Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft
File:                     OTVm9EF4bZWNinkRjo71b8hy5cU.mft (raw, json)
Hash identifier:          e1UXvt7KkLbGgukpGNwWl8OWKvAXuOytY9dbcXedy4Q=
Subject key identifier:   ED:8A:4F:BC:35:01:83:1C:30:CF:E2:CC:D1:1C:0E:AB:7E:1C:F9:BB
Authority key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5
Certificate issuer:       /CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5
Certificate serial:       06C7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft
Manifest number:          06B9
Signing time:             Sat 18 Oct 2025 23:37:00 +0000
Manifest this update:     Sat 18 Oct 2025 23:37:00 +0000
Manifest next update:     Sat 25 Oct 2025 23:37:00 +0000
Files and hashes:         1: OTVm9EF4bZWNinkRjo71b8hy5cU.crl (hash: mS9VSnXpgP9PdhbElTCYPoA47yoa28b+l4DUs4TXOds=)
                          2: CD1F0EC07D4D11EBAE81AF83C4F9AE02.roa (hash: Tn4IiKC/ehOcHKqem3Io6ZVpsXPRVKGONn1yIt6QObo=)
                          3: BDBFFB867D5411EB8CBE5B57C4F9AE02.roa (hash: rBuNfeeoduUd1I0NoD4IRcILjNn1S7GUQ8XAggSqgBo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl
                          rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 23:36:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1735 (0x6c7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91673ED, serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5
        Validity
            Not Before: Oct 18 23:37:00 2025 GMT
            Not After : Oct 25 23:37:00 2025 GMT
        Subject: CN=68f4249c-de5d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:b6:7f:dd:de:bc:3b:81:af:d9:df:f1:6a:e7:
                    67:0b:b7:df:e5:1c:aa:58:ff:6b:6e:02:0a:48:c6:
                    03:d0:1f:4b:86:bc:fa:fa:2a:f4:c9:87:7a:50:35:
                    8f:29:fe:b9:b0:4f:87:99:a7:94:2f:39:51:c2:32:
                    7f:98:61:99:5d:68:a5:b9:67:78:9a:ac:e3:55:5c:
                    82:da:1a:1a:f3:53:7d:11:45:ca:64:a7:94:88:f0:
                    ca:dd:3d:46:e6:19:eb:b0:d3:e9:05:fe:fc:88:4c:
                    d7:cf:87:93:d7:c4:c9:fe:a1:66:56:b3:49:8c:8f:
                    32:9e:13:10:61:da:07:e3:2f:87:3d:32:77:5a:a8:
                    37:2e:75:ce:e6:ab:12:0c:ea:7a:af:9b:01:a0:b8:
                    85:db:70:96:b4:41:9e:90:94:0d:b3:86:a0:fe:1d:
                    95:19:a5:09:ee:9c:bb:de:d2:a9:cd:f7:18:e9:8c:
                    3a:11:85:b5:93:00:44:a7:b1:62:4d:c7:85:b0:1b:
                    b4:c6:75:a4:b1:53:b5:e7:28:09:5c:c3:89:ea:9c:
                    af:1e:60:9d:75:c6:f5:77:3a:a7:22:74:88:0f:d9:
                    9f:dc:29:f1:69:71:85:25:14:ce:92:98:57:f6:60:
                    02:ae:a6:d1:f8:e5:08:0e:f3:b3:cf:2a:cd:74:15:
