Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft
File:                     o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json)
Hash identifier:          H6makc8hwpGpri6EGAar7qIGSVcLcIS/radhRvfcYUI=
Subject key identifier:   DB:7E:24:D5:A0:25:33:3D:44:DB:3D:4A:91:9D:68:38:F8:48:F6:F7
Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC
Certificate issuer:       /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC
Certificate serial:       0600
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft
Manifest number:          05F5
Signing time:             Sun 19 Oct 2025 00:34:18 +0000
Manifest this update:     Sun 19 Oct 2025 00:34:18 +0000
Manifest next update:     Sun 26 Oct 2025 00:34:18 +0000
Files and hashes:         1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: du+AiJEzLHKoJHjdMzY2UmhSxnoORlPIHD/FK8inbm4=)
                          2: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: Ews4xG+BhGr1YKU7wFoc4NdQF1qugSkJAZpv3+K1VQA=)
                          3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: ixAKLgsVNfo1Pz8i7g4aRb3j68KYgsQlay7em4iJOQg=)
                          4: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: pKLk6OfJnvru45xZOE/FJIK5VrkZPKYSrNqrwCtPYN4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl
                          rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 00:34:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1536 (0x600)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC
        Validity
            Not Before: Oct 19 00:34:18 2025 GMT
            Not After : Oct 26 00:34:18 2025 GMT
        Subject: CN=68f4320a-5e2c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:c6:37:b4:2a:37:1d:5b:9b:95:32:54:2d:55:
                    7c:d1:06:72:29:93:02:4e:ef:a5:f4:f0:ea:61:b3:
                    2d:bb:10:6c:12:72:3b:95:c7:f1:49:df:3b:cb:a6:
                    e5:11:70:e9:dc:a7:02:82:fd:22:e1:1c:fe:7c:56:
                    a0:91:cb:78:2e:07:30:26:0b:44:1b:16:50:30:c0:
                    c3:f3:58:21:4d:f0:83:a7:d6:03:19:b9:64:50:78:
                    0c:f1:72:a1:09:64:33:a4:7a:bb:68:ab:9e:6d:14:
                    13:89:d8:3f:41:c2:74:c9:2f:6a:3d:c7:90:29:53:
                    c7:90:b5:d7:cc:ed:a8:2b:79:d0:1a:ac:4b:39:2e:
                    3d:b3:88:67:5f:76:ad:9c:d6:a7:aa:3d:09:97:52:
                    1b:0e:bb:e9:30:c1:2a:cc:5b:d3:5f:50:23:ff:22:
                    90:20:f0:00:48:ae:89:a6:f1:ce:24:e5:a3:bc:a4:
                    33:20:29:59:80:8c:d1:c5:fe:1e:c1:ac:38:69:12:
                    93:55:24:bd:71:cd:60:48:dc:e2:58:ea:86:8a:ad:
                    4e:af:8c:5d:3e:a0:c5:67:40:06:97:6c:53:e8:32:
                    04:f8:cd:d4:2e:2d:53:e5:b9:ab:fb:89:4d:64:cf:
                    a6:ac:b4:c1:02:4a:ca:4c:59:75:83:f8:43:8d:43:
                    7b:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:7E:24:D5:A0:25:33:3D:44:DB:3D:4A:91:9D:68:38:F8:48:F6:F7
            X509v3 Authority Key Identifier:
                keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:4a:a8:0b:ab:48:ee:43:e3:ca:0f:56:80:c9:67:7d:3c:f2:
         88:3d:dc:ec:4a:b9:21:29:e4:bf:96:ba:fe:4f:03:1c:81:8e:
         21:a1:7d:04:8b:1c:d3:75:de:43:ac:c3:a1:a2:9e:97:b3:02:
         9b:5b:49:71:04:0a:4d:b5:bb:71:85:2c:02:83:d2:c5:cd:3f:
         9e:d5:a5:6c:ce:28:55:a8:88:2b:83:37:29:cd:55:27:f8:74:
         1c:ff:60:9e:f2:cf:52:cd:d5:5b:d6:56:c8:17:81:dc:b0:0f:
         89:39:87:a6:cf:62:39:61:cc:9b:09:be:fd:2b:0d:d7:73:36:
         b0:f5:fb:f5:36:c8:ea:cf:e8:52:5b:1f:f1:66:a5:1f:2a:6b:
         50:bc:a3:60:0d:8d:02:44:4f:6a:32:7c:4a:ef:19:be:28:8f:
         f4:3d:64:e8:54:93:96:8a:a3:96:a9:bf:a5:80:c6:3c:bf:51:
         0e:ab:54:01:6d:ec:f8:35:1f:43:b8:2a:d8:8f:05:f2:10:11:
         17:78:df:84:99:9f:7a:93:49:92:0c:16:72:bd:39:b0:4f:09:
         67:3d:10:c0:33:48:f6:25:6c:73:67:05:52:fd:d4:79:e8:ce:
         37:cd:96:9a:0d:0a:61:29:4b:0f:bc:0e:d6:eb:0b:06:62:d9:
         4b:7a:ea:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 04:53:27 2025 by rpki-client