Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft
File:                     GJHVTO9qkMIy_KiR45n5eDhnEe4.mft (raw, json)
Hash identifier:          NXuvcZGVrpaJdqXYHIHsDo/Ta3KbSt+TnmjYZlSfkO4=
Subject key identifier:   70:94:CA:CF:FB:85:9C:53:7F:28:07:F0:B7:14:16:4D:AA:DD:37:AE
Authority key identifier: 18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE
Certificate issuer:       /CN=A9128576/serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE
Certificate serial:       8D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft
Manifest number:          8B
Signing time:             Sun 19 Oct 2025 09:49:30 +0000
Manifest this update:     Sun 19 Oct 2025 09:49:29 +0000
Manifest next update:     Sun 26 Oct 2025 09:49:29 +0000
Files and hashes:         1: GJHVTO9qkMIy_KiR45n5eDhnEe4.crl (hash: ZmhuFdZRwRdaelWgAvNq3NwXkEQmaet475ZFfBynd8c=)
                          2: C8BFCD96D7A411EF9AB81933C4F9AE02.roa (hash: Fo5VkT431J+zLy9igbQ3SFfIsb+FgMetIU9BycrAICA=)
                          3: C9B06ECCD7A411EF9AB81933C4F9AE02.roa (hash: ftkSUsDxtIg6s2jX13CXTFZ0keaCV5YjPDUyQbqNBxE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl
                          rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 09:49:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 141 (0x8d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9128576, serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE
        Validity
            Not Before: Oct 19 09:49:29 2025 GMT
            Not After : Oct 26 09:49:29 2025 GMT
        Subject: CN=68f4b429-e589
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:78:1b:2b:6b:39:c6:c1:08:46:cd:b6:a8:e2:
                    fd:e8:96:b6:c1:5e:a6:26:32:60:39:ec:7c:77:c6:
                    25:f5:84:6c:5c:39:de:aa:13:db:0b:59:61:0d:03:
                    01:cc:26:4d:59:2e:d3:7e:95:c1:bf:01:6c:a8:60:
                    01:f3:b5:77:30:25:b3:5a:8f:95:52:01:48:54:c4:
                    d3:87:22:d6:7c:3a:21:22:8b:68:eb:97:38:da:b2:
                    47:a4:cf:ac:ae:86:11:d5:d3:36:bd:5c:1e:79:cf:
                    f9:ad:e9:4c:d0:55:67:af:ca:8d:c8:95:26:7d:ca:
                    3f:4c:ab:99:c9:f9:9b:58:dc:43:db:71:83:9d:ae:
                    44:0e:6c:bb:ff:16:c9:75:69:38:6f:66:c4:e8:10:
                    a8:2a:11:a4:f7:4d:48:1e:64:86:8a:fd:ff:b7:da:
                    26:61:8d:57:a7:58:03:b7:99:e0:7f:54:29:e8:7d:
                    0e:bd:1b:40:de:30:de:2e:9e:89:95:9d:a8:9d:9b:
                    d8:6c:11:62:5a:df:45:f6:f8:af:c8:4d:c9:52:ef:
                    b1:b4:c1:34:8b:5c:ff:56:bc:90:f0:5a:28:73:e0:
                    a7:af:a7:5d:89:99:99:6c:8c:9d:62:34:02:2d:7d:
                    89:2f:2a:31:dd:3f:3d:0e:b5:f7:78:e6:7b:b8:e0:
                    6a:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                70:94:CA:CF:FB:85:9C:53:7F:28:07:F0:B7:14:16:4D:AA:DD:37:AE
            X509v3 Authority Key Identifier:
                keyid:18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         09:cc:13:8b:f5:bf:7c:fc:ae:70:96:97:97:12:3b:fd:b3:31:
         c9:af:54:1a:d8:40:ee:83:4d:8e:26:b7:10:be:ee:83:41:ae:
         cc:73:57:b6:eb:a4:e3:1e:1d:e9:01:3a:36:3a:fe:57:c0:4d:
         69:89:ae:16:82:04:a7:44:a7:5c:64:09:e5:8b:7d:4d:93:c4:
         2e:d1:7a:53:41:8a:44:17:f4:67:b9:cb:c4:5d:73:05:2f:8d:
         f6:5a:7b:d6:3d:dd:dc:0c:cb:0f:7d:9b:96:8e:f3:a7:3d:4b:
         c8:be:6c:6b:b1:e0:8d:cd:84:12:34:e6:44:2c:61:d2:a2:ac:
         93:78:9a:f8:fb:79:5e:a7:62:a1:fc:8d:c3:5c:01:47:d6:1b:
         4d:79:24:01:4b:2b:ea:16:18:12:e8:cb:7c:7e:fc:d8:95:7f:
         d4:76:cc:77:b7:93:45:66:55:35:b9:19:70:41:b8:2c:03:a7:
         18:12:bf:ec:fa:80:22:08:bb:16:2d:94:a6:58:7d:36:7c:f3:
         8e:f9:7d:51:08:50:3d:6a:ed:c9:1c:3e:c2:11:a3:cb:9f:72:
         70:54:2a:89:30:4e:0e:09:f1:60:a8:fa:61:d8:11:3e:dd:dd:
         61:22:64:f0:18:03:69:a7:aa:72:52:f9:70:9a:a3:86:9f:f7:
         9c:0c:48:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:45:03 2025 by rpki-client