Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft
File:                     Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft (raw, json)
Hash identifier:          33Wtyko7aQ/sr4tsOtZCSwvVn9wAEM0doJfXTNojhpk=
Subject key identifier:   F3:B3:95:5C:8D:60:D2:DF:43:E7:B6:50:6B:11:59:C3:31:CA:FD:77
Authority key identifier: 3B:3D:6B:A9:FB:EF:42:4A:FA:BF:D2:BA:30:C8:B8:57:D4:59:F0:9C
Certificate issuer:       /CN=A914C4ED/serialNumber=3B3D6BA9FBEF424AFABFD2BA30C8B857D459F09C
Certificate serial:       034D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft
Manifest number:          0347
Signing time:             Sun 19 Oct 2025 02:42:10 +0000
Manifest this update:     Sun 19 Oct 2025 02:42:10 +0000
Manifest next update:     Sun 26 Oct 2025 02:42:10 +0000
Files and hashes:         1: Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.crl (hash: CcB/n8CCd2q9+NupQuc8GfJyj5S/HQkerGwrIPtlu2E=)
                          2: 03C06766DC1211EC80AE816DC4F9AE02.roa (hash: Utn78ATYCOJD2s8KH2tHbQkxop0M2VDIkapS9+XLIf0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.crl
                          rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 02:42:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 845 (0x34d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914C4ED, serialNumber=3B3D6BA9FBEF424AFABFD2BA30C8B857D459F09C
        Validity
            Not Before: Oct 19 02:42:10 2025 GMT
            Not After : Oct 26 02:42:10 2025 GMT
        Subject: CN=68f45002-264c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:5a:39:14:9c:40:74:4d:5b:f7:04:37:0e:4b:
                    5f:e3:38:43:cb:0b:27:10:2d:da:5e:6e:21:d6:c6:
                    04:f5:9f:d1:cd:70:25:f6:46:a7:d4:c0:4a:52:b1:
                    f1:d5:8c:03:39:99:e6:07:80:ce:eb:f0:5d:ac:45:
                    ee:2e:94:fa:aa:83:ea:bb:dd:dc:73:28:c9:41:15:
                    6e:61:70:27:a4:b3:2a:94:ff:71:bb:82:1f:af:23:
                    aa:5b:37:40:c3:ae:98:1d:ce:fa:bb:c9:a8:0b:09:
                    29:c1:3e:69:a4:63:91:35:8c:a3:10:f5:06:29:bb:
                    7d:0c:b8:74:82:e1:4e:21:d6:30:f9:f4:ac:bd:de:
                    3c:60:84:49:8f:44:9f:30:1d:89:b6:5a:eb:a3:37:
                    09:18:a3:d4:7c:c3:d2:c0:ab:84:4a:f0:90:f0:11:
                    5e:a4:2c:99:e7:0b:93:f8:c2:ce:0d:c7:35:9f:72:
                    70:7c:3f:fa:ba:d7:0f:4c:f8:70:8c:eb:68:b5:3a:
                    a6:1a:3a:e0:04:d8:07:70:09:50:16:00:8b:7d:ae:
                    7b:c9:45:70:47:55:10:76:14:6b:e6:0d:bd:fe:a5:
                    ab:eb:00:5f:0a:ff:b3:47:e7:ab:7f:8a:56:7d:0c:
                    9e:3e:5d:d9:77:14:33:ec:4f:2a:b7:d3:5f:3d:ae:
                    cd:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:B3:95:5C:8D:60:D2:DF:43:E7:B6:50:6B:11:59:C3:31:CA:FD:77
            X509v3 Authority Key Identifier:
                keyid:3B:3D:6B:A9:FB:EF:42:4A:FA:BF:D2:BA:30:C8:B8:57:D4:59:F0:9C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:73:ae:1e:34:c8:29:28:6d:e2:9b:02:a2:6a:f8:1a:e4:37:
         76:96:d7:6f:ef:34:44:f2:b1:2c:2a:24:fa:c8:a3:06:8f:14:
         47:68:b1:7f:ea:2a:b8:2c:07:b5:17:bb:36:f0:e4:e9:2b:4c:
         99:87:3e:25:9d:fc:96:33:fb:3f:6e:db:65:f9:af:4b:07:ec:
         f6:d3:15:18:ff:06:7f:69:dd:00:26:33:af:29:de:d6:c7:af:
         01:f7:cd:fc:3e:da:5b:81:36:96:fc:9d:e7:48:b1:11:5a:62:
         57:89:6c:05:fa:be:04:28:ab:7b:00:ca:af:30:93:2e:48:31:
         34:92:a9:e3:ec:1f:6f:6b:df:0c:b1:50:a1:1d:6b:de:ab:cd:
         94:43:bd:69:a0:e2:fb:06:f3:ef:55:fd:57:03:c6:c5:1b:91:
         88:d8:c0:07:cc:62:78:56:97:dd:40:43:3e:7b:c1:fb:8b:33:
         09:c9:26:a5:55:7a:f0:0a:ad:f1:bd:6d:e3:7e:56:d5:e0:f7:
         0f:a4:ee:f3:7e:20:e8:7c:13:7f:6d:8e:e1:c5:95:18:37:73:
         7d:35:27:3f:df:85:fd:cf:59:64:85:69:e9:e3:67:c2:0f:03:
         4c:ef:12:3d:ed:12:e9:5a:b8:b2:10:af:43:26:2d:72:a9:88:
         1f:a2:34:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:32:50 2025 by rpki-client