Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft
File:                     zlgHMAQJCIdOtirydgUp51w9XGg.mft (raw, json)
Hash identifier:          v/005HuwSFv4eHjH6kpE9Xc0orERBakQk/W5BE8YBtU=
Subject key identifier:   8D:CF:B3:94:B0:15:98:74:D0:C8:E2:45:48:85:5B:F5:36:42:EB:D3
Authority key identifier: CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68
Certificate issuer:       /CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68
Certificate serial:       0932
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft
Manifest number:          0923
Signing time:             Mon 20 Oct 2025 21:07:29 +0000
Manifest this update:     Mon 20 Oct 2025 21:07:28 +0000
Manifest next update:     Mon 27 Oct 2025 21:07:28 +0000
Files and hashes:         1: zlgHMAQJCIdOtirydgUp51w9XGg.crl (hash: UrJ/GcBorXrGvZmHX7+yjFPwlhPWEpt1CFpIn56C39I=)
                          2: 8698CD28A42211EB91621734C4F9AE02.roa (hash: liguL5yWelfphfIz9rHVaKh3TqmzzrhEVoBWguDMI9M=)
                          3: D3ECF4B8E61D11EBB92C167BC4F9AE02.roa (hash: /n6JoBCxKb39xofyDRMG1k20W82UdWlbULQ4CPVAgMo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl
                          rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 27 Oct 2025 21:07:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2354 (0x932)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E89CD, serialNumber=CE580730040908874EB62AF2760529E75C3D5C68
        Validity
            Not Before: Oct 20 21:07:28 2025 GMT
            Not After : Oct 27 21:07:28 2025 GMT
        Subject: CN=68f6a491-aa88
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:c7:62:f7:d2:61:a1:ea:e3:fd:6e:bf:53:a7:
                    f0:b7:8f:36:17:9e:cb:72:14:a8:03:5f:03:c4:b5:
                    eb:3e:12:6c:a1:87:b1:6c:53:b3:b6:e3:f6:27:a6:
                    4b:32:37:ee:3f:58:f7:1a:74:e1:cf:c4:40:c2:a0:
                    ca:d2:dd:16:c8:bd:7c:17:da:ee:32:37:77:71:9e:
                    93:0d:c1:de:db:a6:a8:c8:fc:34:e8:93:8f:9b:88:
                    b0:ac:9f:36:05:59:28:c4:58:d8:01:5e:75:f3:4a:
                    31:36:b8:b4:c1:27:34:e1:da:17:fb:49:3c:e4:3c:
                    11:f6:fa:3c:36:6b:01:76:b3:29:af:3c:cc:7b:4f:
                    9f:50:3b:df:89:98:06:85:14:d5:eb:10:b3:98:a4:
                    cd:bd:ee:b0:d3:33:2d:c3:81:22:51:2a:77:6d:04:
                    7f:2b:94:11:e4:55:87:43:76:af:ef:8d:2b:1a:b6:
                    a3:3a:0c:64:f8:0c:d6:d4:c9:ce:ea:fd:4d:b9:51:
                    7c:34:4b:6b:15:11:47:af:4a:7e:66:ff:64:59:ea:
                    9f:a1:79:42:a7:b1:e5:23:af:c2:42:f2:f5:81:c7:
                    a1:6f:f0:5b:c9:67:ed:16:58:22:38:62:b4:ed:f2:
                    1e:09:f6:fa:1e:a3:71:21:c6:b2:be:3f:4a:c8:83:
                    b1:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:CF:B3:94:B0:15:98:74:D0:C8:E2:45:48:85:5B:F5:36:42:EB:D3
            X509v3 Authority Key Identifier:
                keyid:CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:4b:8c:d3:6b:41:96:e8:7d:01:0d:95:38:57:13:1b:5e:77:
         f8:d4:69:5c:c8:5d:82:0f:c4:1b:a8:60:f7:56:12:bb:3f:22:
         84:b5:5c:de:17:72:d5:a5:8b:6f:c0:8b:0d:c3:54:a3:07:9e:
         1c:87:a5:f8:32:07:f0:9c:cc:56:03:19:e7:ea:c6:7d:bd:2d:
         49:35:bd:cd:f3:5e:4d:a8:b5:5e:92:84:9e:e0:61:de:1b:65:
         d5:d4:89:da:b7:9b:be:fd:3e:f7:3f:4c:08:7b:29:29:57:e2:
         cc:3d:37:0a:a4:76:e9:2e:52:fd:b6:38:f6:5e:a8:05:42:a5:
         55:c5:73:8e:3e:d9:32:76:4a:46:bd:98:ab:3b:2d:ef:bd:86:
         84:95:79:0d:5b:05:5b:cf:64:91:a2:36:e6:a4:ab:25:d9:19:
         ea:65:e6:6b:43:15:58:a5:b5:a1:94:cf:ab:6f:1a:55:ef:82:
         13:99:1a:50:53:05:d3:bf:a1:0f:e9:80:40:c3:31:f9:cd:64:
         8a:67:8a:7b:5b:89:63:21:d8:65:1e:72:9e:d7:7e:af:72:8f:
         b4:eb:b7:68:46:90:54:5e:e0:5f:83:b3:ef:ac:ef:35:1d:44:
         68:0e:f8:ac:6f:68:19:71:f5:ea:8a:48:14:04:59:9a:d5:fc:
         8d:8a:02:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 00:14:41 2025 by rpki-client