Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft
File:                     ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft (raw, json)
Hash identifier:          onTgyHdSeoawQ34Ks20OfQJwmMQyzqjocncKbT3DCj0=
Subject key identifier:   DD:48:A7:35:80:1A:2A:42:4E:D0:C5:AB:72:31:26:79:ED:6D:B0:F3
Authority key identifier: 65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD
Certificate issuer:       /CN=A91E4743/serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD
Certificate serial:       08F5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft
Manifest number:          08EB
Signing time:             Sat 18 Oct 2025 21:29:26 +0000
Manifest this update:     Sat 18 Oct 2025 21:29:26 +0000
Manifest next update:     Sat 25 Oct 2025 21:29:26 +0000
Files and hashes:         1: ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl (hash: eCvEFa7/onRk8WCLscpZE5RBbufUVUraTs2ZD/bFeQM=)
                          2: 1B2E0738BB7011EA93F7DE4EC4F9AE02.roa (hash: DH2TgfKB8NohjnBrZDPqDwBioU/uRY/Ew7yARHh+9qg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl
                          rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 21:29:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2293 (0x8f5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E4743, serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD
        Validity
            Not Before: Oct 18 21:29:26 2025 GMT
            Not After : Oct 25 21:29:26 2025 GMT
        Subject: CN=68f406b6-821e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:8f:b0:5a:39:a9:39:88:96:1b:9d:c3:ec:63:
                    e0:17:d5:75:20:dd:1d:b9:44:d4:f3:c8:e0:8a:d3:
                    76:09:17:3a:45:49:ca:25:35:67:5a:d3:d3:28:cc:
                    dc:d4:cb:b9:7f:52:9b:30:c3:b9:87:54:de:a7:67:
                    f2:6d:02:45:5a:9f:dd:15:c6:47:c0:15:4f:e8:6f:
                    70:34:56:33:6f:ef:a7:29:a4:a0:1d:25:09:3a:43:
                    f6:d9:f3:6d:3f:35:19:69:39:fe:5e:7d:cd:08:9c:
                    51:cd:81:d6:f4:c6:b7:f3:f8:89:dc:56:5d:92:8f:
                    84:8a:a2:fa:f7:f2:10:e0:c5:f8:4f:2e:6b:a6:d2:
                    de:51:94:41:0f:3d:3e:66:22:7a:b7:87:89:ea:e8:
                    6a:ae:53:e1:08:e2:77:87:98:a0:db:d6:69:7e:bf:
                    5b:3c:4a:35:4f:df:33:87:78:ef:19:5d:bc:fd:9e:
                    11:5c:27:0b:f5:a7:9b:83:0c:eb:1b:51:94:f0:c4:
                    b5:6f:10:6b:48:33:46:78:54:c2:29:19:a0:6f:cf:
                    bf:08:8a:a6:1e:d9:c6:4f:34:cc:7c:4c:41:73:21:
                    79:f9:c7:80:8f:da:04:f2:c1:b4:15:5f:b7:70:47:
                    4c:6b:38:a7:ad:e6:45:e7:63:23:18:45:ee:89:eb:
