Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft
File:                     fWXr4UwwRuc-OYaVcwKibggfGvg.mft (raw, json)
Hash identifier:          lN7Jdk24J2eOf/WFO7JoNn/eTSR3DlTgt3AsqzjrzPU=
Subject key identifier:   60:38:A7:9D:15:19:1F:58:44:1E:30:65:96:8F:6A:8C:21:E5:50:18
Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8
Certificate issuer:       /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8
Certificate serial:       28F9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft
Manifest number:          270B
Signing time:             Sat 18 Oct 2025 15:58:06 +0000
Manifest this update:     Sat 18 Oct 2025 15:58:05 +0000
Manifest next update:     Sat 25 Oct 2025 15:58:05 +0000
Files and hashes:         1: fWXr4UwwRuc-OYaVcwKibggfGvg.crl (hash: dWoGMjGijxve4zvPt2en/4zrPv9vNvs76DXRw5PcYvc=)
                          2: 089CB7F8E41C11E9AD4A8D16C4F9AE02.roa (hash: KhDCztJWi/b/h8TdofXt57IsiN7CYR7V5Vv9hx6DGJ4=)
                          3: 4F8D63203EBF11EBA940A946C4F9AE02.roa (hash: buzUvsC9YQBDNkx4fnJbNl9kiM+U4xX7qiwW7jQGn9U=)
                          4: E4E0C13C5EBF11EAB066F050C4F9AE02.roa (hash: 09nhcXF8pfvdzn6CCtvShKWHZfoomhaHIFhfxLtBWEg=)
                          5: E5AA11C2974A11EFAE16EC38C4F9AE02.roa (hash: kJeN/UI655DbN13QHSpXrQh408ELt76DYwlRt2ZSVkA=)
                          6: EC5BF06C8A3411EFBF173E5BC4F9AE02.roa (hash: NmW3Y/m0Qnd+3MAPykcEDAwy2/PhvZXXV1bJp4RTfiw=)
                          7: 2022CF028A2511EF8F560567C4F9AE02.roa (hash: 7DsIuFioPYz3iZVdfli3bbz18O2Gwbs9BU2Is0eqm5Q=)
                          8: E44FF288EE9811EF88F8B953C4F9AE02.roa (hash: YOkeRYmWzfyeD6N+kegajw+1XbrsmV/kSBR1jXFWmA8=)
                          9: 3F2B28B4D94411E98E28CD85C4F9AE02.roa (hash: rsrHr7YKfZgSziRJ4fYTZE3PURFyCHMTrDSz518raFY=)
                          10: 7196A634B0F311E5AB30F151C4F9AE02.roa (hash: SLJ4bVw8/Sq7sVlq+NvVTRm8ROvRMC4fmrNcUaFRRzw=)
                          11: 68356576B0F311E5AB30F151C4F9AE02.roa (hash: DUbx2Fx+t93gx84kMfsEkb62vUQ8QmFeMZs1r67VJwU=)
                          12: 3D7A10E8D94411E98E28CD85C4F9AE02.roa (hash: YnnRd8dXClUSq2ox+Sn+OmT1h0ooTE5RjNlpDC8bvCw=)
                          13: 73464EBCB0F311E5AB30F151C4F9AE02.roa (hash: c0iY9Lu0n3iaEM+4s2nui07Z/TqE/8KaUyZsMqUDCCQ=)
                          14: BDA4E3289A8311EF8E25CE76C4F9AE02.roa (hash: flOC9BgqvfJjOP86rJtUD8YssT26VE7edHVyZu+Czlk=)
                          15: 3E054AE6D94411E98E28CD85C4F9AE02.roa (hash: eoaziQFsYiES3E74o+e3m1yHX51KmYZICtGgOdmxP/A=)
                          16: 40397ED6D94411E98E28CD85C4F9AE02.roa (hash: BhDUCqh173lsvs2Bnbhi7COFz82kD2xNwvdh9F0plhs=)
                          17: 3C670256D94411E98E28CD85C4F9AE02.roa (hash: WnT3cX4WRGpGldQr8iVlQEOarNqbWZCfXBgxVrrlico=)
                          18: 69CB6C488A3111EF85E56411C4F9AE02.roa (hash: 9+WpLfz/8nl9K5wkpOEpS+BWKOe1g8uJlISxyodEmPw=)
                          19: 40E8489ED94411E98E28CD85C4F9AE02.roa (hash: 60EW2fbzOqG92Ix/gO279NK0BBUbrc3vTv6HG90hKwE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl
                          rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 15:58:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10489 (0x28f9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9145446, serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8
        Validity
            Not Before: Oct 18 15:58:05 2025 GMT
            Not After : Oct 25 15:58:05 2025 GMT
        Subject: CN=68f3b90e-59ce
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:38:fc:df:c1:96:7d:c3:0b:c9:3b:88:cb:11:
                    57:39:2d:a9:ee:4e:46:b3:5f:43:5f:d0:05:2f:78:
