Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft
File:                     kMIvc5OFDo7Pa18eMg0HstGs2P0.mft (raw, json)
Hash identifier:          9PiRVwYHthGTScT6byM+6+lujKBPeJxkpNqDtGZb81I=
Subject key identifier:   16:53:6A:D1:F0:07:5C:EC:B9:72:CB:5F:FB:F6:28:84:A4:76:84:DC
Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD
Certificate issuer:       /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD
Certificate serial:       182F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft
Manifest number:          17BE
Signing time:             Sat 18 Oct 2025 16:59:24 +0000
Manifest this update:     Sat 18 Oct 2025 16:59:23 +0000
Manifest next update:     Sat 25 Oct 2025 16:59:23 +0000
Files and hashes:         1: kMIvc5OFDo7Pa18eMg0HstGs2P0.crl (hash: iyVkAqbLjmrsBvDp0T97IS5idUoAZt6j3ueN+17n1iQ=)
                          2: E8118BFA022C11EBAC47A831C4F9AE02.roa (hash: l9PAtv4FmfKEbsr39kSblkIdk4l36jBShaU/yhiu3EA=)
                          3: 7E2725DAAC7611EAB766A74CC4F9AE02.roa (hash: pRnYMFn3MsmdKZMCcupGBS8xip66wFsc4Vhu+CVQM8s=)
                          4: DD145D6E023A11EBBDF8B35FC4F9AE02.roa (hash: Ki+ZYv+WbFodfUBA0Z9kcHIRNA0D2B2/Fqh0gMIddSg=)
                          5: A2C8B57074B711EB8491BC63C4F9AE02.roa (hash: 1XIBkz1xrsmaIEUuPCKysFF+5jDC/AbJdnY6h8iCmzA=)
                          6: B04675FC959711EA9F290A33C4F9AE02.roa (hash: hvb2MvDqDZHyf0+HzbtgqnM+oZrlIejX067xarW4vdo=)
                          7: 694CCE66E53911EF9DD1B90DC4F9AE02.roa (hash: Q50guEdFQrac2WGNIOWOMwAPEusnnVtr+0WbjS+0Iw8=)
                          8: 07EE827ADFEE11E7B0E71D1CC4F9AE02.roa (hash: 6dC3vmSVGgmkSh9nUR6cyWb5UZYgtCMEtbXtHWZQ+Ms=)
                          9: 696975861A3611EEA597E872C4F9AE02.roa (hash: oIGClTM3lHim9PRA3fKoX8EMPndg1+r8p0Zu4BUJRhA=)
                          10: 4C0C96C6022E11EBA920EA37C4F9AE02.roa (hash: K/ybxERnMroT+/HivxwCKoEx2WZjUMXQikxQf2o4Wtg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl
                          rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 16:59:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6191 (0x182f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918495F, serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD
        Validity
            Not Before: Oct 18 16:59:23 2025 GMT
            Not After : Oct 25 16:59:23 2025 GMT
        Subject: CN=68f3c76b-eef5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:d9:e0:20:26:71:77:74:02:06:f5:a2:78:1d:
                    1b:7a:05:5b:0d:f3:b3:41:39:66:f0:a7:be:27:8c:
                    ea:d2:79:9b:d0:5b:0a:a7:b8:b0:a8:7b:27:58:62:
                    6e:e4:35:28:c5:e5:44:9e:1f:e8:2d:ff:e7:c1:5c:
                    8a:9d:50:2d:3f:a8:84:98:00:d4:30:67:bf:38:89:
                    ea:58:a1:ed:9a:7a:f3:5b:13:54:10:0c:07:ad:0c:
                    33:45:55:c3:26:b7:a0:e6:ae:75:bb:69:55:cc:6c:
                    30:fc:41:87:d0:80:e9:3f:16:f3:3c:7a:8a:5c:c3:
                    15:15:7c:59:8e:c4:e8:70:16:05:f1:5a:6c:2f:89:
                    ce:e3:c3:de:73:a6:52:74:21:ef:9f:84:7e:91:44:
