Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft
File:                     a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft (raw, json)
Hash identifier:          JCcHZAPwSnh917bRYkjN/TrRfnNkLQYFkon/LIPJods=
Subject key identifier:   5F:A4:BE:42:39:80:DC:0D:10:DA:CA:06:F1:E1:36:78:86:7D:CE:28
Authority key identifier: 6B:D1:45:EC:E4:2A:E4:FD:82:AD:67:CF:D1:A4:05:9A:9E:AB:3A:6D
Certificate issuer:       /CN=A9164655/serialNumber=6BD145ECE42AE4FD82AD67CFD1A4059A9EAB3A6D
Certificate serial:       058D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft
Manifest number:          0588
Signing time:             Sun 19 Oct 2025 00:53:56 +0000
Manifest this update:     Sun 19 Oct 2025 00:53:56 +0000
Manifest next update:     Sun 26 Oct 2025 00:53:56 +0000
Files and hashes:         1: a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl (hash: D4x1nXguvx9p6Cume2VNOBLwlninKJxmDThOxyG7RVQ=)
                          2: B2CB84D4F3E211EB9512E219C4F9AE02.roa (hash: LSj0rBxO9Z29e6JUXgqXeUATalGSgm5CqWXMd5B6WOM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl
                          rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 00:53:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1421 (0x58d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9164655, serialNumber=6BD145ECE42AE4FD82AD67CFD1A4059A9EAB3A6D
        Validity
            Not Before: Oct 19 00:53:56 2025 GMT
            Not After : Oct 26 00:53:56 2025 GMT
        Subject: CN=68f436a4-1ace
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:88:ab:cc:35:dc:d0:7f:a2:f3:f9:78:34:a2:
                    9d:1a:63:1f:0f:04:1a:b4:c7:d5:19:66:86:23:7f:
                    a8:d1:6f:11:b8:22:c3:0c:0c:2a:3c:42:02:f6:e3:
                    d6:8a:66:71:eb:fe:65:a9:16:00:50:e9:dd:7d:e1:
                    d6:31:bc:10:de:e4:d2:42:bc:e1:25:c8:ae:21:a7:
                    52:31:00:12:3d:46:8c:dc:95:9a:33:9e:90:5f:52:
                    f3:9b:91:41:b6:e7:67:3c:f2:5d:56:0b:fe:8a:16:
                    00:d7:c1:f6:29:44:af:9e:79:31:45:8d:4f:5a:5f:
                    38:41:18:af:42:f9:d8:93:1f:26:32:00:80:f6:35:
                    7c:b2:ab:15:f5:da:ec:39:f8:d9:23:9c:57:91:74:
                    8e:48:f7:68:d4:ef:af:f1:76:d4:8a:65:f5:8d:c8:
                    cd:cd:b1:d1:ff:1c:1c:8c:ef:f8:c7:8c:d7:7a:46:
                    83:fa:e7:63:a2:b3:fd:b2:2d:92:51:0a:86:aa:d7:
                    7b:60:17:46:f8:dd:15:1a:c0:73:04:f3:0c:0c:a0:
                    c6:58:e1:dc:32:28:a3:e0:f9:1a:35:19:4e:c0:38:
                    1c:0b:88:ee:6a:3e:04:58:d0:f4:8a:af:19:ca:12:
                    77:a6:19:83:4e:64:af:99:e0:a6:bc:5d:9b:58:08:
                    19:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:A4:BE:42:39:80:DC:0D:10:DA:CA:06:F1:E1:36:78:86:7D:CE:28
            X509v3 Authority Key Identifier:
                keyid:6B:D1:45:EC:E4:2A:E4:FD:82:AD:67:CF:D1:A4:05:9A:9E:AB:3A:6D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:71:ac:68:7b:81:de:50:be:1e:95:00:e9:23:b5:2a:5b:c5:
         3c:70:ea:fb:df:d0:90:67:b2:51:0a:73:86:62:d8:b4:c8:5f:
         6d:1e:55:f2:b2:fe:e2:f9:3b:4b:34:fa:ff:03:fc:ba:ac:34:
         bb:09:76:40:38:80:59:fc:0e:be:ab:44:0b:70:81:d9:ad:90:
         01:7b:53:8c:f2:9b:9d:7b:1c:ef:97:cf:03:e5:92:fa:83:4e:
         68:26:ad:17:de:01:f4:be:18:ac:26:a3:d8:1a:db:6c:f2:62:
         b6:3a:b0:af:fb:a4:05:d2:f0:98:b1:b8:0c:74:bc:98:f1:ca:
         3e:f7:50:63:25:86:34:55:28:f0:f6:b1:1f:27:ab:fd:ae:43:
         6a:f6:cb:1f:de:19:c9:f5:32:ed:ba:c1:66:af:6d:09:dd:f6:
         25:b5:e2:4e:f4:44:e4:e3:fd:7b:f7:6d:a4:44:ea:cd:2b:e8:
         cc:fc:a2:42:a9:3e:b7:0a:83:0f:8e:e4:96:51:9d:25:ba:a3:
         b9:ac:fc:bc:8b:b5:e2:97:eb:3c:c7:9a:c1:65:e4:a6:e6:e0:
         2c:84:a4:26:be:a9:8f:75:07:89:84:e0:36:a7:59:c6:85:96:
         57:a4:f0:38:c2:7a:2f:6f:dc:00:3f:7e:31:6b:de:ff:29:b1:
         8f:84:98:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 07:59:16 2025 by rpki-client