Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft
File:                     o9c6Tp8QQ946v09e0Qhor20zW_Q.mft (raw, json)
Hash identifier:          7Q70OQyj/4y+boLOD1Mh2xb5uTOODH5VqSf3P6Jh0K0=
Subject key identifier:   5B:3E:8C:16:02:27:CF:FD:F3:19:90:C0:0E:84:BB:22:24:9C:46:A9
Authority key identifier: A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4
Certificate issuer:       /CN=A914A4A1/serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4
Certificate serial:       03F8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft
Manifest number:          03F3
Signing time:             Sun 19 Oct 2025 02:25:59 +0000
Manifest this update:     Sun 19 Oct 2025 02:25:59 +0000
Manifest next update:     Sun 26 Oct 2025 02:25:59 +0000
Files and hashes:         1: o9c6Tp8QQ946v09e0Qhor20zW_Q.crl (hash: Trkce3MyictvsXgCTdbAlqoI4nEh3Urr4x9EyzHfrmI=)
                          2: 59212E58955D11EC97EC0461C4F9AE02.roa (hash: /LvExGUs3Vr9wpRYY+a9ZS6EORFrCyhwbLTTuNvKjdk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.crl
                          rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 02:25:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1016 (0x3f8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914A4A1, serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4
        Validity
            Not Before: Oct 19 02:25:59 2025 GMT
            Not After : Oct 26 02:25:59 2025 GMT
        Subject: CN=68f44c37-afd5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:dc:86:94:22:4e:7b:60:fa:02:d3:00:a2:74:
                    13:7b:72:0e:b1:d4:84:5f:67:e5:24:0f:ab:91:c8:
                    5e:a2:91:d3:db:4a:2a:0b:a7:e3:0d:e2:d3:3d:ab:
                    f7:de:ab:a2:ed:ba:77:e6:70:d8:3f:24:5e:d7:30:
                    13:dd:67:1d:8e:95:96:11:41:fb:58:54:2f:b7:bf:
                    28:57:89:99:81:b4:8b:76:2c:b4:c3:78:c1:15:97:
                    9c:e8:ca:ce:9c:82:13:e6:2d:83:29:59:9d:52:62:
                    5c:0e:1a:f7:2f:de:6d:3b:77:dc:b5:61:7b:cd:ce:
                    d2:4e:6f:6c:f8:09:48:e1:99:c9:54:96:73:ee:06:
                    8d:50:fd:bb:dd:f7:6e:17:9e:c8:ec:d0:43:c2:ae:
                    a7:6f:26:a8:9b:65:f9:02:9b:66:ac:d5:8a:5f:72:
                    61:85:b2:36:c7:40:98:c5:32:cf:22:d4:83:7a:15:
                    5d:2e:63:fe:9a:9d:d8:b2:4a:bc:1c:b7:89:e8:ce:
                    57:d5:1a:c9:48:7a:a5:49:5b:13:12:d0:67:7d:a2:
                    52:39:87:1c:ba:fc:fd:b2:ac:a5:4c:0b:05:3e:74:
                    3a:ed:ee:39:ec:8b:8a:72:eb:54:17:40:63:88:3a:
                    77:43:2e:48:2c:fe:52:28:0e:d4:f7:39:71:ba:17:
                    a3:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:3E:8C:16:02:27:CF:FD:F3:19:90:C0:0E:84:BB:22:24:9C:46:A9
            X509v3 Authority Key Identifier:
                keyid:A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:2c:3e:01:95:ce:e3:4b:10:cc:c1:2b:25:98:90:95:23:ba:
         cf:00:a0:a5:5d:1a:af:03:ce:23:41:f6:09:3a:04:0a:43:ee:
         74:11:84:cf:ad:8f:c0:fa:f9:bc:f8:98:8f:c7:74:f1:75:e7:
         77:ef:5b:a4:c6:4f:fc:99:e6:ae:9d:79:27:c8:9c:a3:c7:00:
         86:52:24:c0:06:fb:ea:1c:e5:ba:07:ee:69:a4:17:fe:81:f2:
         23:5e:a2:c7:f7:9a:94:e8:34:f2:54:3c:7b:5f:c5:4f:1c:dd:
         d5:b9:e8:ee:8d:4f:83:20:d9:c1:4e:fc:d9:6f:e3:e2:94:2a:
         cc:dd:d2:37:b2:8a:d6:f9:25:07:23:6e:bc:69:f0:cf:1b:e2:
         9b:2a:3c:a1:c1:24:16:51:4c:92:2c:df:ba:6d:85:ba:fc:22:
         90:65:93:49:b7:9e:5a:74:07:5d:a2:6c:9f:ee:c0:6c:f1:8c:
         da:1c:86:37:4f:dd:f4:8b:9d:33:ab:53:76:84:1e:a8:c3:2c:
         96:2c:7b:e6:1a:53:dc:c9:fb:59:78:2d:bd:6e:dc:b4:3f:1e:
         0a:be:5b:bf:80:2e:fb:d5:70:48:63:a0:05:4b:98:19:cf:27:
         03:b1:ec:88:20:77:80:bd:c3:f4:00:1f:58:47:23:92:93:6e:
         77:37:2a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:44:55 2025 by rpki-client