Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft
File:                     PX_qy2M6a4KTI7HplE1K-Y3do3I.mft (raw, json)
Hash identifier:          YsKmqAVZZyYUVqQIG0JVkuLxty3lUnnWr64cbiMcbS4=
Subject key identifier:   D8:24:CD:E3:E2:57:86:F0:12:2F:17:99:D4:7E:E9:5E:BC:06:66:99
Authority key identifier: 3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72
Certificate issuer:       /CN=A9172BD3/serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372
Certificate serial:       0157
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft
Manifest number:          0151
Signing time:             Sun 19 Oct 2025 07:00:09 +0000
Manifest this update:     Sun 19 Oct 2025 07:00:08 +0000
Manifest next update:     Sun 26 Oct 2025 07:00:08 +0000
Files and hashes:         1: PX_qy2M6a4KTI7HplE1K-Y3do3I.crl (hash: 225MVLG6nep52+c4ZWwf+F0AwHBU1KWFAoSjV0jN9TA=)
                          2: 78321A66068D11EF92608943C4F9AE02.roa (hash: t3FRQePlchRMM21FbtXsaZzbDzSWRANgfDaLHDn0f9I=)
                          3: 97F15FD8068D11EF839A3054C4F9AE02.roa (hash: vjgahSKHgAt0pKH9ZvyBQssVmzZCnj8JvOvCUHQg/Eg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl
                          rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 07:00:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 343 (0x157)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9172BD3, serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372
        Validity
            Not Before: Oct 19 07:00:08 2025 GMT
            Not After : Oct 26 07:00:08 2025 GMT
        Subject: CN=68f48c78-2a3f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:09:ea:f4:31:ce:db:cf:ed:31:8e:d7:f8:75:
                    10:b3:3f:a2:33:87:8f:82:37:14:35:93:30:a1:65:
                    a4:ad:68:b5:8b:6a:47:85:28:df:c9:7c:f7:78:f2:
                    13:61:e6:36:1d:f9:1d:64:e2:d6:65:2d:2c:96:4d:
                    6f:57:82:6b:e3:d3:e2:b0:c1:20:95:ea:fb:d1:84:
                    ad:14:ab:b8:eb:19:ee:73:15:1f:48:33:3e:b6:30:
                    dc:d1:76:1f:d0:ab:c9:ec:fb:b7:57:68:39:a1:de:
                    ee:f3:58:f5:24:60:20:4e:d1:cd:2f:99:4d:6b:3a:
                    bf:3f:8a:05:0c:48:d1:5d:ae:18:3c:3f:b8:3a:f0:
                    40:80:d6:8b:cb:4d:e3:65:0a:10:e1:ae:cd:1f:db:
                    e1:8f:ad:15:a3:5a:1f:c0:6b:1a:2c:f1:89:aa:6e:
                    37:fd:94:a2:01:c3:f6:a2:91:9d:02:e2:cf:41:74:
                    80:e6:75:ea:ef:d5:63:7d:47:3a:17:5b:27:12:6f:
                    9d:f7:5c:c3:f0:8f:53:95:1f:be:2f:9b:66:af:d3:
                    9c:17:b3:a2:ae:53:b4:4a:4b:15:74:27:19:32:11:
                    de:35:25:d1:f5:aa:59:94:67:fb:4a:c8:6e:18:dd:
                    30:dc:db:80:6e:28:6c:e5:ec:e8:d6:6a:7d:24:0b:
                    0b:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D8:24:CD:E3:E2:57:86:F0:12:2F:17:99:D4:7E:E9:5E:BC:06:66:99
            X509v3 Authority Key Identifier:
                keyid:3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:8b:38:d2:4f:71:ea:44:c6:02:45:0e:c5:1a:eb:8f:01:5a:
         88:a1:02:bc:0c:37:c8:0f:61:64:e7:6b:7f:23:29:0a:43:09:
         27:17:e0:f8:42:0c:fe:2a:4a:0e:eb:14:30:44:e8:44:a9:b9:
         89:c3:a9:c0:75:42:c3:4e:3b:10:a9:8a:91:6e:0c:e7:15:a0:
         5f:1a:59:cb:0b:c1:31:c7:35:91:c6:c5:1e:09:87:0d:89:77:
         82:0c:34:27:bd:4d:ed:cd:cc:64:5d:3b:16:37:71:02:78:26:
         a0:41:39:8a:83:be:83:8f:b8:35:fc:48:9d:ae:e8:42:ef:07:
         76:c1:d6:5d:2f:00:14:64:9f:e0:37:21:00:3a:7d:d5:00:24:
         13:c0:86:53:5a:b3:31:b9:8e:5b:0b:8b:54:b8:e7:b4:d9:af:
         23:6b:ff:93:5f:f8:e9:9c:b0:65:b6:79:04:02:86:1e:e9:45:
         bf:8a:d0:2a:4d:dc:a8:de:57:a6:ca:fa:bb:56:f9:6e:77:b3:
         64:49:4d:07:5a:d6:87:e0:2a:99:69:0d:b3:0c:32:90:10:b5:
         5a:e5:8d:ce:67:50:b4:d1:38:f1:a8:eb:ba:c7:ae:e9:56:82:
         5e:03:23:f0:74:5c:93:c4:df:76:c9:17:d0:ed:6d:e9:97:b7:
         93:dc:58:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:01:19 2025 by rpki-client