Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft
File:                     7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft (raw, json)
Hash identifier:          +7juRqxUKYSMOeWLKvFPC1upBZ4pp225F8D9EdoQEQ0=
Subject key identifier:   89:56:C4:61:79:90:49:11:4E:37:07:DE:0C:31:0C:E8:81:BB:F2:8D
Authority key identifier: EE:4B:05:61:84:37:F1:94:8D:92:99:F8:A4:F9:29:C1:87:D9:7F:33
Certificate issuer:       /CN=A9164B0A/serialNumber=EE4B05618437F1948D9299F8A4F929C187D97F33
Certificate serial:       F9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft
Manifest number:          F5
Signing time:             Sat 23 Aug 2025 05:26:22 +0000
Manifest this update:     Sat 23 Aug 2025 05:26:22 +0000
Manifest next update:     Sat 30 Aug 2025 05:26:22 +0000
Files and hashes:         1: 7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl (hash: 4hMvpfUuEXs2mW7t66YduRnBmyENR6ShTMfRU6Ye6Jg=)
                          2: 0913CC14A59911EFBA373D1BC4F9AE02.roa (hash: CwXxvQd82DMK841MpqVGbyP5fEoZfjolyFEgUa5vlRE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl
                          rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 30 Aug 2025 05:26:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 249 (0xf9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9164B0A, serialNumber=EE4B05618437F1948D9299F8A4F929C187D97F33
        Validity
            Not Before: Aug 23 05:26:22 2025 GMT
            Not After : Aug 30 05:26:22 2025 GMT
        Subject: CN=68a950fe-7fdd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f4:c9:c9:30:3a:d5:33:06:a5:3e:b6:e8:80:e2:
                    20:f5:db:e6:dd:76:b9:f3:74:40:67:41:2a:b8:65:
                    f0:f0:f1:9b:69:e8:99:f6:f9:3d:db:b0:6b:4f:39:
                    88:c4:d1:62:bf:11:58:5e:fb:bc:41:71:db:9b:ce:
                    86:9b:46:4f:6c:f9:17:a5:27:0d:45:b7:49:58:dc:
                    78:4b:47:04:6b:1e:aa:0f:5e:95:da:94:a6:a8:08:
                    ab:3f:2c:54:4e:81:63:f2:7f:85:74:b2:5a:79:ff:
                    a1:61:f7:82:49:ee:b5:00:5a:88:03:24:bf:46:0b:
                    59:7d:4b:6d:34:46:93:e9:37:3e:e4:9d:f6:a4:99:
                    ee:ae:f8:e7:35:32:3f:24:c6:ac:60:f8:59:0f:8f:
                    bf:49:53:94:4a:ad:a5:07:e6:c5:96:3e:83:af:0a:
                    f9:7f:22:41:5f:7c:a0:9c:e7:9b:50:57:6e:6d:0a:
                    17:78:77:e1:67:e7:0d:df:18:49:94:e1:1e:ce:d4:
                    dc:e9:16:d0:1b:ff:0b:6d:12:a7:b9:10:e7:85:d6:
                    a2:82:8e:4e:b0:38:57:08:4c:9d:2f:71:1e:7f:55:
                    5c:63:d5:10:92:2c:61:c8:b8:4b:bd:37:df:54:45:
                    8a:a1:aa:7b:c8:c1:71:92:22:ac:1e:9b:4d:3b:dd:
                    0b:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:56:C4:61:79:90:49:11:4E:37:07:DE:0C:31:0C:E8:81:BB:F2:8D
            X509v3 Authority Key Identifier:
                keyid:EE:4B:05:61:84:37:F1:94:8D:92:99:F8:A4:F9:29:C1:87:D9:7F:33

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:d2:59:e1:d8:b9:9c:cc:8d:7d:da:16:e8:69:39:7f:01:25:
         17:d6:42:7c:40:7d:b0:ca:a3:62:63:7d:86:16:68:8e:01:ec:
         86:bd:84:57:51:73:6f:0c:a1:d5:d2:07:bc:79:3e:ab:0c:8a:
         19:2d:4b:2e:5b:d9:7b:65:d1:01:67:c6:36:81:03:7d:f5:41:
         d2:22:97:c6:c4:0a:49:d8:65:56:fd:eb:9d:c5:0b:45:21:49:
         91:99:93:bc:c9:6e:4f:d3:e0:a9:a2:6c:f5:29:ab:9c:88:ca:
         c0:f9:73:dc:53:0b:54:6d:de:19:5f:b2:b5:f1:d1:80:6a:ea:
         a7:31:6a:4d:15:e3:5c:0b:88:8c:2c:59:c4:1e:12:96:5f:9c:
         53:30:94:9d:d9:40:d0:d5:8f:ad:45:3c:c7:1b:02:77:7c:fa:
         3c:9f:38:a6:36:25:75:e4:b2:db:c1:ba:6f:2c:42:b4:23:e8:
         11:5d:09:7d:da:a0:5b:6c:50:ac:78:04:82:1d:c9:43:e1:ac:
         9e:d3:dd:05:67:f0:fa:9a:d4:36:f3:65:ca:f5:ee:94:0a:54:
         63:f9:02:fa:c1:ff:66:4b:77:25:93:7c:97:4f:89:48:75:32:
         2d:98:e9:83:f5:87:84:0b:f7:f9:61:64:7c:8f:5a:15:34:4b:
         6b:9e:f4:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:25:38 2025 by rpki-client