Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft
File:                     ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json)
Hash identifier:          N8IhbAO0ucoqDqImYPXDmQnUkWWavSz+LxoLNIDTUsI=
Subject key identifier:   EC:71:76:6A:FA:96:BA:53:B0:36:45:5D:90:08:D1:CB:97:BB:EE:0F
Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A
Certificate issuer:       /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A
Certificate serial:       1D93
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft
Manifest number:          1D16
Signing time:             Sat 18 Oct 2025 16:29:18 +0000
Manifest this update:     Sat 18 Oct 2025 16:29:17 +0000
Manifest next update:     Sat 25 Oct 2025 16:29:17 +0000
Files and hashes:         1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: gsSjpegcYEwE4TvPth3szsErqvwu6FsSmU7l909YM1o=)
                          2: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: y+uJHyht1alI7ZPC3JmvnuhjGbEy3LzzaLiSY5fiRNU=)
                          3: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: AkhO60SNFyTg9WciYKqi3vhEF3h9kd5WtxlSK6krnU0=)
                          4: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: pnMyT26PaWSPhc4xLktPGQAXbwWHq3wiOavqQNjLHrI=)
                          5: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: AffWt9J6no4G+h1FpGfN0NTkhva8z6z11If0wdojgPY=)
                          6: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: /m1lXjaboioF2x7MUrTWDdQH9KVsmd4C/ofOTcRyOPg=)
                          7: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: nZuM2ubXC1l5NKfMUi8/1WxtFNha0sL4E6iO4pxzxgc=)
                          8: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: ETR2zwPyd2A7y4UYuOybCcuJB7a9x37gwBrY0zAjMjI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl
                          rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 16:29:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7571 (0x1d93)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A
        Validity
            Not Before: Oct 18 16:29:17 2025 GMT
            Not After : Oct 25 16:29:17 2025 GMT
        Subject: CN=68f3c05e-dd5f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:f1:0a:12:c0:e8:7c:5c:0e:34:0b:95:c0:a8:
                    ec:ef:a6:60:f3:14:96:6a:4d:5d:47:7a:04:23:61:
                    c9:d1:d6:32:4c:c8:98:c7:6b:29:96:2c:04:e4:d0:
                    11:1f:fd:e6:58:60:03:e4:35:6e:9f:29:7d:9b:25:
                    08:58:46:eb:be:22:10:a5:fc:9a:63:d3:15:91:60:
                    98:ed:41:74:6c:a1:5d:a1:06:91:e1:f1:c9:0e:03:
                    5c:0c:4f:64:9b:b0:1f:3d:b1:b6:72:08:d9:40:37:
                    70:26:88:cf:93:37:f6:26:6f:90:10:91:01:f4:f7:
                    e7:8b:06:3b:b3:44:7f:d0:30:16:c9:b0:df:10:93:
                    87:29:e3:93:58:3c:4f:45:fe:31:d0:81:fa:3f:24:
                    fc:0c:1c:e0:01:c2:45:19:84:98:4f:10:f0:19:22:
                    19:96:f4:2b:b2:6e:7c:df:b0:a3:99:e8:5e:b3:33:
                    b4:ca:56:0c:f3:54:92:86:58:a5:5c:b6:45:87:bd:
                    06:05:b8:f6:30:f3:de:5a:7f:a0:f6:d1:c6:9e:be:
                    f0:4a:97:3a:98:d2:4c:b4:af:af:d1:3b:89:98:40:
                    fa:c6:21:58:8f:dc:cd:a0:f4:f3:d6:a7:be:fa:c0:
                    d2:03:29:84:d6:4d:c2:77:78:8f:03:b4:38:48:fb:
                    29:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:71:76:6A:FA:96:BA:53:B0:36:45:5D:90:08:D1:CB:97:BB:EE:0F
            X509v3 Authority Key Identifier:
                keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:8e:91:ca:74:e1:16:7a:5b:99:bb:1c:49:2e:db:7e:fa:66:
         e9:13:60:0b:31:ae:ce:61:80:f2:be:2e:c6:98:bc:19:02:cf:
         62:04:a7:ee:a9:65:e5:2f:6b:34:a1:73:64:d9:05:72:57:73:
         14:bd:67:b7:55:99:e6:10:b8:3b:52:c6:16:01:31:62:82:d1:
         59:e3:b7:10:47:89:96:90:98:38:36:75:7f:02:06:cf:f4:be:
         b3:c2:e3:7c:47:b4:21:12:87:d2:9d:31:78:88:90:40:8b:e6:
         80:8c:df:e9:e3:85:24:ae:06:92:08:b1:92:0e:81:74:54:f9:
         c0:7b:56:62:32:9c:34:87:bc:58:45:8a:20:b8:bc:24:5b:96:
         60:fc:1a:c2:4f:59:ff:74:3d:d5:a9:5e:90:8e:18:b3:7d:92:
         6d:f0:d0:04:9b:1a:9c:96:af:31:bf:97:f4:6a:8c:7d:d7:51:
         09:70:d3:ad:3d:8e:4f:d8:e9:28:ec:fc:8e:18:68:4b:fd:a6:
         ae:87:a9:83:ed:71:ae:1f:dc:10:ab:5c:0f:e1:ac:c2:1e:db:
         54:2d:e8:c9:14:10:3c:1f:79:88:28:94:51:e1:59:22:b4:61:
         ca:b9:49:18:e6:d9:6d:66:7c:32:bc:b9:11:bc:37:24:11:36:
         c5:86:4a:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:04:18 2025 by rpki-client