Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft
File:                     aHvrJ3oFne_qK-3WevsbgjiOXrE.mft (raw, json)
Hash identifier:          W+zhBnR8tw3QRnNUPR/5EhzOtSoy1QpXFSf5mJovAAY=
Subject key identifier:   18:B5:B9:59:92:D1:B0:55:35:AC:26:50:9B:E6:8A:AC:2B:46:F3:F6
Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1
Certificate issuer:       /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1
Certificate serial:       0814
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft
Manifest number:          07FD
Signing time:             Sat 18 Oct 2025 22:22:58 +0000
Manifest this update:     Sat 18 Oct 2025 22:22:57 +0000
Manifest next update:     Sat 25 Oct 2025 22:22:57 +0000
Files and hashes:         1: aHvrJ3oFne_qK-3WevsbgjiOXrE.crl (hash: OQ/E0krwT34S+9Lh3xjnWI+PVB9jmTefAxLrodAr/TQ=)
                          2: D19E7784AAF811EE8D8CCD25C4F9AE02.roa (hash: +XIvNmYB/5EgcsxvZK5ch01j/uNHHViQProaEC6+kLA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl
                          rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 22:22:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2068 (0x814)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9165FAD, serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1
        Validity
            Not Before: Oct 18 22:22:57 2025 GMT
            Not After : Oct 25 22:22:57 2025 GMT
        Subject: CN=68f41341-6a55
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:13:7e:11:43:6f:34:cb:c5:97:fe:95:90:c8:
                    54:b1:ea:eb:20:a0:93:67:c1:65:62:c7:3b:4d:c7:
                    70:94:0c:8e:5c:07:a4:82:ee:a8:01:c8:6c:73:bc:
                    3b:09:2e:48:d2:fe:78:7e:61:f9:f1:5f:ae:46:83:
                    e0:2b:b2:1f:02:69:11:4d:2a:d0:1b:3c:46:85:44:
                    dd:80:67:c7:84:d6:d0:87:3d:2b:3f:85:1e:3e:ef:
                    0e:08:37:f4:16:b5:be:9a:40:3d:13:b3:6f:0b:e8:
                    8c:fa:82:59:b4:a2:74:4e:d8:46:30:94:7f:f7:ab:
                    53:46:d0:c5:ae:bc:87:81:21:cf:9c:9c:c7:31:98:
                    cb:93:fe:ac:cd:bb:5d:01:ce:39:b7:4e:54:eb:dd:
                    68:bf:72:f4:c0:1c:ed:09:a0:0f:9f:a4:54:d6:c1:
                    de:2c:ca:d3:84:ab:d6:2f:06:7a:00:4e:ad:bc:5f:
                    22:00:67:23:2f:f0:f2:63:14:86:67:ff:54:af:95:
                    f5:96:fe:a3:0e:9e:c1:a7:79:ec:8d:41:cb:a8:89:
                    f5:49:3d:cb:44:f8:53:13:eb:dd:d9:51:4f:7b:48:
                    bd:f2:a6:ab:16:f8:5b:3e:36:05:05:a1:7e:da:d9:
                    58:87:d9:2a:f3:52:78:f9:41:2d:70:40:27:1f:62:
                    26:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:B5:B9:59:92:D1:B0:55:35:AC:26:50:9B:E6:8A:AC:2B:46:F3:F6
            X509v3 Authority Key Identifier:
                keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:d9:a3:73:03:54:b4:6a:54:42:dd:fa:cf:e7:50:cb:83:06:
         06:63:90:52:4f:b5:a0:b8:d4:e1:e3:ed:1a:e0:2a:7a:67:96:
         a5:f1:d6:ef:c0:d3:37:be:c2:48:86:30:fc:b6:a4:33:59:ad:
         fa:9c:4b:12:82:0c:d4:a7:de:41:ae:58:dd:7f:e6:de:a7:23:
         92:7d:e3:eb:9a:7d:d9:ec:7a:6a:f4:21:37:31:53:d2:93:60:
         b7:74:b5:1a:ea:fa:8b:eb:20:d6:74:ca:e6:54:35:17:b9:71:
         71:9e:49:83:b5:67:27:92:5e:33:b2:d4:2c:b4:bc:ca:c0:51:
         e4:c6:55:f7:8c:de:a4:8f:a2:86:1b:64:8d:3c:18:0f:8d:e5:
         c0:19:9f:21:29:5b:af:0a:68:72:3e:e1:6d:10:31:a8:50:de:
         29:a0:ae:fa:f0:d6:da:92:9c:44:f3:1d:25:79:d4:99:7b:7b:
         3f:60:49:30:8b:8d:60:44:d9:52:8f:6c:9d:0f:5a:c9:58:67:
         57:05:f1:6f:0f:26:b5:b6:7b:3a:5e:f3:e3:c1:dc:3b:f7:d1:
         da:d1:a0:32:8c:4a:2f:14:96:21:61:d9:68:8c:5a:b2:4d:4c:
         c5:92:48:d6:af:4a:6d:75:bd:b5:ba:cd:e1:ec:8d:46:10:a3:
         3f:33:4a:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:11:21 2025 by rpki-client