Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft
File:                     b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json)
Hash identifier:          KToxavBSLNSAHRBobqJOEeuTgODGHTrDppJRIdK16Ag=
Subject key identifier:   75:E0:62:74:A1:18:8B:E6:E8:29:FE:0B:20:BC:53:05:5F:07:68:1F
Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64
Certificate issuer:       /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764
Certificate serial:       DA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft
Manifest number:          D8
Signing time:             Sun 19 Oct 2025 08:39:57 +0000
Manifest this update:     Sun 19 Oct 2025 08:39:57 +0000
Manifest next update:     Sun 26 Oct 2025 08:39:57 +0000
Files and hashes:         1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: 6mRgBFuo3ZEqCHn6+WMUkYjypFuQ3/MP8CMu5bsvL28=)
                          2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: blrLiUR2o+nqfH3V7oxiwVZEehZHbPAqakKDEvu+zf4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl
                          rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 08:39:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 218 (0xda)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9173CCA, serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764
        Validity
            Not Before: Oct 19 08:39:57 2025 GMT
            Not After : Oct 26 08:39:57 2025 GMT
        Subject: CN=68f4a3dd-dfea
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:d1:96:a7:8e:27:47:f4:0e:3c:98:ef:b5:42:
                    3c:f5:9b:1a:87:ed:38:aa:a3:1f:37:b7:6f:dc:74:
                    8c:a3:fd:3b:00:09:7c:b8:8e:bd:de:17:d8:01:e9:
                    92:27:7f:87:76:c7:0a:31:3c:f6:0d:34:f1:c5:47:
                    2a:e7:aa:8e:c5:23:e4:67:33:0e:c8:a1:79:bf:c4:
                    c0:45:a4:7a:8c:a4:d7:a2:1b:0f:71:9d:44:87:4e:
                    b5:16:67:99:df:b5:53:93:49:1b:94:7d:78:20:02:
                    6c:ad:80:6c:c5:03:b3:47:71:f7:3b:99:69:14:de:
                    ac:35:0e:9c:4b:1e:11:35:5c:4f:96:c1:13:44:ba:
                    d9:8e:59:b9:a4:18:52:89:3a:1d:e9:98:cf:34:ba:
                    15:29:e5:23:70:35:b3:ca:eb:95:f7:8f:9e:78:ca:
                    f3:c7:73:57:18:0e:a0:b2:c6:ae:a2:b1:e3:8d:78:
                    3d:81:be:42:67:64:be:be:d1:bd:1e:09:89:58:14:
                    79:05:db:2d:a5:e6:73:db:a4:5f:9c:84:bd:b0:2c:
                    63:df:b7:aa:f6:02:f8:74:33:a1:d9:6b:89:ee:7b:
                    23:c3:07:93:54:a1:7f:1b:a8:37:dd:64:97:97:d1:
                    c0:81:96:fa:4a:52:37:a8:de:c2:2a:55:17:90:b9:
                    de:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:E0:62:74:A1:18:8B:E6:E8:29:FE:0B:20:BC:53:05:5F:07:68:1F
            X509v3 Authority Key Identifier:
                keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         98:a8:03:03:1c:a4:ab:99:32:5f:f4:85:1b:15:13:90:89:39:
         e5:ba:5b:4a:c9:f3:bd:35:f7:4e:9c:8a:3f:c1:7a:bf:d5:1f:
         3e:a2:4b:1a:05:f9:e4:a1:2d:9d:1e:97:c7:6d:07:1f:17:d9:
         32:7e:1a:dd:df:75:1d:c0:0e:69:3d:b4:4b:11:ae:ef:3b:00:
         f1:dc:8c:b1:49:34:50:fc:97:c2:36:0f:ab:ec:e5:13:a4:10:
         a2:4c:2a:ec:68:f4:ac:4f:33:2d:85:fb:96:68:bc:33:6d:29:
         f1:4f:2c:af:3d:66:af:65:7e:e7:1d:ec:95:0c:c3:9d:87:01:
         fc:3f:86:0b:08:9b:b1:f1:b0:34:eb:64:19:c0:43:69:75:7a:
         25:87:00:51:6c:48:2d:04:16:af:02:90:9b:2b:cd:76:57:67:
         1f:d1:a0:7b:fd:6d:50:9d:04:1e:af:3c:95:f7:41:fb:7b:dd:
         66:22:a1:0e:54:f6:fb:88:39:56:fe:8a:26:a0:31:c6:c8:29:
         15:3c:79:1a:ef:5e:aa:58:a2:a6:e2:6a:39:b2:cc:1b:be:85:
         5d:63:01:44:5b:66:58:b3:7e:68:3a:25:61:8a:6b:f9:e0:dc:
         78:d6:ce:2a:42:fa:ee:9e:27:7e:75:ef:31:1f:d9:81:bd:de:
         81:a5:8e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:43:58 2025 by rpki-client