number:          0E13
Signing time:             Sat 18 Oct 2025 18:30:00 +0000
Manifest this update:     Sat 18 Oct 2025 18:29:59 +0000
Manifest next update:     Sat 25 Oct 2025 18:29:59 +0000
Files and hashes:         1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: Ojn8ZX5E3qQQAVn9RMHi4hkOyy+t4/8+jtoqoJLbfKw=)
                          2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: iU2Hi3gnDAAGhDttleotVYNL88jidVA94xxut38qdqc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl
                          rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 18:29:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3613 (0xe1d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA
        Validity
            Not Before: Oct 18 18:29:59 2025 GMT
            Not After : Oct 25 18:29:59 2025 GMT
        Subject: CN=68f3dca8-9ffa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:9b:73:c8:4f:f6:20:13:59:c8:21:81:bb:5d:
                    23:00:67:55:40:e1:c1:ed:e3:49:97:14:32:c2:f7:
                    2b:ac:b0:8f:79:15:6f:17:8e:f2:ca:c2:bf:f3:a0:
                    6c:3c:b1:44:19:a5:1f:3d:ed:3e:81:b3:6e:2d:cc:
                    75:14:d2:8a:f0:06:b5:c1:72:43:03:96:ed:9f:66:
                    d7:66:8e:09:52:b4:c2:c6:1e:f5:a8:72:51:0f:ae:
                    b9:c4:ee:bc:2a:05:03:29:02:4c:cb:56:61:00:78:
                    61:9d:86:68:ce:0f:01:b0:e9:45:61:ed:a9:6a:c2:
                    a6:da:ed:2a:0f:35:1d:79:03:1b:36:84:3c:e4:a1:
                    63:fb:57:47:15:5d:ab:fb:a3:92:41:82:0b:f5:72:
                    59:f8:9d:4c:bb:74:46:e7:83:a6:9d:f5:4a:0d:a8:
                    2a:91:b5:fc:c6:7a:7d:a8:48:7a:b3:dd:d7:43:2f:
                    d4:51:02:3d:35:fe:58:fd:5d:b0:a3:44:8e:cc:96:
                    e6:85:56:99:b9:29:ca:9e:3c:4e:c7:55:a1:18:8a:
                    c4:39:29:a8:f8:74:81:b4:1a:78:d8:b5:85:6f:e1:
                    97:d7:ff:8f:a7:89:ca:21:38:8b:d4:04:3d:6c:d4:
                    94:a8:60:d5:a6:26:c7:70:87:7b:59:9c:1b:a5:e4:
                    61:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:AB:F4:91:66:3E:F4:9F:35:69:33:25:D2:A6:B2:A9:CE:A1:78:C3
            X509v3 Authority Key Identifier:
                keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:45:25:51:9e:57:7c:62:bd:8b:d4:24:14:31:16:93:9a:06:
         2d:17:54:e8:7b:c2:32:a9:a3:a4:c2:1a:52:16:f4:c3:be:39:
         c3:94:e5:df:70:e1:4b:4b:2a:c3:ed:34:4d:85:50:dc:e1:b1:
         13:a0:69:1e:be:b8:cc:9b:dc:68:2f:d2:89:02:e6:61:5e:d4:
         b0:84:09:df:1b:09:1b:5b:81:4c:7d:97:1d:5e:8b:eb:ea:d5:
         a9:3b:9e:fe:65:42:b3:c8:03:b5:1e:5f:a4:f4:16:de:84:f8:
         44:6f:79:72:24:8d:21:0d:85:3a:f1:27:d9:08:fb:60:08:75:
         ef:2e:18:3c:98:08:cc:40:ea:11:7e:58:bb:36:d1:f5:81:04:
         c7:30:01:c1:ac:3f:fa:b3:d5:ba:e7:94:18:c6:a9:3a:f4:19:
         38:44:00:76:eb:a9:67:e9:8c:a3:af:e7:90:30:4a:49:d9:b1:
         af:0a:fe:46:1a:ea:22:98:54:bd:4b:f4:de:75:2c:be:44:b9:
         c7:3e:99:2c:16:a5:19:64:44:5f:b4:95:44:06:ed:96:ad:53:
         82:50:47:79:9a:6e:88:35:c0:fe:5c:4a:f0:f2:e9:38:98:f0:
         db:5e:4d:74:12:41:d8:31:b5:4d:04:6b:c0:b4:f4:94:95:c7:
         f7:b1:96:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 10:35:40 2025 by rpki-client