Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft
File:                     ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json)
Hash identifier:          Ipa1T7h/t4W/77ViOnxF0ANbKExgXO4yp0qHbkLVd4s=
Subject key identifier:   00:23:33:E3:94:8D:DC:D5:2D:05:E2:44:8A:BC:C3:3F:B9:DA:EB:6F
Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA
Certificate issuer:       /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA
Certificate serial:       022C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft
Manifest number:          0224
Signing time:             Sun 19 Oct 2025 04:28:20 +0000
Manifest this update:     Sun 19 Oct 2025 04:28:19 +0000
Manifest next update:     Sun 26 Oct 2025 04:28:19 +0000
Files and hashes:         1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: J3X5MdO00geOYMMJAb9XcsMAWdn4+MmiMh51hB1nFyM=)
                          2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: /aLZRZnVDc3gbgHvgjjTVhimEYu2WCp9inOhdZerK9k=)
                          3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: 046Nkak/mvU2MIy/D/sQyHF4+9Nf/OVFcgvY3OIqwCQ=)
                          4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: 7uR7mk8CLJJlZZvBz+Qm2/sDak7TWidIc0rXMu5Xnkk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl
                          rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 04:28:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 556 (0x22c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA
        Validity
            Not Before: Oct 19 04:28:19 2025 GMT
            Not After : Oct 26 04:28:19 2025 GMT
        Subject: CN=68f468e3-658b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:fa:10:15:53:c5:ac:80:10:17:bb:82:76:68:
                    65:15:5b:25:f3:9f:f3:a9:86:78:1d:4d:32:7d:c2:
                    aa:a2:4f:ac:94:b7:84:88:1b:ab:1c:c9:d6:fd:5d:
                    3e:d9:21:90:39:11:98:a9:ca:c1:d0:16:1a:5f:b3:
                    80:da:64:80:21:79:e7:c1:92:21:32:04:51:dc:a5:
                    5c:52:53:6a:c1:bd:55:b4:dd:74:c3:fc:f4:f7:d5:
                    57:54:bc:de:fe:b1:33:53:74:88:b2:d9:ba:ff:04:
                    2c:8c:4e:78:6a:31:e6:be:9a:2b:72:b6:86:db:2a:
                    7d:33:a2:63:d9:8e:fd:e5:57:68:7f:2a:b2:e3:09:
                    dc:d5:0f:12:d3:1f:2a:ba:72:13:a1:89:d6:a5:04:
                    02:ea:66:3b:8a:2f:e3:e4:90:d5:c7:c3:c1:8c:33:
                    60:a5:03:8e:0e:b1:3d:9f:ba:bf:de:89:29:d3:38:
                    0f:fe:1d:44:70:fa:aa:bd:98:32:c6:aa:34:17:47:
                    8d:e6:3c:e2:18:22:3b:7a:0f:30:04:27:24:8f:74:
                    87:07:2a:b3:28:7e:e4:23:ea:d4:71:3a:e2:00:15:
                    07:01:a2:f1:be:a5:33:fe:35:2d:91:b4:4d:e7:c2:
                    ba:8c:dc:42:b8:30:ad:79:a9:02:02:5c:c6:0e:b5:
                    79:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:23:33:E3:94:8D:DC:D5:2D:05:E2:44:8A:BC:C3:3F:B9:DA:EB:6F
            X509v3 Authority Key Identifier:
                keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:a5:12:e1:ff:b9:b2:23:99:ab:dc:99:2f:00:69:02:8e:85:
         20:6c:48:2b:0a:b0:ad:77:05:c0:d9:18:72:11:72:4f:7f:c1:
         59:ed:71:47:be:e4:b9:90:33:81:04:de:27:a8:7c:b0:86:1d:
         49:db:b8:22:e2:36:49:01:0b:fc:ad:af:08:65:ea:a8:ed:7f:
         53:44:f9:68:93:e5:aa:b0:e5:b9:1d:54:e3:90:3d:7a:24:83:
         83:91:6c:21:a6:11:b1:05:b2:92:a2:2f:86:26:e9:70:a7:c0:
         b1:42:20:09:19:fa:ec:00:40:03:f9:22:22:ca:e8:ec:0e:7a:
         36:04:fc:4a:c4:21:23:b6:0e:fc:36:3b:14:ba:2f:63:65:bc:
         7d:a0:1e:0c:bd:e6:3a:ab:59:68:f0:14:2b:49:82:89:da:ff:
         35:9d:fe:40:03:c9:64:14:c8:9f:3a:a1:bf:ac:3e:98:ca:48:
         29:66:23:ac:95:5a:c5:bd:bc:c3:4f:9d:23:4c:15:ae:33:55:
         d6:aa:34:ec:9d:38:8c:aa:79:a6:a0:d8:c5:88:7d:25:1f:8d:
         8c:b3:e9:d7:e9:2f:b6:c3:0e:6f:99:79:6a:63:b7:b0:d2:16:
         6a:38:c9:dd:6e:dd:9e:ef:4d:4c:1e:5b:d6:7c:db:95:6c:bc:
         96:e9:9b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:45:33 2025 by rpki-client