Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft
File:                     4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft (raw, json)
Hash identifier:          OaFzDmjLMvkQkzsJjkXA9w8RyKdnXzH+uh44KB27J0E=
Subject key identifier:   D4:C2:03:FF:4A:CA:AF:DC:48:E1:25:F2:76:8E:3E:EB:9D:F9:17:CB
Authority key identifier: E0:E9:B9:39:9B:8A:4A:5F:DC:DE:20:9F:C5:BE:C0:78:AF:95:CF:7B
Certificate issuer:       /CN=A91E1887/serialNumber=E0E9B9399B8A4A5FDCDE209FC5BEC078AF95CF7B
Certificate serial:       0776
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft
Manifest number:          076F
Signing time:             Sat 18 Oct 2025 22:58:06 +0000
Manifest this update:     Sat 18 Oct 2025 22:58:05 +0000
Manifest next update:     Sat 25 Oct 2025 22:58:05 +0000
Files and hashes:         1: 4Om5OZuKSl_c3iCfxb7AeK-Vz3s.crl (hash: CW/mxD7JpZQpH8PzfcUGBYf334z9Oyp6MpMtEaWK/io=)
                          2: 9F46C468355711EBA5B81020C4F9AE02.roa (hash: 03WpwA3JZLQp184AJleW1z4TTnMqm9OpYp8fSIGXxK0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.crl
                          rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 22:58:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1910 (0x776)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E1887, serialNumber=E0E9B9399B8A4A5FDCDE209FC5BEC078AF95CF7B
        Validity
            Not Before: Oct 18 22:58:05 2025 GMT
            Not After : Oct 25 22:58:05 2025 GMT
        Subject: CN=68f41b7d-7005
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:75:52:05:40:ce:39:35:f7:b5:b6:48:b9:83:
                    db:b2:6b:5d:c7:93:26:7d:6d:6b:9c:47:44:58:ab:
                    26:f1:b0:da:79:b2:93:c3:76:72:31:bd:e9:56:19:
                    e3:64:36:f8:03:4e:2e:ea:c6:ae:a4:9d:f9:1d:68:
                    4e:8c:78:26:6b:3a:30:11:54:5e:a5:50:d1:a8:59:
                    8f:a2:7d:65:c0:04:8c:7c:dc:0f:72:70:85:b6:28:
                    ce:2e:68:ed:ed:ee:7c:ff:69:3d:1d:07:5f:89:02:
                    c9:51:57:32:fc:87:53:f1:dd:ca:48:95:cc:cc:89:
                    37:de:b1:3c:2a:b9:91:b3:ae:88:45:a3:10:de:6d:
                    ed:a0:ad:66:a7:9f:44:dc:19:4b:c4:f4:87:30:12:
                    12:1c:be:ce:22:e8:10:16:f4:da:3d:3c:86:19:8f:
                    ed:d0:bf:74:16:4f:86:7c:29:3a:30:4a:2f:a2:72:
                    60:87:7e:bb:31:55:c5:72:ae:99:7b:25:fc:55:f8:
                    b1:91:d2:08:66:3e:92:79:87:23:37:ca:d9:6a:16:
                    90:5a:b4:63:53:b1:36:a8:11:9e:df:1b:1f:ae:1b:
                    58:dc:37:df:85:de:d3:fb:75:ed:9d:f5:88:72:82:
                    6a:07:df:91:36:55:ee:c5:2a:09:7f:10:bd:5d:39:
                    be:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D4:C2:03:FF:4A:CA:AF:DC:48:E1:25:F2:76:8E:3E:EB:9D:F9:17:CB
            X509v3 Authority Key Identifier:
                keyid:E0:E9:B9:39:9B:8A:4A:5F:DC:DE:20:9F:C5:BE:C0:78:AF:95:CF:7B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:23:eb:dd:62:d8:15:5d:ca:5c:1f:88:3e:e3:62:73:e9:7f:
         59:91:0b:99:36:71:e5:af:28:33:ea:99:b4:02:37:a0:2c:a0:
         bc:0d:6f:ca:48:69:5b:0c:26:0d:a9:26:4b:2a:bc:9d:3f:af:
         b8:af:a7:e8:3d:cb:97:ea:0c:6e:55:63:c7:c7:2e:f1:e6:59:
         c2:ec:14:e8:7c:1b:98:ae:31:4c:82:03:eb:bb:d7:39:fd:dc:
         38:42:f1:7a:11:7b:26:2b:5c:cc:df:7d:70:97:86:6c:01:8f:
         d2:e5:34:ab:53:08:5c:7d:d5:5a:b8:c9:c9:fe:89:e4:75:36:
         6d:f8:6c:03:6e:8e:67:5c:23:98:78:87:1d:bd:b0:fc:58:05:
         8b:9a:2a:b0:95:a8:23:42:f9:76:d3:0a:a3:3e:02:de:59:cd:
         23:e1:13:71:a2:78:ef:47:52:73:8a:a9:8c:e1:a4:ea:5c:ed:
         38:bb:00:9c:3f:59:3f:76:78:77:48:ce:5b:16:7f:08:e8:8f:
         fb:a5:8b:f7:0c:b7:e8:75:d9:5b:18:15:09:e2:68:72:3d:db:
         d5:72:ae:e2:fd:58:e6:b2:9c:41:d9:53:24:7c:5c:e5:18:b2:
         74:be:04:fe:90:f2:b6:5d:5b:b6:65:22:e0:2a:75:f9:84:b1:
         a1:1a:72:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:43:01 2025 by rpki-client