Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft
File:                     Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft (raw, json)
Hash identifier:          fo3zRCIO7lK/gUy/D8Z+t5MQ8c1FG+jklS2a7Mr2Qb8=
Subject key identifier:   27:66:4C:6F:20:8B:6F:CF:81:0E:51:F0:BD:57:DD:B6:36:B1:33:8B
Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48
Certificate issuer:       /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348
Certificate serial:       3364
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft
Manifest number:          330E
Signing time:             Sat 18 Oct 2025 15:35:18 +0000
Manifest this update:     Sat 18 Oct 2025 15:35:18 +0000
Manifest next update:     Sat 25 Oct 2025 15:35:18 +0000
Files and hashes:         1: Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl (hash: hSKszH2g6up3SzuPeT3PGEa2TrU/9tio+4KoZJ5K13o=)
                          2: 844CFD1C5BAA11EFBAF22B7FC4F9AE02.roa (hash: F0EI0pjKdFSXXJaNRIeZAVVcc/1UvTOq8MA6ZbeocbA=)
                          3: 902F4AAC567011EFA451BD7CC4F9AE02.roa (hash: qmlGrSLmYcGa18yom8d6PeePfMWIiWVkajsGQGVwEAE=)
                          4: 909AA4DC567011EFA451BD7CC4F9AE02.roa (hash: eNA7hmO0iaDh6B8QriE+uJJoAJhe22m7Y0RORTwFmBQ=)
                          5: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (hash: TJYAsaduMNFlCfCtpHImQhHzTtlz3kZi3/4L+kmyEYE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl
                          rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 15:35:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13156 (0x3364)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348
        Validity
            Not Before: Oct 18 15:35:18 2025 GMT
            Not After : Oct 25 15:35:18 2025 GMT
        Subject: CN=68f3b3b6-8680
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:aa:a3:0b:2d:9e:80:61:3b:c7:88:06:cc:99:
                    88:81:db:1f:ff:51:ab:b1:89:ba:50:8c:83:be:2b:
                    b2:ee:da:47:7b:66:01:a8:82:11:4c:36:60:84:43:
                    8b:f0:a7:e8:5e:4c:24:f7:78:e6:25:5b:27:28:86:
                    86:37:a1:55:46:d1:18:ec:d5:f4:07:db:a6:be:5b:
                    e6:47:56:55:9a:a8:aa:ea:f7:b5:d8:e0:0f:2a:10:
                    7c:a0:9a:4a:74:67:02:8e:7a:c2:99:98:3d:e4:f6:
                    da:3c:16:f4:52:98:4a:bf:51:9a:19:d2:c9:30:d3:
                    7e:95:e1:df:9f:a6:f8:02:c6:dc:2a:89:98:20:93:
                    e2:e5:0e:17:80:0a:f3:91:4b:7f:a5:0e:3f:80:0e:
                    36:5b:8e:a3:7e:11:7b:5c:bd:0b:5e:92:b1:65:ec:
                    be:60:7d:58:ee:ee:4d:ea:25:30:cb:93:ec:1f:ff:
                    8f:41:d9:4b:e8:15:4d:5e:7f:4e:67:de:90:36:0a:
                    50:f7:82:92:52:ba:9c:c0:fe:31:dd:dc:bd:71:7d:
                    e9:1c:a2:ca:1d:ef:be:36:80:f9:de:e0:e9:5a:af:
                    71:3a:4c:1b:57:85:2e:98:ae:22:cf:f4:85:36:50:
                    d3:1b:c8:61:cc:1a:2e:13:06:38:d0:6a:4d:f9:79:
                    8f:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:66:4C:6F:20:8B:6F:CF:81:0E:51:F0:BD:57:DD:B6:36:B1:33:8B
            X509v3 Authority Key Identifier:
                keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:a9:b8:83:4a:f8:66:77:00:89:66:08:26:d1:ce:0e:ef:87:
         c2:6a:b6:c4:5e:02:63:99:36:62:21:c2:b6:a7:b9:d9:d3:d2:
         eb:c7:07:a5:fc:61:d2:01:7e:d0:67:f0:fd:c7:d8:ee:86:d2:
         c5:d9:4d:a0:23:98:c6:21:02:9e:bd:3b:ed:57:ce:67:84:f3:
         de:52:37:f0:85:32:8d:79:ae:11:e8:ad:10:ef:8f:08:73:da:
         64:f6:b9:cb:4c:d3:5e:2d:47:72:b7:48:8c:1a:a2:fc:14:15:
         0b:73:0f:80:d1:1f:0f:19:80:60:ae:09:b5:80:8a:86:59:8d:
         97:02:73:61:1a:bc:9f:2c:49:e8:bf:92:25:eb:56:1c:73:98:
         48:d7:02:94:f6:1e:a9:65:1b:3e:c4:09:32:1b:c3:cb:67:b3:
         d3:33:91:48:de:97:07:85:9e:28:c4:75:e9:38:60:07:fe:fc:
         02:9c:9b:d3:06:58:74:67:6e:21:3a:33:81:b6:e7:52:48:95:
         82:63:7b:be:2b:61:39:7f:a6:e7:cd:b9:98:7a:5f:bc:39:28:
         05:93:6e:2b:3d:1c:52:be:0a:09:51:6b:3c:b8:09:c3:22:78:
         7e:c2:5c:22:e2:47:7f:75:bd:89:df:a2:6c:d6:0f:4c:1c:4f:
         cc:01:be:63
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICM2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG
NUE2QjkzNDgwHhcNMjUxMDE4MTUzNTE4WhcNMjUxMDI1MTUzNTE4WjAYMRYwFAYD
VQQDEw02OGYzYjNiNi04NjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4qqjCy2egGE7x4gGzJmIgdsf/1GrsYm6UIyDviuy7tpHe2YBqIIRTDZghEOL
8KfoXkwk93jmJVsnKIaGN6FVRtEY7NX0B9umvlvmR1ZVmqiq6ve12OAPKhB8oJpK
dGcCjnrCmZg95PbaPBb0UphKv1GaGdLJMNN+leHfn6b4AsbcKomYIJPi5Q4XgArz
kUt/pQ4/gA42W46jfhF7XL0LXpKxZey+YH1Y7u5N6iUwy5PsH/+PQdlL6BVNXn9O
Z96QNgpQ94KSUrqcwP4x3dy9cX3pHKLKHe++NoD53uDpWq9xOkwbV4UumK4iz/SF
NlDTG8hhzBouEwY40GpN+XmPYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdmTG8g
i2/PgQ5R8L1X3bY2sTOLMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx
NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr
MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
Rjg2My9CRkU1NEE2ODgxNUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1p
TEs3bVRnejR1akgxcHJrMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCQqbiDSvhmdwCJZggm0c4O74fCarbEXgJjmTZiIcK2p7nZ09Lrxwel
/GHSAX7QZ/D9x9juhtLF2U2gI5jGIQKevTvtV85nhPPeUjfwhTKNea4R6K0Q748I
c9pk9rnLTNNeLUdyt0iMGqL8FBULcw+A0R8PGYBgrgm1gIqGWY2XAnNhGryfLEno
v5Il61Ycc5hI1wKU9h6pZRs+xAkyG8PLZ7PTM5FI3pcHhZ4oxHXpOGAH/vwCnJvT
Blh0Z24hOjOBtudSSJWCY3u+K2E5f6bnzbmYel+8OSgFk24rPRxSvgoJUWs8uAnD
Inh+wlwi4kd/db2J36Js1g9MHE/MAb5j
-----END CERTIFICATE-----
Generated at Mon Oct 20 07:59:01 2025 by rpki-client