Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft
File:                     q47HWiojWU9vKtMnsOa7wLCrm-4.mft (raw, json)
Hash identifier:          y7WUSEpTsIOCAomF25vkcNn3q+lDjelCE60oZgBex8g=
Subject key identifier:   FB:32:67:72:32:EF:98:DE:2C:8B:0E:33:57:20:75:CC:E4:EE:9D:5D
Authority key identifier: AB:8E:C7:5A:2A:23:59:4F:6F:2A:D3:27:B0:E6:BB:C0:B0:AB:9B:EE
Certificate issuer:       /CN=A91F783D/serialNumber=AB8EC75A2A23594F6F2AD327B0E6BBC0B0AB9BEE
Certificate serial:       0E19
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft
Manifest number:          0E0F
Signing time:             Sat 18 Oct 2025 18:30:35 +0000
Manifest this update:     Sat 18 Oct 2025 18:30:35 +0000
Manifest next update:     Sat 25 Oct 2025 18:30:35 +0000
Files and hashes:         1: q47HWiojWU9vKtMnsOa7wLCrm-4.crl (hash: VNo55F5Jz5Fp4RmDhDQkV93oFjv9h33GTYVbHq6HWaU=)
                          2: E3ACB710B9B211E9A9A37254C4F9AE02.roa (hash: Jg5gZD0YmKb91aw5MXsxMT3mckkXVt61eCbJBF82oak=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.crl
                          rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 18:30:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3609 (0xe19)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F783D, serialNumber=AB8EC75A2A23594F6F2AD327B0E6BBC0B0AB9BEE
        Validity
            Not Before: Oct 18 18:30:35 2025 GMT
            Not After : Oct 25 18:30:35 2025 GMT
        Subject: CN=68f3dccb-06dc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:a8:f1:1f:7a:57:c0:e0:93:ea:7a:60:5b:ad:
                    fe:1d:b1:09:8c:91:51:d9:54:03:a2:90:85:14:e1:
                    74:9c:16:0d:23:71:de:3a:8e:bc:cc:3e:d1:fd:a0:
                    5f:4e:eb:eb:7a:64:c0:79:e9:db:40:f4:48:44:77:
                    78:64:ca:77:0e:9b:4a:c7:d4:f9:cf:dc:19:e5:67:
                    86:16:36:a1:4b:07:0a:ec:43:bc:63:fc:91:16:79:
                    2e:a8:3e:36:93:29:ec:6a:f8:dc:92:f1:f6:c0:4c:
                    09:7e:4b:ee:03:82:e6:80:33:08:2e:38:46:17:54:
                    84:2a:ac:d4:79:e0:3a:20:1a:d8:f0:43:23:e7:a3:
                    2b:f8:94:d0:a8:ee:26:9b:38:20:e7:8a:9a:6d:a9:
                    06:a6:03:07:d4:f9:10:4f:27:23:39:cc:4c:ac:43:
                    8f:68:4b:8c:ae:68:dc:79:c4:4e:d3:b2:8c:24:6f:
                    09:4d:75:8b:3a:0f:50:21:f4:d0:14:53:b4:67:17:
                    4b:52:df:79:85:fe:7d:f7:de:d0:ee:2e:4d:59:43:
                    78:f4:18:9c:3b:09:ac:1c:24:44:57:b2:22:23:91:
                    54:c1:e6:c8:a2:bb:41:98:1c:da:38:e0:7b:9b:ae:
                    f2:c7:bc:40:ee:79:71:06:a5:c8:2b:da:e6:4e:b4:
                    4a:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FB:32:67:72:32:EF:98:DE:2C:8B:0E:33:57:20:75:CC:E4:EE:9D:5D
            X509v3 Authority Key Identifier:
                keyid:AB:8E:C7:5A:2A:23:59:4F:6F:2A:D3:27:B0:E6:BB:C0:B0:AB:9B:EE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         d3:f9:73:76:9d:8e:e6:df:f9:a7:18:d2:df:b8:c4:ac:8a:cc:
         02:f4:8f:93:c4:47:83:f9:51:1a:06:d8:d3:8d:71:1f:3b:e1:
         8a:97:91:3b:c4:7b:31:4a:7b:78:b3:01:38:16:a5:e8:72:ec:
         77:b6:08:0c:dc:41:ba:de:c2:6f:e9:3c:97:59:e1:46:df:48:
         f9:98:7c:ee:7c:f2:2a:61:91:67:47:ca:41:fc:f1:fe:1e:38:
         a3:a1:01:12:3e:a3:6a:25:28:a6:7e:4b:54:1e:4e:c5:ad:2b:
         15:2c:39:bb:31:7f:00:71:6c:11:77:58:e7:2f:5c:bd:ed:99:
         2d:83:df:d8:d0:e5:98:5c:fd:59:6d:ce:1c:6f:ad:80:66:87:
         ec:66:20:6e:16:7c:f6:79:6e:95:c5:04:1e:e7:28:5a:f2:08:
         b0:2a:78:e0:a7:dc:07:7c:c1:61:12:27:91:ba:37:93:a4:d8:
         dc:0c:d8:1b:2c:fa:09:36:dd:9d:58:96:53:dd:a2:14:5d:ae:
         7d:17:87:6c:68:2b:3b:fd:82:39:95:ae:96:46:e9:4e:6a:b4:
         3c:ac:ad:62:4d:4f:cd:2f:f5:e5:b4:48:02:1a:86:da:b6:03:
         8a:31:1e:a3:6a:b3:1d:22:ca:31:62:4e:8e:0d:04:99:d0:91:
         be:db:a0:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:00:11 2025 by rpki-client