                    33:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DD:48:A7:35:80:1A:2A:42:4E:D0:C5:AB:72:31:26:79:ED:6D:B0:F3
            X509v3 Authority Key Identifier:
                keyid:65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:cb:86:0e:a7:a5:69:93:4a:d1:6c:17:f1:6f:56:d7:4a:37:
         9b:31:f5:f9:4a:e9:96:2e:09:65:18:59:18:11:96:41:86:67:
         a7:0e:71:b7:48:1b:a5:6e:de:fa:af:6f:ce:8f:b1:f9:47:ed:
         5b:f8:ce:37:69:aa:68:0f:d8:b0:16:94:77:2d:a9:e8:b7:68:
         94:cc:5d:c6:f9:2a:64:c8:91:51:85:38:58:bb:b3:09:b2:a5:
         09:2b:49:ed:e1:31:73:be:a2:47:4e:80:27:a0:76:d8:8d:85:
         56:de:69:f9:f5:c0:48:4a:2d:3b:b6:ac:7f:6a:ce:ec:0c:8c:
         39:e8:e4:ff:fb:d4:e8:c1:cb:a4:95:71:b9:79:41:eb:d0:59:
         76:3c:aa:f4:32:e8:c4:b3:05:3b:1a:73:55:a9:a5:65:80:d5:
         5c:f5:f8:88:0b:32:33:92:52:5d:00:80:b3:d2:cf:06:ce:cb:
         3f:85:e1:d1:c1:8b:1d:2c:3b:1f:52:9a:e5:aa:fd:e0:cb:79:
         07:e9:5e:6d:64:2b:f7:3b:2a:b9:b8:65:26:e0:39:94:d2:d7:
         14:1a:6c:33:6e:1e:e9:19:cd:79:89:da:0d:18:2c:a0:ac:81:
         f9:1c:47:69:19:6f:3d:a1:88:5a:b1:a5:e3:01:e1:94:d4:bc:
         22:49:12:a4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTQ3NDMxMTAvBgNVBAUTKDY1NTQyQ0VDMjgxMTFGQzU0QkEzRDJBRUUzM0Y0Q0U4
N0I3RjkwQUQwHhcNMjUxMDE4MjEyOTI2WhcNMjUxMDI1MjEyOTI2WjAYMRYwFAYD
VQQDEw02OGY0MDZiNi04MjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAto+wWjmpOYiWG53D7GPgF9V1IN0duUTU88jgitN2CRc6RUnKJTVnWtPTKMzc
1Mu5f1KbMMO5h1Tep2fybQJFWp/dFcZHwBVP6G9wNFYzb++nKaSgHSUJOkP22fNt
PzUZaTn+Xn3NCJxRzYHW9Ma38/iJ3FZdko+EiqL69/IQ4MX4Ty5rptLeUZRBDz0+
ZiJ6t4eJ6uhqrlPhCOJ3h5ig29Zpfr9bPEo1T98zh3jvGV28/Z4RXCcL9aebgwzr
G1GU8MS1bxBrSDNGeFTCKRmgb8+/CIqmHtnGTzTMfExBcyF5+ceAj9oE8sG0FV+3
cEdMazinreZF52MjGEXuieszbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1IpzWA
GipCTtDFq3IxJnntbbDzMB8GA1UdIwQYMBaAFGVULOwoER/FS6PSruM/TOh7f5Ct
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDc0My82NzBGODA5MkJC
NkYxMUVBOTYxRkI4NEVDNEY5QUUwMi9aVlFzN0NnUkg4VkxvOUt1NHo5TTZIdF9r
SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1pWUXM3Q2dSSDhWTG85S3U0ejlNNkh0X2tLMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
NDc0My82NzBGODA5MkJCNkYxMUVBOTYxRkI4NEVDNEY5QUUwMi9aVlFzN0NnUkg4
VkxvOUt1NHo5TTZIdF9rSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCRy4YOp6Vpk0rRbBfxb1bXSjebMfX5SumWLgllGFkYEZZBhmenDnG3
SBulbt76r2/Oj7H5R+1b+M43aapoD9iwFpR3Lanot2iUzF3G+SpkyJFRhThYu7MJ
sqUJK0nt4TFzvqJHToAnoHbYjYVW3mn59cBISi07tqx/as7sDIw56OT/+9Towcuk
lXG5eUHr0Fl2PKr0MujEswU7GnNVqaVlgNVc9fiICzIzklJdAICz0s8Gzss/heHR
wYsdLDsfUprlqv3gy3kH6V5tZCv3Oyq5uGUm4DmU0tcUGmwzbh7pGc15idoNGCyg
rIH5HEdpGW89oYhasaXjAeGU1LwiSRKk
-----END CERTIFICATE-----
Generated at Mon Oct 20 04:14:08 2025 by rpki-client