Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft
File:                     MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft (raw, json)
Hash identifier:          eGwb7/D6nKaleTMkfFr3yiLoQWKMZeQJvJBio8fyTZU=
Subject key identifier:   D3:42:CE:C8:D4:A7:EC:61:22:DD:35:28:7C:14:21:98:B0:E7:10:90
Authority key identifier: 32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69
Certificate issuer:       /CN=A9172B41/serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369
Certificate serial:       04B8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft
Manifest number:          04B2
Signing time:             Sun 19 Oct 2025 01:44:03 +0000
Manifest this update:     Sun 19 Oct 2025 01:44:03 +0000
Manifest next update:     Sun 26 Oct 2025 01:44:03 +0000
Files and hashes:         1: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl (hash: vD1py6yivVejO52649/n0ffoXlbEFmX1E8JWvrO8v4A=)
                          2: 5C7731E64B7111EC8E9FCB48C4F9AE02.roa (hash: VtnOs46KlpQVSJ9THDVnSS8EzLS3A9xUSm3n/4RNrWA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl
                          rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 01:44:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1208 (0x4b8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9172B41, serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369
        Validity
            Not Before: Oct 19 01:44:03 2025 GMT
            Not After : Oct 26 01:44:03 2025 GMT
        Subject: CN=68f44263-16c5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:8a:07:60:2d:df:03:ee:60:c2:c6:77:5f:c1:
                    1a:26:d1:d2:84:33:e7:c3:e6:81:10:e0:fc:5e:20:
                    01:73:5e:0f:20:10:42:3c:ba:23:34:f7:73:75:2d:
                    85:b8:90:b9:72:d2:94:07:68:87:7a:d4:36:b7:d4:
                    32:5a:c9:7e:22:2c:d9:94:25:95:cb:08:0d:81:df:
                    05:3b:2b:af:e5:85:f3:fc:9b:02:d0:a4:44:fb:fb:
                    a4:6a:a7:e9:29:44:5d:a7:96:30:00:bd:a1:dd:5a:
                    20:0c:a4:34:d8:fe:4c:12:8b:d2:ef:9c:45:bb:3d:
                    0a:00:86:4d:a7:14:13:17:fb:aa:d9:08:48:eb:c6:
                    73:52:2b:94:a8:c4:58:bb:f8:0d:89:00:d3:b9:48:
                    5b:ff:ec:ef:98:95:98:e8:b9:7f:ba:0a:be:7f:7d:
                    d2:16:be:73:b3:d1:f2:ed:a0:12:d1:20:cc:72:58:
                    ba:18:c7:46:50:80:90:fa:b1:e8:fc:41:5d:3d:b4:
                    d8:99:e9:7b:47:17:ba:aa:e0:62:dc:90:76:02:b0:
                    b2:0f:65:cb:b6:6f:4b:d1:39:23:f6:01:ed:bb:d6:
                    d9:54:8d:27:7a:25:a2:5c:3d:c0:9b:77:e0:13:5c:
                    ae:6a:ae:6e:ac:8b:13:a5:71:fd:ab:81:47:9a:a6:
                    a5:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:42:CE:C8:D4:A7:EC:61:22:DD:35:28:7C:14:21:98:B0:E7:10:90
            X509v3 Authority Key Identifier:
                keyid:32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:95:61:4f:07:44:36:68:a2:a8:16:8d:8a:04:6a:40:28:e5:
         9b:c2:0d:d9:b3:c0:fe:14:13:63:7d:d7:b2:a8:99:3c:ce:34:
         9b:9a:67:0a:c7:8e:2e:c8:72:51:17:52:97:47:e7:90:a4:57:
         4f:af:29:8c:27:bc:1f:56:d1:db:47:79:d9:fb:35:c3:ae:41:
         04:87:1f:fe:e7:6c:a6:0c:50:99:10:e6:55:cf:b5:d5:5f:ce:
         b3:a2:af:78:04:7c:77:ca:b2:e1:d6:af:94:ff:da:55:b9:61:
         1c:9d:e4:02:97:b2:f9:ed:2e:d0:a3:b9:27:93:4e:00:fd:23:
         cb:04:d5:f6:82:a1:6c:5a:67:80:8e:b2:20:eb:f1:91:b9:f8:
         8b:ed:90:59:f9:62:50:c7:30:67:9d:69:9e:70:2c:78:c2:cb:
         e2:c0:8c:52:fa:4a:fd:dd:cf:bb:5d:b3:9d:a8:cb:6f:15:7b:
         09:1b:5a:d6:1f:1c:1b:46:fa:2a:5d:1c:25:0a:03:86:d3:bd:
         df:6c:5f:c1:41:f5:5a:37:8b:c7:f5:b5:a9:f1:cd:49:cd:89:
         34:11:a7:dc:4e:68:da:2c:9f:70:d4:66:6f:82:a5:3d:e2:10:
         cc:6f:81:e9:a8:c2:59:2a:c9:9f:b7:0d:23:13:63:06:64:11:
         ff:d0:9a:5e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzJCNDExMTAvBgNVBAUTKDMyRTBGNzAwRTM4NzI0NTFBMUE4MzJDRDdEREU0MTc1
QkZCQTgzNjkwHhcNMjUxMDE5MDE0NDAzWhcNMjUxMDI2MDE0NDAzWjAYMRYwFAYD
VQQDEw02OGY0NDI2My0xNmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsIoHYC3fA+5gwsZ3X8EaJtHShDPnw+aBEOD8XiABc14PIBBCPLojNPdzdS2F
uJC5ctKUB2iHetQ2t9QyWsl+IizZlCWVywgNgd8FOyuv5YXz/JsC0KRE+/ukaqfp
KURdp5YwAL2h3VogDKQ02P5MEovS75xFuz0KAIZNpxQTF/uq2QhI68ZzUiuUqMRY
u/gNiQDTuUhb/+zvmJWY6Ll/ugq+f33SFr5zs9Hy7aAS0SDMcli6GMdGUICQ+rHo
/EFdPbTYmel7Rxe6quBi3JB2ArCyD2XLtm9L0Tkj9gHtu9bZVI0neiWiXD3Am3fg
E1yuaq5urIsTpXH9q4FHmqaluQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNNCzsjU
p+xhIt01KHwUIZiw5xCQMB8GA1UdIwQYMBaAFDLg9wDjhyRRoagyzX3eQXW/uoNp
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0MS8xNkMwQTcxNjRC
NkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpGR2hxRExOZmQ1QmRiLTZn
MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL011RDNBT09ISkZHaHFETE5mZDVCZGItNmcyay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
MkI0MS8xNkMwQTcxNjRCNkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpG
R2hxRExOZmQ1QmRiLTZnMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQANlWFPB0Q2aKKoFo2KBGpAKOWbwg3Zs8D+FBNjfdeyqJk8zjSbmmcK
x44uyHJRF1KXR+eQpFdPrymMJ7wfVtHbR3nZ+zXDrkEEhx/+52ymDFCZEOZVz7XV
X86zoq94BHx3yrLh1q+U/9pVuWEcneQCl7L57S7Qo7knk04A/SPLBNX2gqFsWmeA
jrIg6/GRufiL7ZBZ+WJQxzBnnWmecCx4wsviwIxS+kr93c+7XbOdqMtvFXsJG1rW
HxwbRvoqXRwlCgOG073fbF/BQfVaN4vH9bWp8c1JzYk0EafcTmjaLJ9w1GZvgqU9
4hDMb4HpqMJZKsmftw0jE2MGZBH/0Jpe
-----END CERTIFICATE-----
Generated at Mon Oct 20 19:35:26 2025 by rpki-client