Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft
File:                     MoI4D1fWFw9Fz1IOeywaPNovyq0.mft (raw, json)
Hash identifier:          zT4LANtjsTjv8bo+fBNFE0+BjeCADxDJllkvpALqipc=
Subject key identifier:   E8:C2:97:5B:3B:ED:FF:70:62:32:06:61:10:D6:9F:1C:2D:F8:DE:2E
Authority key identifier: 32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD
Certificate issuer:       /CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD
Certificate serial:       030C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft
Manifest number:          0307
Signing time:             Sun 19 Oct 2025 03:15:35 +0000
Manifest this update:     Sun 19 Oct 2025 03:15:35 +0000
Manifest next update:     Sun 26 Oct 2025 03:15:35 +0000
Files and hashes:         1: MoI4D1fWFw9Fz1IOeywaPNovyq0.crl (hash: q/loY9AvvPjw8yee1y7Gc2sy0CMInKMVLvdHxdsGTCk=)
                          2: 7D857A30F11811EC86D3AD4BC4F9AE02.roa (hash: RY7IQ05ThI/6GtkKfLwI0St2mmRdLcPJ0ecThYjAydU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl
                          rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 03:15:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 780 (0x30c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EE1DD, serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD
        Validity
            Not Before: Oct 19 03:15:35 2025 GMT
            Not After : Oct 26 03:15:35 2025 GMT
        Subject: CN=68f457d7-a2f7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:de:02:f2:f9:06:a0:e7:f0:a2:aa:95:b5:93:
                    39:c1:d0:49:bc:1b:fe:98:93:ca:fc:5f:60:f7:1b:
                    83:63:ab:d0:ba:44:9b:43:79:36:86:66:71:7a:e4:
                    29:2e:68:e5:df:78:4e:9e:d4:9a:e1:1c:b5:d0:7e:
                    27:fd:4c:bf:64:c2:f9:11:b7:0e:2e:1e:08:8c:30:
                    12:65:a5:5f:f5:ba:3b:48:b8:b7:14:3c:ce:41:24:
                    4b:a6:77:ab:99:dc:c9:64:ab:9d:b8:a9:27:ab:9a:
                    24:9c:8e:7b:58:33:22:b0:bf:19:2c:d7:3c:95:c1:
                    51:be:c8:3c:48:a4:7a:7e:8d:72:e0:ac:7a:4e:de:
                    89:bc:42:6d:36:82:5e:9b:ba:06:c0:f0:da:df:ea:
                    b3:8f:5e:be:2a:8c:9c:77:39:85:64:a7:47:97:4f:
                    53:5b:5b:b2:07:d2:a4:ee:23:66:15:3d:bf:9d:c3:
                    cc:1f:54:29:3a:94:03:c3:76:62:e5:01:fb:6a:50:
                    d7:58:80:d8:59:1e:10:e0:b2:10:9b:49:35:30:83:
                    b5:8e:bf:77:19:bf:1d:1d:f5:87:37:24:14:18:70:
                    cc:7d:46:e4:be:8b:99:a7:ab:5a:74:0e:23:6a:e8:
                    4c:c6:30:11:6f:b4:71:e5:b0:42:d3:f5:7e:a4:5c:
                    e7:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:C2:97:5B:3B:ED:FF:70:62:32:06:61:10:D6:9F:1C:2D:F8:DE:2E
            X509v3 Authority Key Identifier:
                keyid:32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:35:54:b7:97:42:18:fb:67:87:38:67:65:05:ec:98:2e:39:
         fe:c8:ae:34:88:56:2c:a6:1a:74:6c:5e:15:5a:eb:47:8e:33:
         3d:7a:9a:d4:29:ed:d8:18:4e:ac:7c:9d:e2:6e:bb:f3:b6:81:
         a3:19:c9:52:8f:73:83:0f:8a:6a:b1:00:5e:2a:3b:34:d0:8a:
         fd:b4:9f:cd:9e:4d:9b:e9:50:d4:e1:08:2a:65:dc:85:e5:82:
         34:af:2c:e5:3e:55:32:f8:3b:b9:ca:b8:28:7f:28:e7:9f:f4:
         3e:77:b6:2c:db:32:6f:b2:92:1d:ef:a3:79:89:ec:d1:e4:14:
         6c:b0:23:f6:cc:81:71:f4:46:16:5b:cb:29:e0:9b:56:63:80:
         51:82:66:12:9f:95:74:81:78:50:62:cb:9f:94:5a:22:f7:34:
         18:15:a7:d1:f6:37:0c:30:d5:c6:be:e8:3f:b9:e8:85:be:79:
         f9:4a:e6:c4:d8:bb:bb:4d:d3:f3:36:4c:83:a1:38:dd:b8:ff:
         37:12:43:62:33:90:ce:b6:63:4b:26:22:5a:cf:fd:52:f9:59:
         11:9d:d9:14:2c:16:9e:91:df:77:42:7f:11:ce:8a:3a:ad:c5:
         61:fb:a9:a0:b7:46:94:ee:a7:3c:26:e7:13:c2:ff:ad:cf:e6:
         c3:f6:7f:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:15:09 2025 by rpki-client