Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft
File:                     lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft (raw, json)
Hash identifier:          ZQtZ9+prkmyezxC5H8qxB9rdWVrp8MSD0B/Du9lrogA=
Subject key identifier:   9F:58:3C:5F:4B:56:3C:91:6C:DE:3D:61:6B:7F:37:5B:B8:80:E9:1C
Authority key identifier: 95:2F:71:2D:F1:18:41:20:8A:3B:4A:87:46:20:C5:9F:EE:D7:70:B0
Certificate issuer:       /CN=A9110F1F/serialNumber=952F712DF11841208A3B4A874620C59FEED770B0
Certificate serial:       0298
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft
Manifest number:          0294
Signing time:             Sun 19 Oct 2025 03:47:22 +0000
Manifest this update:     Sun 19 Oct 2025 03:47:22 +0000
Manifest next update:     Sun 26 Oct 2025 03:47:22 +0000
Files and hashes:         1: lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl (hash: YG49yIkxskmQhU54hcCGdLRLXMS/tOZQZs36Lskd+xo=)
                          2: AF6A12881EBB11EDB35A2561C4F9AE02.roa (hash: 27aLcYczZ5MYFXDnhdewNPk3kbRzrioX5es/1Wn4iNI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl
                          rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 03:47:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 664 (0x298)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9110F1F, serialNumber=952F712DF11841208A3B4A874620C59FEED770B0
        Validity
            Not Before: Oct 19 03:47:22 2025 GMT
            Not After : Oct 26 03:47:22 2025 GMT
        Subject: CN=68f45f4a-45cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:95:da:d7:25:ac:ff:ec:17:a5:96:ca:71:bc:
                    88:25:03:e2:9d:b2:30:a2:5c:fb:4c:e8:43:73:00:
                    fc:2c:f2:8d:86:23:ba:7d:ba:d3:67:f8:40:13:46:
                    7b:25:bd:a1:a1:a4:a4:29:1e:56:bf:5a:7f:8c:c0:
                    6e:54:2a:2f:6c:b0:6d:56:05:06:5a:c8:0a:4c:a7:
                    49:e3:a8:c9:ce:0f:25:05:64:dd:05:b9:77:1f:be:
                    c4:0d:8d:68:0e:5f:39:4f:6d:18:ec:ca:f4:83:47:
                    4b:79:57:12:95:f0:d1:d9:22:4c:f5:26:bc:87:51:
                    95:a0:b1:e8:7b:61:4c:e1:c8:14:ca:0b:2a:d5:42:
                    00:92:a2:dc:d4:ae:2d:d3:3b:eb:9e:a4:cf:81:44:
                    fa:3c:1a:89:d9:0d:56:14:08:f9:d5:db:c1:16:4c:
                    25:5c:a7:96:cf:d4:af:36:23:cf:93:d4:53:6e:33:
                    95:03:28:13:23:9c:7c:16:97:f2:2d:ce:61:3a:7a:
                    13:22:9e:80:a5:65:d9:f1:ec:aa:70:49:e6:fb:95:
                    91:52:96:be:9e:84:10:fd:38:58:5b:95:22:16:4d:
                    36:fa:7f:b7:1c:8b:20:ca:55:45:97:98:ce:16:d8:
                    6d:44:0c:04:39:77:21:eb:49:34:ea:99:04:7f:1f:
                    6e:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:58:3C:5F:4B:56:3C:91:6C:DE:3D:61:6B:7F:37:5B:B8:80:E9:1C
