Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft
File:                     oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json)
Hash identifier:          ZYbFPt6xb2mrZ1qdUy/Y/XGx4kR609peI/TiDxwSWwE=
Subject key identifier:   52:5C:EA:80:79:85:43:17:34:63:5B:FB:6D:23:CE:30:BE:22:AB:7D
Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0
Certificate issuer:       /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0
Certificate serial:       02EA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft
Manifest number:          02DE
Signing time:             Sun 19 Oct 2025 03:27:38 +0000
Manifest this update:     Sun 19 Oct 2025 03:27:37 +0000
Manifest next update:     Sun 26 Oct 2025 03:27:37 +0000
Files and hashes:         1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: 4UqsQys78SHaNEypuyvbWfRuhNJulcwNx+1pbyKlrjU=)
                          2: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: Jn6Bcmff+jZyhjqGcyii8YjSmtOYYAInHon2VXcIz3U=)
                          3: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: EWbZQVxhL2vlkm+GzLLUuL3B+QzSpuEn2YQAxnXCEkI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl
                          rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 03:27:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 746 (0x2ea)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0
        Validity
            Not Before: Oct 19 03:27:37 2025 GMT
            Not After : Oct 26 03:27:37 2025 GMT
        Subject: CN=68f45aaa-2862
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:d4:7c:7d:77:7d:ee:9c:6c:5e:50:6c:dd:7a:
                    cb:57:51:97:17:eb:e5:c7:11:8f:4c:56:e9:07:68:
                    02:d1:84:99:ea:b1:86:dd:a9:45:a0:8d:9c:13:29:
                    48:43:76:70:66:79:69:c8:01:c5:42:d5:fc:e9:af:
                    6b:b5:a6:36:b0:62:ea:dd:72:37:46:2d:0d:df:53:
                    7e:b5:5a:bb:fd:7b:78:ce:18:8a:13:5f:62:59:c4:
                    14:3c:eb:e2:1a:ee:49:5c:b8:aa:55:28:88:68:c3:
                    6f:d1:0a:de:4b:8a:0a:52:4a:0b:a2:10:bf:2f:e2:
                    bf:23:75:46:cb:de:ed:ad:6a:c4:a7:c9:5a:5e:bb:
                    8b:e8:f1:48:d8:21:32:77:61:02:32:26:40:b8:31:
                    84:70:5f:ac:d3:e3:6a:a3:a4:64:bb:07:1e:c0:d6:
                    32:6f:55:ff:3b:50:48:06:cb:51:57:49:00:18:f2:
                    d8:b3:d0:d1:9f:07:f9:e4:44:42:db:0c:3b:ee:8d:
                    c4:ea:09:b9:c7:de:78:db:8f:a7:aa:2f:8f:ff:c3:
                    81:0e:17:24:82:bd:0a:c8:b7:47:a2:23:3d:4b:15:
                    a6:5f:b7:30:b0:be:b4:30:8f:a4:e3:a8:43:62:73:
                    d8:51:4c:8f:e7:f2:54:63:83:5e:e9:25:bc:ce:f8:
                    90:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:5C:EA:80:79:85:43:17:34:63:5B:FB:6D:23:CE:30:BE:22:AB:7D
            X509v3 Authority Key Identifier:
                keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:ef:4a:90:b5:ca:9c:3b:05:78:41:aa:dd:1f:a6:d9:58:cd:
         f2:34:25:3a:37:18:17:e4:ce:26:30:78:5e:a8:08:c4:80:8e:
         f6:fb:17:b9:84:77:77:1c:74:90:31:bb:fb:7e:d0:19:2b:c5:
         5c:41:64:23:e2:ae:2c:50:b7:9b:38:b8:80:9a:72:01:df:03:
         b6:05:57:84:08:31:d4:54:1f:31:5c:8e:23:7f:8d:63:72:67:
         d8:fb:56:fc:b6:cd:c6:e8:42:e5:0d:fe:5c:07:25:cb:6b:73:
         d3:f8:e0:60:1e:b1:1b:6a:cd:ba:5e:f7:e5:4e:1e:f0:7b:b6:
         57:e7:fb:d3:13:ac:aa:06:3c:a7:91:23:2d:be:4c:bd:cf:8b:
         fc:62:ec:e6:d3:c6:24:72:3c:e4:8c:9c:31:07:1e:85:6b:65:
         82:44:53:d6:43:35:bc:a1:e6:e5:df:ec:6c:e4:72:7d:af:09:
         26:cf:10:40:a1:9d:7d:16:8a:7d:9d:f8:a1:59:a2:a1:87:da:
         31:99:a9:81:d6:e3:26:14:07:b3:3f:a3:63:74:cc:3d:28:4b:
         5f:22:c9:d7:84:81:7f:18:17:11:79:8e:a4:45:3d:cb:4d:31:
         3d:6f:5f:91:9e:ce:f5:fd:0f:35:1c:da:d9:60:26:98:b7:47:
         57:de:81:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:36:07 2025 by rpki-client