Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft
File:                     8Cl9DkUxodYqla9dLyLvJAja0pw.mft (raw, json)
Hash identifier:          6DvjlR/cLlX+lUzVKa47Ik2/AoDOf8+PdPme2A+T5hQ=
Subject key identifier:   97:F5:93:CA:C6:BF:41:11:68:03:40:A2:96:16:D6:DB:16:D2:20:48
Authority key identifier: F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C
Certificate issuer:       /CN=A91BF312/serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C
Certificate serial:       07F0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft
Manifest number:          07DE
Signing time:             Sat 18 Oct 2025 22:25:14 +0000
Manifest this update:     Sat 18 Oct 2025 22:25:13 +0000
Manifest next update:     Sat 25 Oct 2025 22:25:13 +0000
Files and hashes:         1: 8Cl9DkUxodYqla9dLyLvJAja0pw.crl (hash: lLIsIIFCTsdAtkf94bmQC9uNEyje16qQDNKFP2Tzk+M=)
                          2: DF3CAFC44D9E11F0B1307858C4F9AE02.roa (hash: nNMfwVwGreVHShqHhiSA1wDrVojq2wBr5IqezlVe7oA=)
                          3: 23AF26C40C2B11EBAD607865C4F9AE02.roa (hash: lqzj6YduHCJKV8dYpz5WAfuKsZiHyQ1FWQ0JXN7wCvU=)
                          4: 5ECF5AFE37CC11F0AE950A5FC4F9AE02.roa (hash: npjQiEYYdVjWG8dKeFVFQ6M5ppQB2z0yEbCwP4ngirc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl
                          rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 22:25:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2032 (0x7f0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BF312, serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C
        Validity
            Not Before: Oct 18 22:25:13 2025 GMT
            Not After : Oct 25 22:25:13 2025 GMT
        Subject: CN=68f413c9-e248
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:e9:43:7d:65:09:bd:8c:42:0e:25:9b:fc:c0:
                    16:b7:29:41:ec:b4:ed:27:b8:17:3b:aa:89:75:4c:
                    e6:55:6f:5c:d7:f3:d5:f7:ef:ea:81:e4:aa:ed:18:
                    c6:26:6d:66:3a:a2:d9:cd:65:56:3b:ec:55:06:68:
                    06:ae:97:af:b4:dd:4f:31:80:19:1c:46:87:1e:a7:
                    b1:34:1c:db:64:bb:31:07:9d:61:e6:b1:d9:58:58:
                    96:c5:ed:40:21:89:50:0f:d7:91:ff:58:67:d2:9a:
                    d4:d2:c0:50:10:50:a9:ec:43:0a:fd:0a:c8:1c:54:
                    cf:84:0c:12:15:97:82:ab:77:18:b6:c2:c7:d7:16:
                    e3:ea:b9:37:b9:22:bd:ca:2f:34:87:77:b5:48:87:
                    bf:a3:e4:b0:21:e6:a0:8f:f2:b4:5e:fe:25:f6:0d:
                    66:23:66:29:5a:89:ee:3e:e7:64:7c:27:71:53:0a:
                    6a:7b:77:52:e5:c0:7b:c7:80:2f:01:5f:bf:23:eb:
                    e6:c6:06:b2:ff:68:45:42:ec:08:97:af:8e:9e:e2:
                    69:93:97:16:b1:ab:23:10:31:47:c7:5e:e4:8f:3e:
                    73:d1:96:b4:5a:ab:25:52:9f:05:bf:00:15:c4:85:
                    f6:6f:d8:d6:e4:5b:a2:eb:07:86:9c:37:c1:ee:85:
                    f7:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:F5:93:CA:C6:BF:41:11:68:03:40:A2:96:16:D6:DB:16:D2:20:48
            X509v3 Authority Key Identifier:
                keyid:F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:7d:75:2a:25:fb:df:ad:bb:89:6e:e2:d2:db:27:fd:2b:8c:
         1d:47:c6:74:e8:95:4a:c9:dc:b6:62:2b:87:c3:3a:3b:45:59:
         e2:7e:6d:4f:b2:4b:3e:53:c8:04:6b:f0:94:05:ce:f5:e5:62:
         5e:21:55:f5:f9:32:2c:72:df:4a:e7:73:1f:8e:99:14:19:ea:
         e6:01:23:1d:96:b7:a3:05:5b:9a:a2:cf:43:fc:51:ef:61:c5:
         bd:42:03:d6:31:63:70:fb:ea:ea:a5:c7:28:ee:0b:82:fa:1d:
         97:f6:57:d2:3e:0a:ee:37:e5:10:bb:11:9f:3f:18:a8:d1:7c:
         78:55:ba:cd:26:63:83:d3:9a:48:d5:48:57:ea:14:8d:86:b5:
         cd:99:93:59:65:23:75:09:c7:f7:85:72:79:be:e4:ac:d3:17:
         7c:8c:aa:a2:e6:85:b4:ad:d7:0d:44:6d:5a:10:2c:0c:e5:e6:
         53:9f:02:74:34:20:61:be:34:27:04:5f:70:7d:bd:c7:4b:8b:
         46:a0:0a:00:f1:98:5a:ad:49:76:05:1a:7e:93:02:2d:ef:59:
         43:ce:5e:29:07:84:ce:2e:bc:27:60:56:82:92:1c:81:16:de:
         fa:d1:a4:4f:59:b2:e0:c6:56:07:32:75:92:fd:14:a9:68:2e:
         aa:03:ff:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:59:11 2025 by rpki-client