Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft
File:                     2v3gvG4K06iVvHVtbDGh5httODs.mft (raw, json)
Hash identifier:          BftZ+wUJe0tLB6SPwTDqjAPxYH0aVux07ikm866NQ8o=
Subject key identifier:   67:D7:44:B8:E3:54:8B:AE:19:AE:90:96:67:9E:F0:31:48:56:D6:C0
Authority key identifier: DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B
Certificate issuer:       /CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B
Certificate serial:       08B0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft
Manifest number:          089B
Signing time:             Sat 18 Oct 2025 21:43:54 +0000
Manifest this update:     Sat 18 Oct 2025 21:43:53 +0000
Manifest next update:     Sat 25 Oct 2025 21:43:53 +0000
Files and hashes:         1: 2v3gvG4K06iVvHVtbDGh5httODs.crl (hash: INm2XoP3pROvHm4SxTim9K2R70+KMTnU3RblMq268Q8=)
                          2: 311DA6AA78F611EFAFD81B5BC4F9AE02.roa (hash: d3AVE6MmRgC9f1BP/vAUeg941gkBQiu4la3PQf5xjqo=)
                          3: 312D1714A6F211EFBD311B19C4F9AE02.roa (hash: 69lFJmCSoZqJFnlRVMecyEqrZmFOaweKrojaOmIkHVY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl
                          rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 21:43:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2224 (0x8b0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918FCE2, serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B
        Validity
            Not Before: Oct 18 21:43:53 2025 GMT
            Not After : Oct 25 21:43:53 2025 GMT
        Subject: CN=68f40a1a-9763
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:01:2b:e2:fd:75:30:09:d9:8d:a1:8b:bc:35:
                    2d:f9:a9:43:97:6e:05:f5:72:ee:6a:ce:74:f7:0d:
                    92:15:ed:1f:44:2b:1c:43:d1:2e:0d:6a:a1:38:1d:
                    bc:9b:43:68:47:fc:5d:01:f7:20:9e:e0:41:ff:48:
                    b5:34:6e:fc:4f:1e:df:00:d7:c9:5c:c4:96:53:88:
                    83:87:fd:7a:14:b7:fb:f0:45:3d:3a:a4:9a:09:92:
                    0c:89:34:53:aa:c5:96:eb:2c:4f:69:a3:54:a5:0a:
                    f8:b5:c7:80:89:08:d7:29:5c:b9:6e:fb:61:ac:ad:
                    0f:f0:23:19:b8:8d:6a:09:28:9f:17:78:11:ba:df:
                    63:aa:c2:98:56:b0:d2:47:59:d3:b9:c5:10:66:59:
                    8a:28:40:03:46:b1:15:51:10:b0:74:05:28:a4:65:
                    bb:9a:aa:2c:d3:df:a2:61:1d:72:89:b7:e2:fe:6a:
                    47:a5:2d:c2:bf:98:6c:cf:39:51:b7:7d:f3:51:3e:
                    83:df:58:a6:2e:83:d8:3d:0c:0b:2b:36:9e:66:2d:
                    35:c9:d6:5b:2b:2e:e3:88:df:11:90:46:4c:49:8e:
                    b6:15:98:6a:5a:f6:30:4f:a5:96:74:ce:6c:e8:ea:
                    49:86:25:97:ea:7e:03:9b:ee:3a:8a:82:4c:38:a2:
                    fd:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:D7:44:B8:E3:54:8B:AE:19:AE:90:96:67:9E:F0:31:48:56:D6:C0
            X509v3 Authority Key Identifier:
                keyid:DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:63:38:fb:70:2d:6f:73:02:35:71:f5:a8:3c:33:70:09:10:
         42:d9:8c:5e:2d:66:49:f0:22:52:6b:cd:7b:25:9b:c4:20:af:
         d9:cf:b8:9c:d4:ba:0e:1f:7d:34:e6:15:4e:c7:6f:66:5d:f2:
         00:1e:34:ef:b4:5d:8a:62:67:3e:b4:2a:be:94:45:e7:5c:e5:
         ec:73:38:12:38:31:3f:09:76:c7:f8:d1:71:96:83:8b:ad:03:
         e9:0d:9d:a9:4c:b8:ef:a7:aa:6a:b7:10:da:42:1f:02:f0:69:
         db:73:1c:66:a3:77:5f:27:18:fa:be:a9:60:aa:25:d7:7f:dd:
         f3:24:21:8e:6b:01:5f:04:b6:44:d0:70:f2:d0:ed:22:f5:93:
         dd:93:ea:03:c6:fd:93:99:f4:86:ed:2f:85:75:ca:f2:eb:60:
         0e:b9:1a:51:80:82:3b:74:da:ce:1a:15:f1:98:9f:58:50:41:
         35:d9:2e:3e:f0:92:5d:49:9c:c3:2a:4b:11:2c:cc:de:d8:2e:
         d4:1f:68:f4:0a:a8:ff:49:48:3c:ce:f7:ab:2e:f9:b9:54:ca:
         e1:df:38:7e:cf:92:f4:99:9f:3e:2b:a5:1f:42:d2:14:bd:3c:
         37:87:c1:e5:a7:ce:d5:4c:eb:69:ea:b4:75:bb:ae:03:ac:08:
         9b:19:82:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:02:11 2025 by rpki-client