Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft
File:                     D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json)
Hash identifier:          h5rzybQ6YWg5BtZDi2NVunRDxkuXoWeHMVmiJ3Z66HI=
Subject key identifier:   AE:26:42:EA:87:BF:C1:AA:CF:C4:E2:7B:DC:A8:07:E2:F9:39:40:5D
Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67
Certificate issuer:       /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467
Certificate serial:       1C35
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft
Manifest number:          1C24
Signing time:             Mon 20 Oct 2025 16:29:53 +0000
Manifest this update:     Mon 20 Oct 2025 16:29:52 +0000
Manifest next update:     Mon 27 Oct 2025 16:29:52 +0000
Files and hashes:         1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: GCd05N9EIdLA2WRgvcsPXRQI0UYESt2kNjxNikd5hI8=)
                          2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: fVTj+Nhy/WhakS8dFaROX7k0zNO3tiUAb5xWLcSpOW0=)
                          3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl
                          rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 27 Oct 2025 16:29:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7221 (0x1c35)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467
        Validity
            Not Before: Oct 20 16:29:52 2025 GMT
            Not After : Oct 27 16:29:52 2025 GMT
        Subject: CN=68f66381-e01b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:a6:86:01:1e:d3:07:f8:2d:44:cd:d1:62:4f:
                    5d:a0:0f:46:05:76:41:ab:9e:a0:de:a5:5f:4b:2e:
                    84:96:b4:97:99:d4:bb:6e:35:63:df:09:35:20:ca:
                    aa:b3:f7:4a:54:66:a7:76:2b:e1:82:8f:dc:79:5c:
                    98:3e:58:09:f0:21:69:10:b2:88:0f:0f:bd:4b:e9:
                    c0:a7:4c:74:b1:35:86:fa:eb:49:ba:e9:72:2e:f0:
                    1e:30:58:40:85:fa:8e:f5:e1:d7:85:17:b2:47:90:
                    62:c4:fc:22:51:f5:62:52:89:6a:ee:88:ad:84:84:
                    97:2d:1e:15:23:d0:15:95:8d:da:04:50:b5:6a:0f:
                    94:9f:7e:fa:cd:85:d1:fb:50:cc:30:fe:7c:91:6c:
                    9a:8a:5f:c1:a0:73:44:f3:17:04:ee:97:74:f5:31:
                    04:f5:2f:0b:0a:b0:47:15:8c:35:5e:56:ca:87:c0:
                    04:52:cd:72:d7:6b:f4:ee:99:8e:45:49:23:d6:8a:
                    70:0b:b6:8e:e7:4b:b5:f7:30:1b:47:f5:7b:aa:38:
                    3c:f9:23:d2:4e:25:f4:70:4e:7b:d8:24:7f:07:0d:
                    25:f4:0a:c7:45:e9:ab:d2:33:c6:9c:b6:d4:07:88:
                    ca:71:97:90:55:89:3b:c3:ba:d9:9c:a6:c8:ec:ff:
                    a6:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:26:42:EA:87:BF:C1:AA:CF:C4:E2:7B:DC:A8:07:E2:F9:39:40:5D
            X509v3 Authority Key Identifier:
                keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:5c:d6:40:43:b0:56:a7:cb:22:d7:0e:b5:50:cb:fb:df:06:
         d0:14:c4:60:68:c6:65:ee:e2:d4:1f:83:85:d5:53:55:de:94:
         30:75:f9:4c:40:a4:ea:5b:78:c7:06:2e:c5:f7:4d:44:51:3b:
         58:4c:dd:ec:a1:45:18:b1:3a:15:0a:27:a2:ca:b0:83:30:b4:
         af:8a:77:0d:af:55:48:4e:16:37:9a:9e:32:50:01:43:3d:97:
         53:49:e6:96:44:fd:bd:a6:87:d5:79:c7:1d:da:50:3c:a2:02:
         bf:13:30:1a:88:fe:b3:3d:7f:8e:98:16:78:8f:9e:33:26:79:
         00:e0:05:a7:3d:57:55:07:bf:c6:3b:92:36:68:1f:db:8c:43:
         6f:eb:56:51:26:9d:a6:ac:fa:8d:09:a0:0e:c7:14:86:be:ef:
         f1:d4:4e:d0:a0:70:81:bb:5d:29:5f:4f:e9:da:10:7e:ed:e5:
         98:19:c4:cb:b0:19:97:9c:f7:55:5d:04:72:ad:dc:4c:7e:c4:
         6b:97:fa:5c:26:7d:8c:18:80:15:be:67:8e:f7:5c:15:df:ec:
         39:87:ca:5e:a3:b0:15:95:78:08:4b:33:12:c9:f9:ed:f0:ec:
         d4:04:75:a9:3f:db:9d:ce:0e:5f:6e:97:a1:86:ec:e1:74:8c:
         ef:66:63:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 00:38:37 2025 by rpki-client