                    2f:86:8e:8c:30:a4:2f:86:e1:cf:59:4b:09:b7:1b:
                    0e:e2:e1:24:13:b1:1e:c2:8f:11:a2:43:52:a0:66:
                    53:da:dd:9c:62:e4:0a:95:27:ac:a5:e9:a2:66:bc:
                    a1:5a:78:08:f2:f1:0e:63:18:ad:d7:ae:4e:28:b3:
                    04:12:e8:c4:5c:0b:25:81:ad:10:08:a5:ef:ac:38:
                    67:78:a7:11:91:13:4c:ac:06:27:27:dc:f5:92:34:
                    f0:6c:3e:f7:4a:85:3d:84:71:05:20:21:66:6f:41:
                    b2:4e:73:69:2e:86:0d:7b:7d:41:2d:2e:fb:9c:3b:
                    f1:14:f8:4b:61:c7:4f:1d:fc:cd:19:6b:5b:03:a8:
                    87:a4:fb:e1:94:3a:47:14:6e:a7:44:a2:5d:d0:64:
                    cb:dd:dc:89:c5:63:b9:db:63:20:9c:c1:a8:b0:bb:
                    66:09:8b:94:5d:42:f6:91:c0:f3:f5:1e:7d:54:1e:
                    81:6a:bf:d7:f8:cf:91:34:3e:7e:85:e8:65:9c:65:
                    d1:b1:19:75:74:23:ad:1c:e8:a7:54:e8:9f:c5:27:
                    f4:58:4a:05:36:aa:5d:49:1a:e3:6f:a6:aa:ff:14:
                    92:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:38:A7:9D:15:19:1F:58:44:1E:30:65:96:8F:6A:8C:21:E5:50:18
            X509v3 Authority Key Identifier:
                keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:0e:ee:53:12:a5:ed:31:a5:8d:dd:f9:ed:b3:93:01:b5:36:
         82:3a:ad:74:0f:8c:e5:8b:dc:38:20:f9:84:79:f4:8f:62:fe:
         0f:c5:c7:65:89:15:ee:a2:8f:55:51:de:3d:65:9a:ce:0e:10:
         b0:63:33:c2:b5:25:d3:a3:6c:dc:0d:09:46:f1:45:e3:41:9f:
         d4:df:ba:8d:41:d1:1b:6e:d6:29:68:b5:43:62:a8:bd:b0:57:
         79:c8:f0:09:5c:55:37:ad:51:28:46:2d:5e:97:a3:a1:41:a5:
         fd:ce:58:c1:fc:e7:a9:63:52:87:48:6b:e1:a5:d4:c4:50:d5:
         15:9b:2b:99:a9:69:2e:be:21:e6:09:cb:b9:e4:de:2b:1c:f5:
         33:3e:fc:e4:b2:53:8f:96:c7:54:d5:37:29:f7:a3:21:98:89:
         0d:a7:93:65:3f:72:db:d0:11:07:e8:89:87:3e:17:5b:5d:cc:
         e1:c9:42:97:88:c8:ea:25:81:a3:72:79:c5:0d:1a:86:bc:33:
         42:1e:21:ea:3b:fe:91:70:46:b3:7c:3b:af:f2:96:28:9f:02:
         13:4f:b4:f9:54:6e:b0:f0:65:3e:be:46:68:77:a9:af:30:20:
         ff:f7:a5:ea:c3:a1:79:8f:ea:a4:e3:62:70:83:f3:b4:ed:53:
         67:6c:16:a9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICKPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF
MDgxRjFBRjgwHhcNMjUxMDE4MTU1ODA1WhcNMjUxMDI1MTU1ODA1WjAYMRYwFAYD
VQQDEw02OGYzYjkwZS01OWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyDj838GWfcMLyTuIyxFXOS2p7k5Gs19DX9AFL3gvho6MMKQvhuHPWUsJtxsO
4uEkE7Eewo8RokNSoGZT2t2cYuQKlSespemiZryhWngI8vEOYxit165OKLMEEujE
XAslga0QCKXvrDhneKcRkRNMrAYnJ9z1kjTwbD73SoU9hHEFICFmb0GyTnNpLoYN
e31BLS77nDvxFPhLYcdPHfzNGWtbA6iHpPvhlDpHFG6nRKJd0GTL3dyJxWO522Mg
nMGosLtmCYuUXUL2kcDz9R59VB6Bar/X+M+RND5+hehlnGXRsRl1dCOtHOinVOif
xSf0WEoFNqpdSRrjb6aq/xSSUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGA4p50V
GR9YRB4wZZaPaowh5VAYMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG
QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH
dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
NTQ0Ni9BQ0EyRTc1QzFGQzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1
Yy1PWWFWY3dLaWJnZ2ZHdmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBYDu5TEqXtMaWN3fnts5MBtTaCOq10D4zli9w4IPmEefSPYv4Pxcdl
iRXuoo9VUd49ZZrODhCwYzPCtSXTo2zcDQlG8UXjQZ/U37qNQdEbbtYpaLVDYqi9
sFd5yPAJXFU3rVEoRi1el6OhQaX9zljB/OepY1KHSGvhpdTEUNUVmyuZqWkuviHm
Ccu55N4rHPUzPvzkslOPlsdU1Tcp96MhmIkNp5NlP3Lb0BEH6ImHPhdbXczhyUKX
iMjqJYGjcnnFDRqGvDNCHiHqO/6RcEazfDuv8pYonwITT7T5VG6w8GU+vkZod6mv
MCD/96Xqw6F5j+qk42Jwg/O07VNnbBap
-----END CERTIFICATE-----
Generated at Mon Oct 20 05:43:46 2025 by rpki-client