                    66:39:95:bf:20:dd:5b:a7:f1:95:41:6f:b7:e8:ab:
                    d9:3f:84:f9:a7:1f:da:28:c6:5d:c2:e9:3f:c3:25:
                    cd:f8:ed:f9:ee:ea:73:a0:0c:8c:43:c1:68:85:5d:
                    34:7f:3c:21:d3:65:5a:a6:4a:c7:72:6a:c8:62:0a:
                    43:99:73:f9:0e:93:38:bd:89:b8:96:3a:aa:a9:c8:
                    8c:42:2f:eb:df:ef:e0:db:d6:20:7f:37:4d:fb:49:
                    c1:40:03:a2:48:b5:a5:cb:52:32:86:44:7e:d6:44:
                    e4:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:53:6A:D1:F0:07:5C:EC:B9:72:CB:5F:FB:F6:28:84:A4:76:84:DC
            X509v3 Authority Key Identifier:
                keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:e6:f3:4c:72:58:ee:61:ba:cd:80:bd:db:75:f0:8d:4d:e9:
         50:65:ee:e6:0f:e3:46:2a:83:1a:85:44:01:e1:46:e3:89:c8:
         e4:91:9c:62:c7:5d:1b:51:71:1b:86:71:29:cb:1d:e8:d5:2b:
         46:f8:06:39:01:3d:7d:2e:bd:e5:13:f5:c6:b3:45:07:5c:54:
         a0:51:43:5f:e6:46:d4:af:75:bf:a1:68:7a:77:cf:b3:6a:72:
         09:02:0a:cc:e3:fe:24:be:8b:6d:e8:aa:50:0e:7c:17:75:f5:
         45:44:c4:6e:24:59:a4:c6:15:47:49:cc:dd:d5:82:f4:dc:03:
         11:59:54:f3:1a:12:3e:9c:b9:b8:80:f7:93:f4:1f:90:6d:8e:
         8f:a9:41:fd:4b:d4:04:69:9a:52:5d:ee:07:61:2e:10:5b:d8:
         d3:fe:d1:fd:6c:2d:d3:ca:fb:a6:99:11:95:48:4c:a3:e3:70:
         ee:f8:23:59:4b:ea:bd:8f:40:d6:a6:38:b6:a9:54:2f:06:c2:
         41:6e:44:a5:0d:a8:56:ae:ee:34:23:ce:f8:c6:c3:8e:66:c3:
         a5:04:f4:5d:81:1a:5b:62:66:52:59:49:56:89:73:48:e6:7f:
         d0:e6:5a:fb:a9:d2:de:e0:ad:07:3e:1f:35:4c:ec:ea:6b:92:
         ac:20:56:08
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICGC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy
RDFBQ0Q4RkQwHhcNMjUxMDE4MTY1OTIzWhcNMjUxMDI1MTY1OTIzWjAYMRYwFAYD
VQQDEw02OGYzYzc2Yi1lZWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6dngICZxd3QCBvWieB0begVbDfOzQTlm8Ke+J4zq0nmb0FsKp7iwqHsnWGJu
5DUoxeVEnh/oLf/nwVyKnVAtP6iEmADUMGe/OInqWKHtmnrzWxNUEAwHrQwzRVXD
Jreg5q51u2lVzGww/EGH0IDpPxbzPHqKXMMVFXxZjsTocBYF8VpsL4nO48Pec6ZS
dCHvn4R+kURmOZW/IN1bp/GVQW+36KvZP4T5px/aKMZdwuk/wyXN+O357upzoAyM
Q8FohV00fzwh02VapkrHcmrIYgpDmXP5DpM4vYm4ljqqqciMQi/r3+/g29YgfzdN
+0nBQAOiSLWly1IyhkR+1kTk9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZTatHw
B1zsuXLLX/v2KISkdoTcMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG
RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My
UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
NDk1Ri84NDhDODU3Q0RGRUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRv
N1BhMThlTWcwSHN0R3MyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBJ5vNMcljuYbrNgL3bdfCNTelQZe7mD+NGKoMahUQB4UbjicjkkZxi
x10bUXEbhnEpyx3o1StG+AY5AT19Lr3lE/XGs0UHXFSgUUNf5kbUr3W/oWh6d8+z
anIJAgrM4/4kvott6KpQDnwXdfVFRMRuJFmkxhVHSczd1YL03AMRWVTzGhI+nLm4
gPeT9B+QbY6PqUH9S9QEaZpSXe4HYS4QW9jT/tH9bC3TyvummRGVSEyj43Du+CNZ
S+q9j0DWpji2qVQvBsJBbkSlDahWru40I874xsOOZsOlBPRdgRpbYmZSWUlWiXNI
5n/Q5lr7qdLe4K0HPh81TOzqa5KsIFYI
-----END CERTIFICATE-----
Generated at Mon Oct 20 00:08:42 2025 by rpki-client