Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft
File:                     Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json)
Hash identifier:          ihvx7/DMtNGfIvPdgiK6mzf57LVvdoxHwCLMehUaEo4=
Subject key identifier:   BB:CE:85:6E:EF:CE:F2:E5:A4:AF:06:7A:73:2C:43:88:8F:A8:AB:3E
Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC
Certificate issuer:       /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC
Certificate serial:       03F7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft
Manifest number:          03D3
Signing time:             Sun 19 Oct 2025 02:40:37 +0000
Manifest this update:     Sun 19 Oct 2025 02:40:37 +0000
Manifest next update:     Sun 26 Oct 2025 02:40:37 +0000
Files and hashes:         1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: k9hFmKpcU0OAuVhxAkK+dEeLSSQMF2rgZegp+jtfeOc=)
                          2: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: melteXR1cRharD5muHTsf70+edihxivjKNNQzAZNpLE=)
                          3: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: pIl/ybOSWeNJuXyu7vI+RsUvtpL0KXP/t0jEbgQtU7I=)
                          4: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: ImUvDtTwcm68idWdwXB7tEHKc5rG51UP9vCEMxdSyRc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl
                          rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 02:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1015 (0x3f7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC
        Validity
            Not Before: Oct 19 02:40:37 2025 GMT
            Not After : Oct 26 02:40:37 2025 GMT
        Subject: CN=68f44fa5-0ade
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:5c:14:49:a1:52:e3:d6:c0:47:2f:ab:fc:03:
                    4c:14:9c:01:6a:c1:6c:17:f6:65:40:64:21:68:11:
                    61:08:2c:26:17:9b:a9:df:0c:7f:22:4c:d8:ba:2b:
                    ce:2d:7b:c0:45:a6:62:89:91:20:1b:61:b7:e4:93:
                    f8:24:c1:de:86:31:6f:bd:a3:e9:78:cc:1d:4e:62:
                    fe:71:c3:1b:0a:f4:0a:2a:67:ec:8f:b1:70:80:f0:
                    06:ac:20:8d:37:a1:6c:0b:33:c5:3d:64:86:db:48:
                    52:42:ba:81:fd:e9:9a:e3:6d:c8:5b:42:86:c4:40:
                    a3:e2:ef:2a:d4:80:ac:a9:2b:28:a0:18:4e:11:83:
                    b1:de:8d:db:e3:9d:87:3f:f7:cb:51:e4:f1:0f:86:
                    32:a5:18:2d:ca:06:26:c7:5e:f0:d6:65:fe:6c:16:
                    ff:51:3f:30:cb:ce:1a:f1:9d:f3:0e:6f:58:70:7c:
                    43:08:3a:98:74:f2:7d:ba:f7:aa:48:e5:b3:bf:c0:
                    66:63:4b:20:0b:3f:82:d7:d8:c5:0b:ec:a7:9d:03:
                    4f:c7:8b:f8:50:07:34:0d:63:bb:23:66:0e:df:a3:
                    0b:de:01:88:60:2c:e0:f2:ab:78:1d:6f:54:68:d5:
                    55:df:a7:65:aa:7e:a2:db:9d:bc:e6:73:53:62:c7:
                    bb:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:CE:85:6E:EF:CE:F2:E5:A4:AF:06:7A:73:2C:43:88:8F:A8:AB:3E
            X509v3 Authority Key Identifier:
                keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2b:8b:81:b1:0d:bd:d1:a7:77:70:c7:d1:54:54:dd:c6:0f:20:
         88:14:0e:f0:ec:d7:95:1e:1d:c8:f2:60:1f:09:f7:8f:95:46:
         59:39:dc:f1:aa:d0:db:6a:46:f0:56:df:d9:de:ba:4a:a7:5a:
         d6:07:01:d0:c3:c1:90:07:6f:1c:39:9e:55:c1:da:25:36:4a:
         04:b9:d1:87:91:6c:c5:e2:3f:36:b1:04:f4:52:3d:35:4f:51:
         b0:21:f7:6f:36:05:4e:5b:ca:7f:ca:9d:c2:f7:16:29:1b:4f:
         7f:b8:11:5b:d5:3e:d3:77:75:46:18:9e:c1:0a:d8:64:9a:1a:
         cd:94:3b:24:0f:55:e6:d8:e2:b5:40:fa:74:86:1d:08:74:51:
         41:6f:e7:66:57:83:53:89:7c:83:b2:4a:b7:49:56:75:87:83:
         2d:a4:55:b5:35:c7:b3:b6:21:b3:58:a9:3d:7a:11:91:5d:a5:
         66:e5:89:a0:35:5a:85:a7:fb:c0:fd:c6:12:4a:2c:90:0d:e7:
         dc:3b:22:c3:86:84:b4:65:a0:95:de:45:72:12:41:b9:ef:b8:
         16:5c:ef:f2:40:78:c4:ab:8a:fe:81:d2:8a:dd:88:35:d3:13:
         c3:f1:6d:1a:45:8a:bc:69:ff:e4:e4:2b:71:17:2f:c5:5d:28:
         8c:1e:10:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:54:31 2025 by rpki-client