Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft
File:                     ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft (raw, json)
Hash identifier:          6igpeYYJjkFIOWCSyJZKeAnk/IaplE1qDTfXzGZ8w38=
Subject key identifier:   3F:6B:A5:FA:E9:F6:A5:37:AA:C9:3B:EA:D8:07:5B:12:30:29:AB:89
Authority key identifier: A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30
Certificate issuer:       /CN=A91EDF00/serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530
Certificate serial:       04AC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft
Manifest number:          04A8
Signing time:             Sun 19 Oct 2025 01:46:13 +0000
Manifest this update:     Sun 19 Oct 2025 01:46:12 +0000
Manifest next update:     Sun 26 Oct 2025 01:46:12 +0000
Files and hashes:         1: ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl (hash: VxGKps5xRhyHaEp5nFB3x+nGzEcH1161ScZBjxMaFPE=)
                          2: 1B97FEB84E8111ECA3589560C4F9AE02.roa (hash: xAvVS/7W7xtAjphmjIYm8eiwHHWi2VdeCNpBEO7D7og=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl
                          rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 01:46:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1196 (0x4ac)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EDF00, serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530
        Validity
            Not Before: Oct 19 01:46:12 2025 GMT
            Not After : Oct 26 01:46:12 2025 GMT
        Subject: CN=68f442e4-f70d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:e0:41:6b:c2:5f:27:4f:03:c9:49:3e:6f:aa:
                    ba:99:be:3b:6d:e1:ea:13:17:da:22:59:d7:a9:03:
                    92:bc:6c:c4:f4:2d:dd:30:93:3c:51:ba:b5:3b:49:
                    be:9f:66:3d:b8:49:1d:c5:5e:3a:62:a6:b0:5a:31:
                    ae:6f:ac:e2:65:0c:26:e7:00:52:3f:fd:3a:d2:65:
                    07:6f:82:a9:c9:1b:17:0c:aa:9c:f0:93:66:84:c5:
                    2d:5c:c1:b9:51:8a:85:11:c8:cc:c4:a0:26:ea:71:
                    44:08:61:28:0f:db:97:18:4e:13:11:6c:84:a8:35:
                    d2:0f:4b:ec:41:df:70:18:ad:82:1d:b0:95:58:72:
                    36:75:61:c7:a4:92:bc:49:58:0b:e5:05:e4:2d:9d:
                    e6:6a:2c:69:b5:70:9c:96:a0:bd:d7:5f:5a:4e:4a:
                    16:e3:bf:99:f5:32:ac:1c:ba:ac:be:92:3d:18:ef:
                    a1:80:f8:ff:55:23:03:85:07:8a:e3:7a:ee:1f:e9:
                    c1:c9:eb:eb:2b:63:95:a4:f9:1c:17:c3:3d:12:f6:
                    fd:e5:c2:bb:07:ab:af:3e:a0:21:2d:a7:c3:9d:a0:
                    32:9f:68:fe:ea:56:61:99:61:c7:91:dd:f6:8b:84:
                    0b:cd:bb:37:ad:7e:16:32:fb:46:81:79:96:4d:0d:
                    da:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:6B:A5:FA:E9:F6:A5:37:AA:C9:3B:EA:D8:07:5B:12:30:29:AB:89
            X509v3 Authority Key Identifier:
                keyid:A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:a0:66:56:f6:6c:6c:4d:bc:be:d2:14:85:ae:bf:0c:b5:e6:
         f1:7e:dc:46:49:5b:a0:06:b2:ca:64:9c:77:35:74:d2:df:9c:
         54:97:f3:2c:f9:46:cf:67:5c:14:39:e6:46:63:8d:78:ce:99:
         e8:fd:c0:37:48:c2:df:78:dd:a4:6d:57:d9:7c:3c:7a:01:c9:
         c3:6d:fd:1d:04:da:fc:15:df:97:a7:5f:98:48:70:7d:e5:ae:
         c3:6a:85:35:5d:ca:a5:5f:27:78:62:0a:48:c7:d1:1d:28:f8:
         b5:49:b3:d5:a6:48:f8:fc:bc:9c:a0:07:50:e0:0d:4f:d8:0c:
         70:cb:6f:e3:58:22:c5:00:f5:cb:23:5e:a3:6e:f9:5f:05:55:
         2b:91:1c:6f:f2:58:29:93:74:88:c9:16:d6:e9:06:01:14:0e:
         c8:4b:1e:a5:43:eb:fe:e6:62:58:89:7e:c1:9e:09:e0:a4:5f:
         f3:8b:69:13:cb:67:f8:90:99:76:43:ec:80:58:34:c3:45:71:
         24:61:53:97:53:c1:6e:e2:7a:ab:da:6e:6b:6d:04:75:cb:8d:
         6e:ce:58:9f:9c:54:9e:5c:bf:6b:5a:30:12:75:7f:4c:ad:f2:
         dc:b1:cb:c7:af:f0:af:e2:32:37:4c:d9:3d:6d:3c:20:3c:d9:
         0c:6d:88:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:14:28 2025 by rpki-client