Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
File:                     9htN6lh5mctuFcVAieTbmD0BuxA.mft (raw, json)
Hash identifier:          2JvvMs3+mrD2OQ+qeAKj6pwwUgr7taZVTXJ8CP8pPQ4=
Subject key identifier:   1B:76:B9:3B:34:60:A4:5C:B7:4E:46:12:D5:3C:2F:94:A3:3D:A4:EC
Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10
Certificate issuer:       /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10
Certificate serial:       08B9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
Manifest number:          1446
Signing time:             Mon 20 Oct 2025 19:39:49 +0000
Manifest this update:     Mon 20 Oct 2025 19:39:48 +0000
Manifest next update:     Mon 27 Oct 2025 19:39:48 +0000
Files and hashes:         1: 9htN6lh5mctuFcVAieTbmD0BuxA.crl (hash: DbbByfeqxPrl24IgzrA5zAgrZtKNXXUAh9d/jDkqlqw=)
                          2: 336BD320CA6111EA97DD3439C4F9AE02.roa (hash: pBil4YvB7UVloyu8DhnduF+muuJFikEsjN7164UGvgI=)
                          3: 341C7414CA6111EA97DD3439C4F9AE02.roa (hash: h5frQG89R9e/TKYUgyXgA4IPep2flQE62K3sYBLnEpw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl
                          rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 27 Oct 2025 19:39:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2233 (0x8b9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F7315, serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10
        Validity
            Not Before: Oct 20 19:39:48 2025 GMT
            Not After : Oct 27 19:39:48 2025 GMT
        Subject: CN=68f69004-74bd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:c9:60:f7:07:a9:50:da:d8:cb:18:1d:39:ef:
                    82:aa:5a:19:bc:28:c9:e2:36:b8:6e:ac:0f:fd:4a:
                    25:fb:94:32:80:72:71:42:e4:68:4b:fe:5d:2a:f0:
                    72:45:fa:d7:35:10:06:16:5c:2a:0e:0b:a6:2f:f3:
                    9d:65:1a:84:22:9a:13:c8:54:dd:33:23:a9:c5:78:
                    7b:c4:fb:c5:60:e7:2e:dd:f0:13:d2:eb:a4:de:66:
                    e4:b5:08:92:85:ab:50:07:51:4e:8e:1e:74:60:19:
                    35:f0:a3:e1:c3:8e:66:11:b9:25:57:f0:2d:11:ea:
                    81:7f:a7:f2:32:3d:d3:31:17:99:ff:c4:26:0f:b5:
                    4e:4c:03:89:33:d1:8f:e5:83:6f:65:9b:a3:c5:1f:
                    f5:ed:2c:8e:e0:47:e0:6e:26:b6:50:03:f6:aa:c1:
                    ff:e8:4a:a9:80:13:af:73:57:c8:de:eb:c5:2c:00:
                    30:f5:07:62:12:3b:7f:cc:d8:b3:58:2d:d7:9d:67:
                    8e:64:2a:9b:fa:97:87:b1:8b:d4:24:e9:8e:c3:94:
                    b0:a2:f9:13:21:c9:09:23:7e:a9:65:b7:30:55:88:
                    eb:a1:f4:f2:84:ad:87:cf:97:6a:12:53:31:99:fd:
                    16:12:75:3e:99:0d:8e:d0:0d:5a:fc:77:8b:2d:5b:
                    94:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:76:B9:3B:34:60:A4:5C:B7:4E:46:12:D5:3C:2F:94:A3:3D:A4:EC
            X509v3 Authority Key Identifier:
                keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:0a:4b:7e:21:4c:0e:d8:c4:c4:a0:99:f4:9c:96:3e:c8:1b:
         a9:63:f5:51:7b:32:36:99:cd:21:28:04:d0:4f:aa:ea:55:4a:
         73:48:f9:57:90:1d:15:d7:ac:22:01:44:48:38:42:54:e2:ae:
         c2:a2:a7:84:61:4f:c9:88:af:71:4e:2b:8a:fe:3a:ff:ea:fa:
         7e:a5:9a:44:ab:f2:c6:32:90:2f:80:3b:3a:23:68:9f:0d:8f:
         7c:b9:4d:51:e4:f7:21:3e:e1:af:8c:52:da:35:17:eb:a5:6a:
         ae:db:c1:ea:dd:01:11:bc:7a:8e:90:08:de:2c:22:4f:c8:e2:
         84:8a:e5:0c:7d:51:10:31:b6:81:f7:b8:a9:15:cf:d4:fe:da:
         22:f2:87:ff:ff:ff:c0:fb:59:e9:d8:cc:e4:d3:13:ea:97:88:
         eb:5d:7d:25:85:2b:f4:94:db:8e:e4:0e:3a:08:fb:49:b2:f6:
         c8:73:91:08:5b:a0:6b:e0:43:7f:6c:f6:09:d4:6f:be:c6:f9:
         bb:a9:33:ea:29:39:76:2d:0a:9e:e9:46:89:cd:21:35:bf:68:
         5a:e1:51:a0:ad:1b:3b:cd:0a:ff:ce:69:22:3c:8a:60:10:d8:
         0c:06:da:8e:41:d7:4a:78:41:45:57:f1:e7:e5:dd:40:35:a8:
         97:d2:20:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 00:09:31 2025 by rpki-client