Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft
File:                     rGOF7VY-H9amaz5LUQ3MaTDNSww.mft (raw, json)
Hash identifier:          QAgg92PQFdX8GF/rPonBWAgUJtbN2gFf7KkGjWDyuDE=
Subject key identifier:   81:0E:67:6A:7C:B4:3E:E8:5D:CC:CF:8E:AA:70:57:E0:80:60:35:50
Authority key identifier: AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C
Certificate issuer:       /CN=A9160D0A/serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C
Certificate serial:       0204
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft
Manifest number:          01EB
Signing time:             Sun 19 Oct 2025 05:08:37 +0000
Manifest this update:     Sun 19 Oct 2025 05:08:37 +0000
Manifest next update:     Sun 26 Oct 2025 05:08:37 +0000
Files and hashes:         1: rGOF7VY-H9amaz5LUQ3MaTDNSww.crl (hash: vXrOoF/jvmCChwcbom8j6pKW89QTY+k88vEmPoyzXxk=)
                          2: 096A1DB6D2BA11ED8E06CC13C4F9AE02.roa (hash: BWLI/lFMOk0gs1uM9uMc8V3aTl6ezInYU2HutDGOR1Y=)
                          3: D1EAA18CD2BC11ED9E7A9A1BC4F9AE02.roa (hash: WszDeDtt2pA1qPuCttmdMd6CqUvx9wc+SucMvuhAFvE=)
                          4: 42EC5F02D2B711EDAF6DC017C4F9AE02.roa (hash: KfEf5+IVw2cc5iVIvA+8UOcszxul9bOLbJUOX0WGbIk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl
                          rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 05:08:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 516 (0x204)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9160D0A, serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C
        Validity
            Not Before: Oct 19 05:08:37 2025 GMT
            Not After : Oct 26 05:08:37 2025 GMT
        Subject: CN=68f47255-db40
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:23:e5:55:bd:60:07:b9:b2:48:42:da:1e:c0:
                    b8:a4:b5:05:db:6e:4e:83:1b:67:ed:45:3e:30:a3:
                    9e:ee:86:d0:30:85:9a:5f:62:8a:5f:01:e0:b6:06:
                    02:fe:30:81:2e:2e:46:cf:10:71:df:ba:99:e6:d7:
                    49:82:3e:68:5d:b5:e9:9e:b3:5c:7b:b4:a3:cd:01:
                    0f:4d:a8:0b:b5:4f:a7:e1:83:d7:1e:42:c4:b0:7b:
                    60:d0:ef:aa:fd:7b:bc:72:a0:e4:b2:a5:84:18:47:
                    d0:3e:a3:7a:2d:6f:18:88:5a:1d:85:34:50:c9:7d:
                    62:29:ca:ac:f6:ca:89:3d:e6:ed:ba:d3:58:8e:b1:
                    c8:d3:c8:9f:bd:f0:79:56:ff:0e:88:f6:90:c4:e1:
                    d6:30:b1:7c:32:f3:7f:67:dc:70:7d:8f:71:84:75:
                    4f:fe:e0:74:35:3d:34:7d:d3:c2:26:6b:d1:e5:4a:
                    c9:15:d9:13:cd:7b:8f:41:43:19:52:87:ad:98:5d:
                    6e:16:58:3b:2f:09:c7:7d:cd:b6:62:b5:b0:83:47:
                    e0:ce:51:3f:e6:62:ad:72:6d:08:c3:16:b9:4f:cb:
                    76:14:8c:6a:c1:57:18:81:28:37:c7:a8:ff:bd:2c:
                    66:90:8d:3a:24:ae:6d:76:17:1d:2b:0f:70:d3:12:
                    4d:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:0E:67:6A:7C:B4:3E:E8:5D:CC:CF:8E:AA:70:57:E0:80:60:35:50
            X509v3 Authority Key Identifier:
                keyid:AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:24:e8:0a:0f:7c:dd:5e:9a:de:18:d0:6d:8d:be:5c:13:9d:
         fd:65:aa:35:eb:95:d2:e3:16:0c:61:3f:6c:43:86:a7:4a:37:
         ba:04:4d:cd:68:7f:af:46:0b:f0:55:2c:ec:07:96:9d:29:fc:
         43:dc:be:a0:84:e0:13:4a:89:f0:1b:55:16:94:f7:33:ab:d9:
         29:79:8f:83:02:e0:86:fa:69:73:de:af:e4:f7:53:83:96:8a:
         62:b5:32:87:0f:8c:66:2f:e9:b6:7e:32:a9:fa:88:2d:f6:61:
         19:77:e5:b1:93:92:78:2e:86:2b:ad:14:85:73:7a:29:0a:ee:
         98:12:fb:86:ca:65:09:0a:e7:ca:ea:4f:13:76:a4:0a:9e:71:
         eb:8b:e2:49:65:d4:fb:d8:87:e2:f1:c0:65:37:cc:f1:42:51:
         fd:6c:ce:e7:4c:46:3d:47:a4:8f:f1:04:ed:9e:8c:2a:ae:61:
         b8:84:19:77:b8:da:8c:17:bf:4e:d1:7b:3b:00:99:2f:b3:d3:
         84:f0:0d:0e:6d:2a:cd:29:8d:ab:39:1b:7a:4d:ec:75:fe:54:
         b5:7f:9a:97:b2:65:24:ad:18:ef:c9:39:b1:5f:98:35:fb:b2:
         f5:94:ef:59:b5:5d:cc:37:2c:0c:a1:1d:8a:7d:93:c7:52:50:
         3d:a2:0c:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:37:17 2025 by rpki-client