Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft
File:                     ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json)
Hash identifier:          7QL/PKDhvx1zeJG7ggWTaLhol9sNAWNN44zJ+DbjRKo=
Subject key identifier:   F1:46:2B:6D:5F:6B:10:32:90:AA:43:CE:1E:50:7F:32:A8:60:69:3D
Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD
Certificate issuer:       /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD
Certificate serial:       0824
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft
Manifest number:          0812
Signing time:             Sat 18 Oct 2025 22:07:21 +0000
Manifest this update:     Sat 18 Oct 2025 22:07:20 +0000
Manifest next update:     Sat 25 Oct 2025 22:07:20 +0000
Files and hashes:         1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: hnDSA7SJ1igjXBBjHYArzVQ+H6kwRlqy9hiCjh1WgTw=)
                          2: 816A256CF57311EA86849119C4F9AE02.roa (hash: jh/uFXEIZPMO8B1QG/kheiWEegpd+33S7ffLLKrSdB0=)
                          3: 81E94F18F57311EA86849119C4F9AE02.roa (hash: d2TZXE18Xt38fADyNBS1PVNUEthCJSPtYY97KfIT80k=)
                          4: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: 5TA62bj3DT+mJ8Nio1yv4R6VCuB4DLublpXb87Ez56Y=)
                          5: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: yYe2S/r+iFZmGGM++jOhHqDjwT0Z+vvfLaaWlIwsXLY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl
                          rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 22:07:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2084 (0x824)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD
        Validity
            Not Before: Oct 18 22:07:20 2025 GMT
            Not After : Oct 25 22:07:20 2025 GMT
        Subject: CN=68f40f98-7af0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:c0:fe:05:d7:58:17:77:68:b0:7e:56:af:ad:
                    2a:d4:43:d3:23:03:e4:01:a6:4c:08:6a:6f:19:53:
                    9f:c1:43:05:10:f2:4d:45:00:62:d4:8f:fa:3d:21:
                    8d:bf:37:c2:48:f1:87:37:57:22:b1:9c:e9:ad:0d:
                    94:28:90:07:f2:c3:f4:51:11:dd:90:ad:11:a9:b0:
                    93:c8:79:90:18:e7:e2:16:e2:be:c4:32:cd:e2:86:
                    99:dd:71:cc:78:f8:c7:d7:24:06:b1:5d:df:02:35:
                    63:19:e5:02:31:e8:17:32:2f:53:0c:0d:a5:fe:0f:
                    a6:8d:97:9c:4d:64:ee:ee:8b:96:37:f4:c5:1a:0d:
                    24:11:78:d8:26:86:cc:81:e2:02:b1:ff:bd:af:2f:
                    ce:d8:1f:da:56:6a:54:79:1d:7b:71:21:a8:79:17:
                    c8:dc:96:64:82:f3:a7:03:8c:14:7d:98:62:d0:64:
                    43:80:ae:18:dc:ff:f9:87:61:56:44:26:4f:e3:0b:
                    04:7b:4e:08:01:40:1d:16:dd:86:aa:06:a0:5e:17:
                    6b:04:bf:2d:4b:07:a0:83:0d:f6:55:6b:17:82:5f:
                    da:f7:dd:9e:33:14:13:4d:42:db:cc:0d:fb:6c:2f:
                    e2:04:a7:cd:e2:82:9d:fb:17:4e:61:14:9e:e8:e2:
                    c3:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:46:2B:6D:5F:6B:10:32:90:AA:43:CE:1E:50:7F:32:A8:60:69:3D
            X509v3 Authority Key Identifier:
                keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:97:7e:30:3f:b8:25:13:d6:c7:bc:4d:69:99:62:d3:a8:5c:
         75:3e:3a:df:8a:81:0e:b6:10:ee:5d:33:7f:45:34:60:36:06:
         e7:8e:b1:a6:bd:37:e4:63:c3:1b:6f:09:f2:0a:ec:c8:c7:3b:
         01:b3:81:cb:8f:d8:8a:7d:fe:54:89:46:fa:3c:df:d7:9a:3c:
         2b:6f:2f:37:67:17:0c:05:b9:df:35:f2:5c:f4:6d:3b:fd:a7:
         88:e6:b0:df:c7:e0:99:a3:2b:3b:e1:26:9b:bf:0d:28:c3:68:
         59:21:02:fb:b4:b8:8e:7d:00:6f:dd:bd:e1:2b:e9:60:82:64:
         da:82:61:47:f3:88:2c:ba:25:35:99:72:52:e7:fe:38:aa:85:
         3b:81:2e:21:08:3c:7d:cc:b2:ad:54:73:4e:83:21:4a:5a:b1:
         94:95:60:91:95:48:41:a8:ef:73:d5:f9:64:58:50:91:7e:76:
         f4:4c:36:9a:a1:dd:f3:67:52:22:8e:f7:e8:48:74:dc:de:64:
         ab:71:11:07:39:59:e7:38:c8:99:a8:7b:0e:bd:e0:c5:b9:bd:
         be:e6:d8:ba:60:35:b9:ac:35:28:23:bf:4f:a6:f8:83:ae:2a:
         3a:d7:da:71:ee:02:bc:7e:ff:33:81:cc:3f:3b:da:fd:ea:b8:
         16:67:7a:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:15:19 2025 by rpki-client