Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
File:                     9htN6lh5mctuFcVAieTbmD0BuxA.mft (raw, json)
Hash identifier:          BDsZKg30LjHtTjNFFn9Ye1F0Pooeh2LqvVAjM88Ej5k=
Subject key identifier:   70:D3:34:CB:FC:BB:59:FE:57:F7:5A:AF:F8:98:A6:FD:4A:87:04:E6
Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10
Certificate issuer:       /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10
Certificate serial:       08B8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
Manifest number:          1444
Signing time:             Sat 18 Oct 2025 19:50:14 +0000
Manifest this update:     Sat 18 Oct 2025 19:50:13 +0000
Manifest next update:     Sat 25 Oct 2025 19:50:13 +0000
Files and hashes:         1: 9htN6lh5mctuFcVAieTbmD0BuxA.crl (hash: T989wS0MP18dDyi5Lo/Qq3ZasuGl7EU/nKrcLo0pNTc=)
                          2: 336BD320CA6111EA97DD3439C4F9AE02.roa (hash: pBil4YvB7UVloyu8DhnduF+muuJFikEsjN7164UGvgI=)
                          3: 341C7414CA6111EA97DD3439C4F9AE02.roa (hash: h5frQG89R9e/TKYUgyXgA4IPep2flQE62K3sYBLnEpw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl
                          rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Oct 2025 19:50:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2232 (0x8b8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F7315, serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10
        Validity
            Not Before: Oct 18 19:50:13 2025 GMT
            Not After : Oct 25 19:50:13 2025 GMT
        Subject: CN=68f3ef75-c22a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:a1:09:e8:a2:16:4b:ee:f8:cd:3b:2c:81:03:
                    b5:29:1e:fa:7e:79:20:0c:ae:fc:8b:9f:93:32:52:
                    59:95:a4:43:dc:98:fe:8c:64:55:7b:40:cf:b2:04:
                    56:d0:7e:cc:ec:a5:c1:dd:a4:fe:48:b5:42:98:0f:
                    a2:bf:d0:c1:30:a1:35:7a:22:78:0b:61:fe:3e:2a:
                    af:72:2b:ab:22:8b:2c:fd:dd:cc:b0:d7:6a:f0:78:
                    ab:99:ff:3b:26:51:a1:26:8d:05:0d:b6:07:7d:34:
                    d5:6e:7d:0f:ee:93:4c:3a:02:61:39:2e:dc:f0:2d:
                    86:b1:06:27:a9:00:48:95:07:2c:78:a9:b7:b8:ba:
                    9d:e6:ab:68:6d:fe:dd:6d:65:22:c4:4c:7d:a5:a9:
                    77:cd:73:61:f2:43:10:06:59:0b:81:6b:d8:ad:7e:
                    b7:63:4e:da:0a:e5:2e:fd:d7:e9:98:fa:b4:3f:48:
                    cf:5a:48:e5:dd:e8:d8:c2:1a:d5:e6:f3:0f:12:67:
                    96:5e:33:2a:fd:13:7c:e1:03:72:83:cb:81:7a:3c:
                    cb:e8:7b:90:db:35:b8:de:11:7f:c9:c9:63:0e:68:
                    0a:d2:c9:1a:aa:a4:c6:3c:fb:e6:be:57:85:1c:1d:
                    cf:90:02:83:46:ed:d5:39:ea:49:83:ca:ff:b0:03:
                    bd:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                70:D3:34:CB:FC:BB:59:FE:57:F7:5A:AF:F8:98:A6:FD:4A:87:04:E6
            X509v3 Authority Key Identifier:
                keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:d9:2e:bb:a0:d5:36:48:b2:5e:d0:77:d5:8e:e2:2b:c7:d0:
         a3:ba:31:17:d0:66:7d:c2:82:a7:7c:30:80:73:08:71:fa:70:
         93:dc:cb:fc:27:30:99:c9:46:e2:a3:ab:c5:f7:bb:77:f3:14:
         0b:64:45:fe:8a:5e:e4:d8:86:b8:0a:c1:72:94:72:b7:cc:21:
         2b:3b:16:c3:9c:91:e4:3b:4e:25:b3:01:16:11:9f:74:35:77:
         c7:f3:d7:49:10:6b:86:58:4b:66:3c:8c:07:a2:82:fa:86:78:
         4d:01:dd:2d:cd:d2:5d:02:cd:95:3a:bc:f0:2e:77:96:af:60:
         60:6b:43:54:b3:29:8f:48:01:2b:9f:a7:79:fc:96:76:54:53:
         51:ec:48:a4:97:b6:19:81:f8:22:33:66:4e:0d:1b:dd:54:51:
         a4:05:97:4a:31:7f:ec:6d:d3:c1:e4:b1:4a:d3:3d:8a:50:3f:
         f1:fb:e7:1f:5a:4c:7e:36:20:81:5a:37:9b:86:7b:1b:2b:2d:
         14:05:e4:d9:60:ee:c2:fc:58:29:47:b0:ea:64:8c:34:e9:f7:
         ef:70:12:cf:4a:dd:34:2f:72:f9:b3:e1:30:fe:31:5c:c4:48:
         31:33:88:6d:83:df:d0:53:92:6d:5e:e5:32:d9:bc:9a:25:d3:
         5e:ed:98:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:46:29 2025 by rpki-client