Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft
File:                     3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json)
Hash identifier:          R/yX9l1f5OsdR15DcHRMir0ieR3z6/ZDEp+06Gfhnk8=
Subject key identifier:   AB:38:92:7E:F7:38:BA:6C:52:23:41:5B:D2:93:50:26:E5:03:77:95
Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F
Certificate issuer:       /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F
Certificate serial:       62
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft
Manifest number:          5D
Signing time:             Sun 19 Oct 2025 10:33:15 +0000
Manifest this update:     Sun 19 Oct 2025 10:33:15 +0000
Manifest next update:     Sun 26 Oct 2025 10:33:15 +0000
Files and hashes:         1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: 3CddpTYek4RkQw55zEtOchlU6/CSfNuYulZhLxdpvGA=)
                          2: 4EFDF38A967011F0B0AB8765C4F9AE02.roa (hash: Oq4mEMZ7D64o5eA9eSKluYrtkP+uWt5I4dDTD5h28z0=)
                          3: 7434E1F4967011F0A5651266C4F9AE02.roa (hash: TKYCIXjYDfxKBYRDIucVJqM6YAGNqcFrboZxfDC0WWc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl
                          rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 10:33:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 98 (0x62)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F
        Validity
            Not Before: Oct 19 10:33:15 2025 GMT
            Not After : Oct 26 10:33:15 2025 GMT
        Subject: CN=68f4be6b-a351
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:58:5f:17:be:c6:8e:c4:5c:da:61:14:a8:e2:
                    7f:c9:5a:7f:70:01:91:6a:42:56:87:d7:17:24:30:
                    f4:73:45:92:b6:58:b4:03:23:e6:b1:b7:20:98:7b:
                    ec:9a:ef:c5:4b:c0:85:f0:24:9d:7c:bf:29:b5:82:
                    2e:c3:2e:74:da:36:f6:67:04:a6:57:83:03:00:9a:
                    bb:70:f1:bb:40:34:ee:04:fc:a0:b7:ff:5e:18:0b:
                    a0:ab:1f:f4:a1:63:20:95:c9:20:23:4a:7a:51:e3:
                    04:2d:e2:2e:33:0b:e4:8b:c6:66:a1:38:bf:4f:41:
                    a0:de:08:29:0b:1b:74:eb:18:30:c3:12:aa:0e:f5:
                    c0:6a:13:47:38:82:4c:dc:96:99:1c:38:9b:15:2a:
                    eb:08:4f:9b:08:82:a5:d8:2e:4e:40:d5:06:78:fc:
                    9b:c9:ea:58:79:ef:6d:41:d3:b6:83:13:74:aa:7d:
                    d4:81:af:70:1a:bb:b6:39:41:26:f7:0b:ae:e0:ad:
                    bf:03:f0:81:78:a5:ec:85:74:a8:eb:9f:73:49:00:
                    2d:6e:49:64:88:d9:00:32:9c:2a:03:09:6b:37:08:
                    94:93:7d:5d:2d:ec:ce:75:fc:b5:ec:0a:c4:3e:8b:
                    89:c5:ba:d9:de:b9:06:56:17:b5:71:9e:cd:bd:90:
                    ed:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:38:92:7E:F7:38:BA:6C:52:23:41:5B:D2:93:50:26:E5:03:77:95
            X509v3 Authority Key Identifier:
                keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:b8:38:6e:89:e7:3e:88:46:ec:62:e9:29:b7:13:8e:74:64:
         4a:d0:d9:38:34:b2:80:30:7f:42:9b:b5:78:f6:ce:2c:11:09:
         4d:56:ee:11:90:98:fd:ed:e1:87:0d:11:c9:68:da:89:bd:97:
         de:45:78:de:f1:9c:5c:12:4d:b1:d1:a8:31:ae:ca:f4:68:11:
         c2:3e:9f:3b:5a:bb:91:4b:63:b9:0f:f8:83:8d:9e:82:77:8b:
         9e:e3:1f:1b:7f:4c:8c:37:95:9c:86:53:fd:a2:e7:8a:d7:bc:
         6b:2a:46:ba:da:00:ca:2c:38:11:78:f3:6f:d4:91:43:98:5c:
         a5:e9:19:7c:7b:ea:8c:e5:79:3e:61:8c:91:63:8d:aa:99:52:
         da:72:98:22:bb:5f:29:f2:6d:70:68:0f:e6:bc:43:ba:55:e3:
         b4:60:e2:ac:79:2f:dd:ec:5c:66:cb:54:82:4f:78:b0:41:25:
         10:ea:c3:f4:03:5d:a7:9f:41:1a:ce:da:2f:92:aa:42:56:89:
         b3:89:de:2f:42:68:55:73:31:64:e2:80:d1:26:a8:cc:15:75:
         fb:d7:4c:e4:92:66:f7:bb:48:2f:5c:31:2e:13:ee:3e:c4:e9:
         7d:21:56:22:26:98:79:49:40:47:72:1f:0d:13:57:77:dc:b8:
         9c:52:42:85
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1
NUVDRjExMC8GA1UEBRMoREYzMUNGMTg1MDkwRTE1NDk2NUVGRkZCQzY2NEJERDcy
MUQ4MDc1RjAeFw0yNTEwMTkxMDMzMTVaFw0yNTEwMjYxMDMzMTVaMBgxFjAUBgNV
BAMTDTY4ZjRiZTZiLWEzNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDZWF8XvsaOxFzaYRSo4n/JWn9wAZFqQlaH1xckMPRzRZK2WLQDI+axtyCYe+ya
78VLwIXwJJ18vym1gi7DLnTaNvZnBKZXgwMAmrtw8btANO4E/KC3/14YC6CrH/Sh
YyCVySAjSnpR4wQt4i4zC+SLxmahOL9PQaDeCCkLG3TrGDDDEqoO9cBqE0c4gkzc
lpkcOJsVKusIT5sIgqXYLk5A1QZ4/JvJ6lh5721B07aDE3SqfdSBr3Aau7Y5QSb3
C67grb8D8IF4peyFdKjrn3NJAC1uSWSI2QAynCoDCWs3CJSTfV0t7M51/LXsCsQ+
i4nFutneuQZWF7Vxns29kO3rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqziSfvc4
umxSI0Fb0pNQJuUDd5UwHwYDVR0jBBgwFoAU3zHPGFCQ4VSWXv/7xmS91yHYB18w
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1RUNGL0VGNkI5MDVDMjVG
NTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIx
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvM3pIUEdGQ1E0VlNXWHZfN3htUzkxeUhZQjE4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1
RUNGL0VGNkI5MDVDMjVGNTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZT
V1h2Xzd4bVM5MXlIWUIxOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAKG4OG6J5z6IRuxi6Sm3E450ZErQ2Tg0soAwf0KbtXj2ziwRCU1W7hGQ
mP3t4YcNEclo2om9l95FeN7xnFwSTbHRqDGuyvRoEcI+nztau5FLY7kP+IONnoJ3
i57jHxt/TIw3lZyGU/2i54rXvGsqRrraAMosOBF482/UkUOYXKXpGXx76ozleT5h
jJFjjaqZUtpymCK7XynybXBoD+a8Q7pV47Rg4qx5L93sXGbLVIJPeLBBJRDqw/QD
XaefQRrO2i+SqkJWibOJ3i9CaFVzMWTigNEmqMwVdfvXTOSSZve7SC9cMS4T7j7E
6X0hViImmHlJQEdyHw0TV3fcuJxSQoU=
-----END CERTIFICATE-----
Generated at Mon Oct 20 16:16:54 2025 by rpki-client