Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft
File:                     ORjYC8twLsrPhMt6yogPh4oU_kg.mft (raw, json)
Hash identifier:          tyP+TQ2Ljz/wzieZVBvaDkbZpKb1KKE/eywpoE2dK5E=
Subject key identifier:   B9:E5:9B:58:24:F7:D2:9D:F5:4B:B6:A9:61:FE:E0:CE:BC:D4:78:24
Authority key identifier: 39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48
Certificate issuer:       /CN=A9146B24/serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48
Certificate serial:       01AA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft
Manifest number:          0186
Signing time:             Sun 19 Oct 2025 06:44:48 +0000
Manifest this update:     Sun 19 Oct 2025 06:44:47 +0000
Manifest next update:     Sun 26 Oct 2025 06:44:47 +0000
Files and hashes:         1: ORjYC8twLsrPhMt6yogPh4oU_kg.crl (hash: Nw4oSyn8h3tBFsapdCFBpBDbcC9ray5bzDxoHG8Q5YY=)
                          2: 0D16F5F4933211EEA5AC155DC4F9AE02.roa (hash: 1LEVeAmiTE8mfugUrgZ7PXJTh3jzct433M4/pCSC1j8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl
                          rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 06:44:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 426 (0x1aa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9146B24, serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48
        Validity
            Not Before: Oct 19 06:44:47 2025 GMT
            Not After : Oct 26 06:44:47 2025 GMT
        Subject: CN=68f488df-ae5d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:11:d2:a0:5d:ad:07:91:d4:ae:a4:0d:86:41:
                    73:6e:ba:41:fb:10:32:e0:bb:b2:cb:73:84:e6:a7:
                    20:47:f1:4a:51:8a:23:73:c8:32:9b:a7:41:02:bb:
                    39:0a:b8:1f:2c:73:1a:19:ab:fb:78:90:60:10:c1:
                    92:c6:94:02:cb:18:17:92:71:50:e8:0d:ac:db:c6:
                    fc:ab:dc:98:47:01:21:49:e6:fb:27:07:2e:c9:55:
                    32:a9:02:18:34:0f:6c:fb:29:41:15:f5:a6:ee:0f:
                    75:06:67:f7:0b:41:7c:65:91:3e:ef:21:e5:2d:be:
                    1e:b5:70:39:7c:37:54:4f:6d:44:de:12:ca:75:f4:
                    06:68:f9:c5:de:d0:bf:2d:bd:2c:52:5b:20:a5:48:
                    3c:91:7e:bf:d0:4a:70:2d:e6:a7:c8:92:a7:89:cd:
                    91:e1:08:cb:14:53:d6:fa:80:fe:5b:76:d6:74:f7:
                    48:52:9e:70:7c:f7:ca:f0:f4:ca:19:c7:12:a8:aa:
                    95:6b:15:18:85:9f:4f:20:b6:f8:74:70:9f:2f:c6:
                    ee:c4:73:34:ea:d1:75:0a:00:79:3b:35:fd:39:bf:
                    17:3f:a3:b5:7e:2b:f4:5e:b1:1a:3e:00:ce:77:59:
                    c2:c9:1c:5b:7c:da:3e:41:52:c7:cc:dd:64:e4:a5:
                    28:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:E5:9B:58:24:F7:D2:9D:F5:4B:B6:A9:61:FE:E0:CE:BC:D4:78:24
            X509v3 Authority Key Identifier:
                keyid:39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:fb:47:36:19:b3:e3:25:70:8d:bd:a0:46:d3:ff:f7:2a:32:
         14:dd:95:fc:12:49:e8:b6:9c:bb:33:09:ca:03:30:db:1d:66:
         26:b9:be:40:07:fd:03:4f:6a:17:77:ae:ce:c5:d4:44:c5:3d:
         dd:bf:2a:05:00:4d:06:76:66:2e:19:51:cd:f1:0b:28:b7:38:
         75:ed:70:82:34:8c:4b:bf:e3:fc:8b:89:90:3e:fe:b6:c5:6f:
         90:d2:48:81:2b:1a:1a:26:0b:65:ed:8f:12:1c:46:f7:f0:d9:
         b7:3d:a2:b7:f8:6f:85:38:c9:03:64:d0:be:d3:3e:74:81:76:
         f3:bf:25:54:26:43:5f:41:56:5f:55:ea:1b:e5:64:b5:5b:4a:
         59:96:b9:e8:29:e6:85:56:c1:42:28:ac:f1:f8:db:4a:d9:7f:
         a8:28:57:a6:40:1f:f5:2a:a3:57:fc:f7:ab:05:7b:bb:27:64:
         d2:14:10:46:84:98:4f:78:ad:3f:d3:5f:89:6b:99:2e:57:b4:
         74:f3:49:32:04:a6:43:e1:02:4f:1d:cf:9b:d5:4b:bc:1b:d6:
         26:26:e4:98:59:e1:5a:b4:3d:5c:ac:31:87:e1:43:30:e4:b3:
         a8:c9:3c:f0:5a:b5:f9:95:e0:98:e3:68:fc:26:21:3e:2c:d2:
         8a:41:5b:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:42:46 2025 by rpki-client