                    29:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:8A:4F:BC:35:01:83:1C:30:CF:E2:CC:D1:1C:0E:AB:7E:1C:F9:BB
            X509v3 Authority Key Identifier:
                keyid:39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:4a:86:01:ea:d1:d3:69:28:56:67:73:d1:77:d9:83:eb:8c:
         70:dc:ac:d0:44:44:94:54:7a:9e:1f:c8:f2:70:bc:08:37:c9:
         d7:1d:4a:c3:df:ad:a5:97:62:17:28:40:e1:70:db:1a:bd:ed:
         63:61:1f:80:be:5c:5f:45:0a:18:8f:58:db:d0:ef:f1:78:5f:
         5b:cf:7d:7d:23:0a:48:82:f3:c4:6c:5c:39:76:d2:c4:48:f8:
         7c:55:97:b7:34:56:12:5c:ff:41:1f:95:fb:72:0d:a4:95:11:
         ff:fb:a8:cc:ae:cb:92:24:16:57:09:27:47:90:32:9c:4d:db:
         c5:20:ad:4b:e5:40:a1:d6:b1:c4:af:65:81:f3:e9:52:b8:b9:
         44:e3:83:70:92:9c:93:4b:87:17:a9:a2:9d:05:68:8a:36:1c:
         40:e2:1e:1c:81:b0:93:f4:17:11:89:86:0a:0d:8a:84:7f:e1:
         25:fa:70:cd:fa:e0:02:76:70:82:13:9e:7a:fc:fb:6a:b5:56:
         c5:3f:88:93:67:67:1d:66:c0:9a:6c:46:47:51:cf:a6:f7:38:
         d5:99:93:e4:5e:33:67:a0:61:f4:e1:ca:ff:1d:1b:00:a9:63:
         0d:41:78:81:a9:e2:9f:76:b9:bd:62:36:23:93:5b:41:45:cd:
         89:be:4c:f3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkxMThFOEVGNTZG
Qzg3MkU1QzUwHhcNMjUxMDE4MjMzNzAwWhcNMjUxMDI1MjMzNzAwWjAYMRYwFAYD
VQQDEw02OGY0MjQ5Yy1kZTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzbZ/3d68O4Gv2d/xaudnC7ff5RyqWP9rbgIKSMYD0B9Lhrz6+ir0yYd6UDWP
Kf65sE+HmaeULzlRwjJ/mGGZXWiluWd4mqzjVVyC2hoa81N9EUXKZKeUiPDK3T1G
5hnrsNPpBf78iEzXz4eT18TJ/qFmVrNJjI8ynhMQYdoH4y+HPTJ3Wqg3LnXO5qsS
DOp6r5sBoLiF23CWtEGekJQNs4ag/h2VGaUJ7py73tKpzfcY6Yw6EYW1kwBEp7Fi
TceFsBu0xnWksVO15ygJXMOJ6pyvHmCddcb1dzqnInSID9mf3CnxaXGFJRTOkphX
9mACrqbR+OUIDvOzzyrNdBUpgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2KT7w1
AYMcMM/izNEcDqt+HPm7MB8GA1UdIwQYMBaAFDk1ZvRBeG2VjYp5EY6O9W/IcuXF
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzNFRC80RDhGQTIwRTdE
NDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJaV05pbmtSam83MWI4aHk1
Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09UVm05RUY0YlpXTmlua1JqbzcxYjhoeTVjVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
NzNFRC80RDhGQTIwRTdENDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJa
V05pbmtSam83MWI4aHk1Y1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAgSoYB6tHTaShWZ3PRd9mD64xw3KzQRESUVHqeH8jycLwIN8nXHUrD
362ll2IXKEDhcNsave1jYR+AvlxfRQoYj1jb0O/xeF9bz319IwpIgvPEbFw5dtLE
SPh8VZe3NFYSXP9BH5X7cg2klRH/+6jMrsuSJBZXCSdHkDKcTdvFIK1L5UCh1rHE
r2WB8+lSuLlE44NwkpyTS4cXqaKdBWiKNhxA4h4cgbCT9BcRiYYKDYqEf+El+nDN
+uACdnCCE556/PtqtVbFP4iTZ2cdZsCabEZHUc+m9zjVmZPkXjNnoGH04cr/HRsA
qWMNQXiBqeKfdrm9YjYjk1tBRc2Jvkzz
-----END CERTIFICATE-----
Generated at Mon Oct 20 07:58:48 2025 by rpki-client