Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft
File:                     KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft (raw, json)
Hash identifier:          PSqEe45IR3Oz8lDCEN4Z0Ol6Uigzs/P4pel4kWL2ktU=
Subject key identifier:   38:41:CB:38:81:19:B0:A4:93:E5:AF:D4:70:B7:9C:48:37:74:80:68
Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F
Certificate issuer:       /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F
Certificate serial:       0202
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft
Manifest number:          01F5
Signing time:             Sun 19 Oct 2025 04:56:58 +0000
Manifest this update:     Sun 19 Oct 2025 04:56:58 +0000
Manifest next update:     Sun 26 Oct 2025 04:56:58 +0000
Files and hashes:         1: KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl (hash: 5SXCZZ9WMTp7Xm2cwrlSyz6x4/b0zecXBs7GTQ20yDs=)
                          2: 6AA5FC16905211EE840DED1DC4F9AE02.roa (hash: 7Dqx51HWm5FHrY3yqH5za3wPDKkHA22oTIJYfgHsb38=)
                          3: FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa (hash: fXQJZHONbxHqV0/XhxdMVhavc2gV0JF7ZuHG+631NZg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl
                          rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 04:56:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 514 (0x202)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9171927, serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F
        Validity
            Not Before: Oct 19 04:56:58 2025 GMT
            Not After : Oct 26 04:56:58 2025 GMT
        Subject: CN=68f46f9a-9a73
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:37:66:41:5e:fb:71:86:96:7e:77:01:3b:51:
                    91:de:37:a2:f3:e5:c7:20:c7:c6:8c:02:2b:3b:6e:
                    3d:ac:9a:af:fd:6f:f1:13:b0:d8:a2:e2:03:03:32:
                    5c:6e:95:97:c4:2d:f0:f7:4c:3b:44:d1:4a:b8:1c:
                    b6:f6:45:4c:c4:c5:85:80:19:3b:d2:17:48:08:23:
                    a9:92:cf:10:c5:ec:66:55:ef:1f:35:3f:8a:46:c8:
                    99:36:cc:6c:db:da:8c:02:74:41:aa:a2:42:96:36:
                    29:43:14:24:2d:76:15:8f:57:98:5c:eb:82:45:1f:
                    10:51:28:6c:c1:d2:a3:f6:81:cd:22:e6:4c:1b:b7:
                    88:67:5b:54:1b:87:99:15:10:22:8b:a9:bc:da:f1:
                    65:6c:fc:c9:57:73:52:2a:9d:b4:77:06:ae:21:8a:
                    c5:96:cc:52:e6:26:29:07:1c:16:36:3f:3b:49:7d:
                    5f:0b:5e:cc:77:2b:c0:df:d3:78:fb:d5:ce:31:4f:
                    24:48:a6:8a:c5:98:72:7e:d9:20:14:10:22:d0:a4:
                    66:25:b0:bf:f0:b4:3f:23:49:eb:c6:d7:c0:b9:ee:
                    7c:46:2e:6b:c1:67:18:35:aa:12:b3:1c:a7:56:c4:
                    49:59:f4:bb:26:a8:f1:86:d6:a0:81:11:a0:0a:22:
                    e1:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:41:CB:38:81:19:B0:A4:93:E5:AF:D4:70:B7:9C:48:37:74:80:68
            X509v3 Authority Key Identifier:
                keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:e7:a9:1f:bd:9e:d0:37:ef:88:31:30:86:ee:4f:30:e8:82:
         97:e5:ad:d9:22:f7:d4:de:d1:b9:39:38:61:63:13:02:84:78:
         03:29:bc:44:01:d5:9b:4a:d6:88:6c:d7:70:cd:05:7f:0a:d4:
         84:1c:e3:37:85:fc:48:92:f0:f2:4b:bd:87:45:dd:1f:6e:27:
         a1:64:65:f5:ee:1c:b7:7b:95:75:50:c4:99:49:5f:16:72:64:
         dc:7a:11:85:86:f2:fa:92:28:9b:7a:1c:ec:2a:e1:ff:62:7f:
         46:1f:6b:15:88:7e:52:46:60:de:ff:35:a3:11:a6:bf:5a:e9:
         f7:c0:1d:9b:5d:70:34:a0:3d:8c:44:51:65:fb:aa:ea:2e:06:
         cf:8b:3f:aa:60:8e:b3:eb:f9:69:7b:ed:f0:f2:fd:28:2a:8c:
         5c:04:20:50:ba:8f:b6:c1:ba:30:ad:0e:54:5f:79:50:59:56:
         df:01:85:09:2a:30:40:8b:2b:b8:01:2c:ab:1f:fc:ad:c9:5b:
         8e:f4:0d:14:28:ae:72:05:0c:61:35:ad:dd:56:08:ec:91:b3:
         4f:ab:2a:02:42:01:60:55:08:e6:7d:6c:9d:1a:61:a4:a2:4b:
         f3:85:29:43:9e:68:dd:c2:2d:4b:d8:75:fa:0c:3d:a1:eb:1b:
         17:15:66:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:09:32 2025 by rpki-client