Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft
File:                     s1py5W8JAsfhuNgSxdg2VBHdox0.mft (raw, json)
Hash identifier:          4ymQHctufpxYb/n73zVFDD6sp4KLbdSQRrXdFCcN1Os=
Subject key identifier:   78:7F:88:1F:D0:76:7E:CB:3E:21:69:3A:F4:C4:CE:6E:BF:C6:CC:06
Authority key identifier: B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D
Certificate issuer:       /CN=A9150B91/serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D
Certificate serial:       1514
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft
Manifest number:          150A
Signing time:             Sat 18 Oct 2025 17:16:38 +0000
Manifest this update:     Sat 18 Oct 2025 17:16:37 +0000
Manifest next update:     Sat 25 Oct 2025 17:16:37 +0000
Files and hashes:         1: s1py5W8JAsfhuNgSxdg2VBHdox0.crl (hash: t1jk9vf0V5L69npTtImKk7WHjhtyMbGemmgy9Gr9Dro=)
                          2: 4674A74E5DB211E8A30DF983C4F9AE02.roa (hash: N2bOeXWWMqXx3Cr2oJVAhS+4yD+JJsp3ikRjUaNFufQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl
                          rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 17:16:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5396 (0x1514)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9150B91, serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D
        Validity
            Not Before: Oct 18 17:16:37 2025 GMT
            Not After : Oct 25 17:16:37 2025 GMT
        Subject: CN=68f3cb75-2194
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:cc:f6:fd:fa:ac:6d:d7:0c:7a:73:d6:9d:d9:
                    1d:36:e1:ac:76:0e:c8:99:06:6e:01:9d:50:ce:c4:
                    5e:a2:4e:14:a8:37:c9:56:0f:ae:b3:11:80:b6:f0:
                    e2:0f:4e:04:c2:bc:a6:0f:f1:ce:b6:3b:6f:dc:77:
                    2c:58:87:13:dd:84:11:ec:53:87:dc:ec:14:a1:be:
                    2f:55:3d:e6:b3:47:15:bf:7f:7a:0b:03:c1:e3:6d:
                    9a:5f:88:39:ca:5f:2d:e9:f2:18:99:24:fe:93:3d:
                    22:a0:e9:f9:9b:ae:b2:ff:e8:9f:e2:8f:9e:fd:75:
                    44:01:1b:a6:c8:d7:81:41:ed:74:db:3a:fa:6d:66:
                    8a:ef:b6:80:23:5b:39:74:5e:ee:d6:15:7e:93:8c:
                    eb:af:b1:48:15:7d:82:1c:3f:59:22:97:60:a6:53:
                    ad:3d:ad:ee:86:f7:81:da:73:24:cf:ac:db:2f:48:
                    ad:24:91:10:c4:c5:30:23:42:77:70:b8:2e:35:97:
                    44:7a:46:55:f1:c5:94:01:68:a1:e9:71:2b:db:22:
                    00:b9:c5:65:04:6e:02:62:8d:82:05:b3:3b:58:77:
                    20:da:87:90:28:18:d1:86:eb:bf:62:f7:ff:88:bb:
                    64:6f:6d:19:40:45:eb:16:a8:cc:77:b4:b8:30:6c:
                    8a:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:7F:88:1F:D0:76:7E:CB:3E:21:69:3A:F4:C4:CE:6E:BF:C6:CC:06
            X509v3 Authority Key Identifier:
                keyid:B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:34:7d:32:e2:19:0d:ea:d6:05:e1:97:5c:e9:18:64:d0:88:
         24:82:0b:c7:9a:1a:d1:13:ed:95:de:86:57:01:95:c7:17:22:
         2e:ae:b9:7e:df:c0:7c:f7:83:c3:37:be:18:d1:92:19:b8:ab:
         18:85:d2:93:72:ac:50:33:50:cd:23:28:06:66:f6:86:d4:34:
         cc:4f:da:ae:1f:11:e7:c8:8f:73:35:a2:02:45:25:24:17:f6:
         d0:c3:42:80:09:f1:16:a9:a1:97:0c:9d:1d:db:56:56:f5:85:
         79:f8:27:63:ae:0d:f3:b8:74:18:dd:2a:56:85:2a:92:b6:bf:
         60:0d:aa:87:01:db:a9:fe:58:eb:6d:c9:c7:de:88:d8:b8:7d:
         a5:a9:3f:10:21:fb:69:e8:f7:de:96:97:cc:e5:4f:6c:32:2c:
         39:e3:49:aa:bc:20:74:da:5c:d2:13:8b:7e:15:73:3b:d7:f5:
         ec:6b:2e:ec:35:41:5e:55:cd:89:77:24:ef:fa:d7:cf:d8:8d:
         fa:23:ae:64:4b:41:f3:c3:06:1d:a1:65:71:66:f1:f5:9d:59:
         dc:d4:d8:49:2e:1d:1b:c8:63:a6:7c:20:6b:09:2e:9c:0e:2a:
         11:de:01:e6:17:2e:a3:a9:24:c2:07:04:b6:e9:31:c6:42:a3:
         1b:43:85:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 07:58:35 2025 by rpki-client