Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft
File:                     -sKy5UFEW1tHxZ2uHeLd6IeauLs.mft (raw, json)
Hash identifier:          +dxJT0BTcDxPWPHekGR+nyA1eXdAPvWwdUZPiXPcgMQ=
Subject key identifier:   3A:03:86:A0:29:CB:62:84:82:64:87:98:50:A6:A4:E7:BA:95:B0:2C
Authority key identifier: FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB
Certificate issuer:       /CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB
Certificate serial:       FE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft
Manifest number:          F7
Signing time:             Sun 19 Oct 2025 08:14:53 +0000
Manifest this update:     Sun 19 Oct 2025 08:14:52 +0000
Manifest next update:     Sun 26 Oct 2025 08:14:52 +0000
Files and hashes:         1: -sKy5UFEW1tHxZ2uHeLd6IeauLs.crl (hash: d9WG+Lt8yOP0JnFXDjSUe0aGYbyZ5KiR4Xnsu/v15rM=)
                          2: 8B0201183E8911EFB2DCA846C4F9AE02.roa (hash: sQR4OxxnRQelaQye41JzM/+/uoADouWx9n3P5u34eoY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl
                          rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 08:14:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 254 (0xfe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F11EE, serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB
        Validity
            Not Before: Oct 19 08:14:52 2025 GMT
            Not After : Oct 26 08:14:52 2025 GMT
        Subject: CN=68f49dfd-e876
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:21:5d:a9:58:48:29:0f:a8:9f:65:0b:8b:6c:
                    4c:f0:40:82:df:b0:da:69:57:80:56:54:e0:9b:cb:
                    53:a4:7c:9a:2a:2f:39:f7:c3:47:c9:a2:92:59:f1:
                    03:4b:06:ab:c4:30:2a:8c:01:fb:c4:f2:d8:6c:49:
                    8d:f9:12:73:20:39:3a:4e:a0:9a:01:e2:27:33:e2:
                    74:1d:22:75:55:99:a0:39:07:81:13:40:c3:d7:99:
                    f9:dc:95:75:6b:e8:b2:41:2e:0c:76:54:7c:02:0d:
                    ab:f0:98:68:66:97:53:b0:52:f2:49:40:fc:fa:d7:
                    b6:ad:1b:4b:ed:13:6c:a3:3f:0d:05:d6:56:08:9b:
                    bb:86:41:54:5d:72:c0:e4:03:fc:e1:25:2a:14:a5:
                    c9:2f:b0:21:a1:63:1d:c6:dc:96:fb:c5:62:38:e0:
                    12:26:63:c6:83:74:e3:da:45:9c:d9:56:81:c9:85:
                    e0:87:3b:52:60:06:91:46:fc:98:1d:09:7d:2e:01:
                    a6:ba:aa:f4:ea:eb:ab:1b:a2:4a:62:d5:29:10:11:
                    4f:30:c1:bc:e2:c0:35:10:dd:55:09:a4:16:75:ea:
                    e7:63:f9:a0:91:8f:0d:b1:f1:3a:7f:ec:e3:67:cf:
                    6f:8a:ce:94:85:fb:fa:81:98:57:a3:16:27:50:0f:
                    f3:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3A:03:86:A0:29:CB:62:84:82:64:87:98:50:A6:A4:E7:BA:95:B0:2C