            X509v3 Authority Key Identifier:
                keyid:95:2F:71:2D:F1:18:41:20:8A:3B:4A:87:46:20:C5:9F:EE:D7:70:B0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:7c:e2:47:e1:16:bb:0d:da:cc:59:5d:70:dc:93:11:56:0c:
         c7:0d:93:cf:1b:7d:74:37:83:32:12:5a:dd:fe:ca:36:96:13:
         59:24:b3:81:19:8b:9c:52:a2:bc:85:1b:1a:50:73:e1:b9:9d:
         51:3b:26:23:6b:18:2e:77:a1:34:40:48:a1:4f:b9:82:a1:b7:
         df:3c:fc:8e:d9:8a:ce:4f:8d:b6:a0:02:6c:d5:40:4d:8c:e6:
         63:97:4f:75:8c:63:31:ed:b0:0f:de:bf:08:5b:d1:0a:95:cf:
         a8:9d:27:12:db:3d:74:f4:e3:15:5a:9d:f7:33:32:8c:88:95:
         b2:fb:e6:f8:ff:54:2e:40:17:49:9b:1b:af:99:f0:9d:f2:e6:
         f6:fb:1a:2b:d8:d3:cb:0b:ab:c7:41:1f:a9:1c:1e:e7:74:40:
         2c:42:29:3d:d1:71:ea:c3:40:a8:06:c7:1e:a6:33:3c:3b:26:
         05:f9:d4:d3:ea:de:7c:c8:12:56:f5:7f:b1:99:87:8a:04:ee:
         d6:6a:9e:6c:9d:e6:89:d3:47:ba:cf:ec:83:e2:7c:fe:b9:c3:
         07:bb:f8:f1:ed:f5:ab:dd:23:ad:c4:b1:e2:b3:bc:53:0b:21:
         98:1c:ea:18:bb:cc:93:b6:23:0a:43:8a:7c:02:8b:b8:9e:c4:
         86:35:f2:96
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICApgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTBGMUYxMTAvBgNVBAUTKDk1MkY3MTJERjExODQxMjA4QTNCNEE4NzQ2MjBDNTlG
RUVENzcwQjAwHhcNMjUxMDE5MDM0NzIyWhcNMjUxMDI2MDM0NzIyWjAYMRYwFAYD
VQQDEw02OGY0NWY0YS00NWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4pXa1yWs/+wXpZbKcbyIJQPinbIwolz7TOhDcwD8LPKNhiO6fbrTZ/hAE0Z7
Jb2hoaSkKR5Wv1p/jMBuVCovbLBtVgUGWsgKTKdJ46jJzg8lBWTdBbl3H77EDY1o
Dl85T20Y7Mr0g0dLeVcSlfDR2SJM9Sa8h1GVoLHoe2FM4cgUygsq1UIAkqLc1K4t
0zvrnqTPgUT6PBqJ2Q1WFAj51dvBFkwlXKeWz9SvNiPPk9RTbjOVAygTI5x8Fpfy
Lc5hOnoTIp6ApWXZ8eyqcEnm+5WRUpa+noQQ/ThYW5UiFk02+n+3HIsgylVFl5jO
FthtRAwEOXch60k06pkEfx9u7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9YPF9L
VjyRbN49YWt/N1u4gOkcMB8GA1UdIwQYMBaAFJUvcS3xGEEgijtKh0YgxZ/u13Cw
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEYxRi82QzBGRUY1QTFF
QjkxMUVEOUZDNjg3NjBDNEY5QUUwMi9sUzl4TGZFWVFTQ0tPMHFIUmlERm4tN1hj
TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2xTOXhMZkVZUVNDS08wcUhSaURGbi03WGNMQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
MEYxRi82QzBGRUY1QTFFQjkxMUVEOUZDNjg3NjBDNEY5QUUwMi9sUzl4TGZFWVFT
Q0tPMHFIUmlERm4tN1hjTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCnfOJH4Ra7DdrMWV1w3JMRVgzHDZPPG310N4MyElrd/so2lhNZJLOB
GYucUqK8hRsaUHPhuZ1ROyYjaxgud6E0QEihT7mCobffPPyO2YrOT422oAJs1UBN
jOZjl091jGMx7bAP3r8IW9EKlc+onScS2z109OMVWp33MzKMiJWy++b4/1QuQBdJ
mxuvmfCd8ub2+xor2NPLC6vHQR+pHB7ndEAsQik90XHqw0CoBscepjM8OyYF+dTT
6t58yBJW9X+xmYeKBO7Wap5sneaJ00e6z+yD4nz+ucMHu/jx7fWr3SOtxLHis7xT
CyGYHOoYu8yTtiMKQ4p8Aou4nsSGNfKW
-----END CERTIFICATE-----
Generated at Mon Oct 20 08:01:44 2025 by rpki-client