Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft
File:                     aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft (raw, json)
Hash identifier:          uvw1FW9RHcIWSFdnPyRgPF5Dr297rH1Vpp4XIhwIquY=
Subject key identifier:   7C:AA:EA:CC:87:5B:A8:DC:E0:B7:71:8C:77:8B:95:D0:74:73:2F:2D
Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33
Certificate issuer:       /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233
Certificate serial:       0E49
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft
Manifest number:          0E31
Signing time:             Sat 18 Oct 2025 18:28:10 +0000
Manifest this update:     Sat 18 Oct 2025 18:28:09 +0000
Manifest next update:     Sat 25 Oct 2025 18:28:09 +0000
Files and hashes:         1: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl (hash: JIZHQgr3p7+UX/PvJfrRtdROlaAoI79A1KAsZBct700=)
                          2: F9BDC484F7B011EB84345029C4F9AE02.roa (hash: TISln3OWwFMxrFHBXjhzJmsuAj7ldgpqpKcI/7qFxoU=)
                          3: 6E8576BC0F1911F0A007DF16C4F9AE02.roa (hash: cRBzFvwtKhO498akQMxVv4jrQ/Ofn1ctENdiE3NLHgk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl
                          rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 18:28:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3657 (0xe49)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914FED3, serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233
        Validity
            Not Before: Oct 18 18:28:09 2025 GMT
            Not After : Oct 25 18:28:09 2025 GMT
        Subject: CN=68f3dc3a-be06
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:63:09:dc:41:bb:d4:3a:fc:14:f5:2e:fd:22:
                    33:e3:d6:28:82:f1:eb:4d:f1:3c:bb:ad:43:98:f4:
                    ce:85:08:24:ef:db:8a:1c:5e:8b:59:1e:82:c4:c6:
                    ad:04:0c:82:b5:0c:a1:f6:a3:92:e2:09:ed:ed:34:
                    26:3e:73:18:ec:e4:a3:75:be:7d:03:2a:94:17:1d:
                    b1:d7:2e:8c:c8:46:46:09:1c:e8:96:d0:86:1b:04:
                    21:5f:61:fb:cb:0a:4d:fc:c2:c2:b6:3c:a9:fb:10:
                    81:d1:6b:0d:90:5b:39:5f:fa:37:18:b8:b4:be:c6:
                    f6:99:ac:eb:65:b8:57:92:39:9f:dc:f4:06:f4:48:
                    b9:dd:dc:f2:ea:87:08:42:2d:59:30:34:f7:fc:df:
                    0b:16:a6:b7:18:cf:5d:e4:b6:b1:84:3a:09:37:10:
                    58:4c:ff:0f:b5:0c:6d:52:54:52:b8:a2:2a:06:bd:
                    92:f0:27:c0:58:81:81:28:69:e1:dd:9a:7a:4a:be:
                    3a:55:25:89:e3:76:f4:eb:d5:17:97:29:6c:4c:aa:
                    80:96:5a:21:51:1a:90:15:31:aa:80:5b:fd:a4:9b:
                    83:40:9c:b1:a4:41:77:26:f9:bf:9e:b0:02:fe:59:
                    e8:a0:6d:a7:f3:d7:f9:87:70:e0:d3:54:e7:a9:07:
                    aa:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:AA:EA:CC:87:5B:A8:DC:E0:B7:71:8C:77:8B:95:D0:74:73:2F:2D
            X509v3 Authority Key Identifier:
                keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         e9:68:e3:40:b3:76:70:d5:03:93:c3:34:cd:6f:4e:0a:e1:73:
         aa:8d:c3:bf:47:95:8f:de:a0:10:64:28:6e:ae:7d:fa:6b:fe:
         3f:07:43:a7:65:58:b6:1f:02:f7:dc:70:e6:5d:93:82:ee:f1:
         48:8f:42:b0:00:7f:74:e2:ec:bc:b5:06:55:87:fb:b3:dc:d1:
         95:78:98:31:63:37:49:11:eb:a3:d6:c0:a6:27:47:6d:00:a4:
         c6:76:f3:eb:70:87:cf:7d:c0:de:2d:70:5a:b3:fc:9e:6d:00:
         57:de:81:41:74:fa:db:76:47:61:d1:36:e3:2e:ce:be:53:be:
         5e:36:d0:e9:55:f8:fb:44:5a:e4:2b:41:aa:3c:66:d4:ab:d6:
         42:2e:fa:74:26:95:cf:ae:9e:12:77:f8:c0:3b:65:a9:de:36:
         86:d2:b0:74:5a:aa:02:44:d7:8e:ec:12:7e:7c:bd:a9:da:50:
         13:5a:1f:05:14:b3:90:2e:a5:25:6e:92:5d:21:3b:37:aa:5c:
         d6:15:e0:38:2a:a8:f7:fe:8e:20:17:e6:ff:1e:2e:ea:ed:54:
         a6:fc:d5:13:77:7e:49:cf:d6:b8:ba:dc:dc:ac:2c:de:a0:77:
         1a:80:a1:89:9d:6f:96:e9:3f:84:74:48:bb:44:7c:71:23:76:
         7b:0d:0d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:04:51 2025 by rpki-client