            X509v3 Authority Key Identifier:
                keyid:FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:32:05:34:9e:10:1c:ea:c5:0d:b3:74:c5:4b:f4:1f:a3:33:
         30:57:cf:72:98:bd:c0:6d:cb:e3:26:8c:b1:06:5c:a2:1d:3e:
         43:c5:ac:b0:39:69:5f:b7:d0:7a:40:0d:c3:0b:34:9d:b7:3e:
         73:86:66:40:d2:79:48:96:88:7c:7a:bd:c2:53:3a:25:ae:91:
         c7:a5:04:40:a7:bc:76:ff:8e:56:19:f9:7a:ac:5d:84:3c:be:
         e2:34:e2:9c:b8:f4:fe:fa:90:06:7a:6c:96:83:e6:3f:aa:17:
         da:b1:7d:3f:a4:a6:ed:fc:44:f7:a0:79:10:3a:16:ae:8b:5a:
         95:86:48:ae:b4:01:9b:19:d7:72:21:5a:20:a9:41:93:06:60:
         48:40:96:33:16:79:8a:18:b9:5b:73:89:fa:df:f6:c0:91:a8:
         25:31:38:48:1a:be:67:c5:16:b5:05:69:d6:1e:86:26:5a:ae:
         f7:3c:5b:b8:2c:de:48:c7:3c:1c:fe:2e:9b:dc:92:b1:9e:fa:
         6f:39:f9:ba:01:cb:33:73:78:72:ae:2d:7a:ff:f9:66:9b:d5:
         32:f6:6b:70:4f:3a:b7:a5:36:ac:a9:58:9e:9f:96:45:98:f2:
         02:fc:50:18:88:25:cf:83:80:07:1f:50:68:13:b9:b0:08:f4:
         4c:47:68:a3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjExRUUxMTAvBgNVBAUTKEZBQzJCMkU1NDE0NDVCNUI0N0M1OURBRTFERTJEREU4
ODc5QUI4QkIwHhcNMjUxMDE5MDgxNDUyWhcNMjUxMDI2MDgxNDUyWjAYMRYwFAYD
VQQDEw02OGY0OWRmZC1lODc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwSFdqVhIKQ+on2ULi2xM8ECC37DaaVeAVlTgm8tTpHyaKi8598NHyaKSWfED
SwarxDAqjAH7xPLYbEmN+RJzIDk6TqCaAeInM+J0HSJ1VZmgOQeBE0DD15n53JV1
a+iyQS4MdlR8Ag2r8JhoZpdTsFLySUD8+te2rRtL7RNsoz8NBdZWCJu7hkFUXXLA
5AP84SUqFKXJL7AhoWMdxtyW+8ViOOASJmPGg3Tj2kWc2VaByYXghztSYAaRRvyY
HQl9LgGmuqr06uurG6JKYtUpEBFPMMG84sA1EN1VCaQWdernY/mgkY8NsfE6f+zj
Z89vis6Uhfv6gZhXoxYnUA/z4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDoDhqAp
y2KEgmSHmFCmpOe6lbAsMB8GA1UdIwQYMBaAFPrCsuVBRFtbR8Wdrh3i3eiHmri7
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTFFRS9FOThBNDY1MjNF
ODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcxdEh4WjJ1SGVMZDZJZWF1
THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLy1zS3k1VUZFVzF0SHhaMnVIZUxkNkllYXVMcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
MTFFRS9FOThBNDY1MjNFODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcx
dEh4WjJ1SGVMZDZJZWF1THMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBOMgU0nhAc6sUNs3TFS/QfozMwV89ymL3AbcvjJoyxBlyiHT5Dxayw
OWlft9B6QA3DCzSdtz5zhmZA0nlIloh8er3CUzolrpHHpQRAp7x2/45WGfl6rF2E
PL7iNOKcuPT++pAGemyWg+Y/qhfasX0/pKbt/ET3oHkQOhaui1qVhkiutAGbGddy
IVogqUGTBmBIQJYzFnmKGLlbc4n63/bAkaglMThIGr5nxRa1BWnWHoYmWq73PFu4
LN5Ixzwc/i6b3JKxnvpvOfm6Acszc3hyri16//lmm9Uy9mtwTzq3pTasqVien5ZF
mPIC/FAYiCXPg4AHH1BoE7mwCPRMR2ij
-----END CERTIFICATE-----
Generated at Mon Oct 20 21:47:16 2025 by rpki-client