Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft
File:                     CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft (raw, json)
Hash identifier:          ZUW1MRR3EGOyDPZ7rCmBGbxc9RpX828+VJ6imdbrJ18=
Subject key identifier:   82:5B:47:85:CD:DC:CF:27:15:80:85:E6:26:4C:3C:CE:F8:78:B5:A9
Authority key identifier: 0A:A6:E4:83:28:42:5E:12:4C:56:1C:2A:C1:87:C8:A1:96:24:71:10
Certificate issuer:       /CN=A9176E1D/serialNumber=0AA6E48328425E124C561C2AC187C8A196247110
Certificate serial:       81
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft
Manifest number:          7C
Signing time:             Sun 19 Oct 2025 10:08:16 +0000
Manifest this update:     Sun 19 Oct 2025 10:08:15 +0000
Manifest next update:     Sun 26 Oct 2025 10:08:15 +0000
Files and hashes:         1: CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl (hash: DpsWIDdJSvd2/Rs6LQB6Vy1Lx0v0ibXL/M6zm4X/opw=)
                          2: 8A5CF8F0FB7411EF83C11685C4F9AE02.roa (hash: gNUxEstcyYM8bAYzOWKSq0siVBhwvrTxTLZTCsVvFik=)
                          3: 4C9617646D0611F0BBBF9039C4F9AE02.roa (hash: Vaj7yoUJUzeUA3126kxNxsmUyuPrhpFqRcjaAWEYWYI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl
                          rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 10:08:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 129 (0x81)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9176E1D, serialNumber=0AA6E48328425E124C561C2AC187C8A196247110
        Validity
            Not Before: Oct 19 10:08:15 2025 GMT
            Not After : Oct 26 10:08:15 2025 GMT
        Subject: CN=68f4b88f-e18d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:64:60:79:0a:b1:0a:8d:74:90:d8:04:00:3b:
                    17:33:88:b9:91:f4:02:f6:0c:e6:71:ac:e8:b3:20:
                    dd:6d:75:24:a9:c3:bf:1b:c9:20:e7:44:52:ad:16:
                    46:3a:2e:8f:c6:15:fd:e7:8a:ff:ff:4b:32:b9:f7:
                    44:ba:ab:d3:2f:5b:d7:d3:60:b4:6a:b4:e0:fa:40:
                    2c:7f:06:bf:8d:53:1b:bb:58:b0:f5:87:f4:cb:57:
                    f5:56:cf:c0:f9:2d:03:68:c3:99:5f:ed:fa:b9:0a:
                    dc:40:b3:89:4b:b5:3e:0e:f7:0d:29:f0:39:d5:44:
                    69:c5:81:3c:3a:9c:da:fb:14:09:53:b9:9d:82:22:
                    22:fd:0b:b1:b6:2e:d7:62:6d:b5:04:5a:33:76:69:
                    e4:11:d2:5a:12:e9:a5:fc:c6:d1:c6:13:31:f2:4e:
                    5a:ec:77:03:a5:b9:bd:13:19:da:8e:f4:9e:c7:e4:
                    d1:2d:9e:df:63:85:0a:7c:bd:1b:e8:f6:eb:aa:37:
                    5a:8b:5f:ac:fd:8a:38:c1:b7:70:84:af:ef:d2:a7:
                    91:55:a0:6c:fa:44:07:d4:0b:0b:f8:f3:bd:0e:22:
                    e2:85:76:26:d6:5e:e9:e8:fa:e5:17:43:12:b2:8b:
                    6d:b3:75:f1:bf:7a:f0:59:a9:d3:35:6d:18:51:e8:
                    51:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                82:5B:47:85:CD:DC:CF:27:15:80:85:E6:26:4C:3C:CE:F8:78:B5:A9
            X509v3 Authority Key Identifier:
                keyid:0A:A6:E4:83:28:42:5E:12:4C:56:1C:2A:C1:87:C8:A1:96:24:71:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:fb:b9:3c:dd:f8:10:5f:5d:20:34:d6:09:85:65:49:97:48:
         f5:ea:9d:50:81:1f:0c:ad:8a:4b:fc:fe:d0:ce:5d:e7:cb:37:
         50:50:3d:72:19:7a:2e:92:c4:77:ac:3a:4a:81:e7:b4:1d:6d:
         70:7c:5b:b7:75:0a:fb:e3:59:6f:ad:e3:1e:e8:ea:be:ca:17:
         9f:bf:51:a4:26:35:8b:cc:db:c9:37:29:65:eb:a7:b4:87:5c:
         ce:c8:8b:53:f0:10:4d:b1:e8:a5:37:57:19:98:32:c9:b9:2b:
         ac:56:42:1c:77:a9:d1:5c:01:fc:99:83:d9:75:c2:d0:b2:33:
         0b:2a:eb:88:51:cd:76:ed:22:3f:82:18:0e:cb:07:af:fc:5b:
         6c:bb:b2:15:78:02:72:26:17:cb:f7:57:63:d0:14:fe:38:22:
         ed:15:6e:35:2c:1e:98:1a:62:a3:4e:50:75:df:99:4b:7c:f9:
         d5:64:2b:32:f0:d6:7b:03:7a:4f:60:7a:67:fa:23:36:b9:5f:
         fd:ef:6b:c3:7b:ae:7f:65:d5:04:22:9b:0e:44:e4:50:c0:db:
         67:c0:e8:f5:62:08:8f:6f:d9:23:e7:37:12:91:a3:2d:68:a2:
         ca:8f:e9:74:05:22:db:62:93:b9:12:4f:8d:92:97:7a:6f:b1:
         34:66:5b:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:11:16 2025 by rpki-client