Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft
File:                     pfBl_MntoR3KTQ38bXyZB1KY1_8.mft (raw, json)
Hash identifier:          r0OFlhBARnsCgDTZ6bAcnMaQQbaE6pgm1XAuAK2VTPw=
Subject key identifier:   80:D3:8C:9F:BF:AC:B1:C2:91:D3:37:97:D2:33:12:94:99:4B:9B:B6
Authority key identifier: A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF
Certificate issuer:       /CN=A9174685/serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF
Certificate serial:       0944
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft
Manifest number:          0930
Signing time:             Wed 20 Aug 2025 20:18:54 +0000
Manifest this update:     Wed 20 Aug 2025 20:18:53 +0000
Manifest next update:     Wed 27 Aug 2025 20:18:53 +0000
Files and hashes:         1: pfBl_MntoR3KTQ38bXyZB1KY1_8.crl (hash: fMx50p5WFb0t0DlULmfn7/Q17JT+6NzlV3cFpJv1mtE=)
                          2: 8BBD25F4EAE311EF95C23D4DC4F9AE02.roa (hash: g6ZF73udqOvaMk79CC0xL6laKl1ilnMa4mhmtzges9Y=)
                          3: 31B2B528217811EEBACF3324C4F9AE02.roa (hash: GgE2GgTXjnlE63xFP6LVosemjRTE0pIIUFRg3E+lupM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl
                          rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 27 Aug 2025 20:18:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2372 (0x944)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9174685, serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF
        Validity
            Not Before: Aug 20 20:18:53 2025 GMT
            Not After : Aug 27 20:18:53 2025 GMT
        Subject: CN=68a62dad-f9f3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:79:c5:27:ca:dd:cf:58:9b:2d:4e:cc:c7:45:
                    6a:28:2f:dd:4c:40:fb:7e:6b:86:77:66:cf:20:c6:
                    c6:9b:e9:5d:e2:60:a6:34:1c:2b:30:ac:7e:59:6a:
                    e4:67:33:e7:64:70:43:97:8c:cc:a8:3f:4a:a4:a9:
                    8b:a6:ab:fb:59:7b:3e:6b:b6:6a:cf:cd:f1:61:35:
                    69:52:40:71:d2:16:20:c0:99:04:1d:f4:29:68:6c:
                    fd:01:63:36:6a:1b:fb:33:82:e0:2e:d1:88:e4:a7:
                    4a:a3:91:7d:f0:88:59:73:c1:99:15:06:8d:fa:71:
                    6b:c1:83:fd:ce:93:38:29:65:9d:be:12:6a:41:6a:
                    d6:ae:67:aa:bc:11:9d:28:20:e0:01:50:5d:7c:3e:
                    b8:5d:1e:31:28:61:63:68:b2:4a:d1:69:f1:85:e1:
                    61:a6:a6:70:ac:2c:55:49:87:97:12:44:84:98:1e:
                    a6:0d:3a:d3:31:15:e2:47:f6:64:73:16:95:76:c7:
                    55:a3:16:6c:2f:4c:74:be:6e:80:61:56:f1:75:51:
                    6d:86:73:12:0b:4f:cf:da:84:4b:50:44:9b:cc:96:
                    0e:6b:5f:5a:9e:1d:bc:7b:2f:9e:c1:14:37:34:77:
                    fb:7b:7d:d7:d8:9c:42:45:3d:e0:0c:69:88:09:b3:
                    fb:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:D3:8C:9F:BF:AC:B1:C2:91:D3:37:97:D2:33:12:94:99:4B:9B:B6
            X509v3 Authority Key Identifier:
                keyid:A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8d:36:55:81:e0:66:6d:5f:b7:e2:34:3a:0d:93:54:ad:a4:94:
         d8:4d:ea:9a:85:6e:ef:b2:1d:69:c8:7d:19:ba:2e:aa:a4:c8:
         b4:4a:81:ff:d8:79:9d:27:0f:d9:3d:6a:63:c1:88:c2:a2:83:
         8a:41:b7:be:3b:52:40:6a:26:d8:a7:29:72:98:23:74:55:f1:
         5d:cb:e3:09:f7:c5:a1:1a:74:70:76:fc:cd:4f:4e:0b:af:56:
         79:68:4f:b3:ae:d2:a7:5f:2f:17:3c:f2:b6:1c:2a:66:71:f2:
         a8:87:f9:41:f9:a3:17:99:0e:50:d5:de:95:36:58:44:70:a7:
         37:2e:a6:f8:3c:7b:90:3f:06:ad:d5:29:10:69:c1:e8:a3:a2:
         d7:21:18:ed:50:17:df:33:a0:35:f2:c1:c0:72:91:e4:f9:78:
         a9:3a:b0:b8:f9:60:53:18:66:40:48:55:a8:96:2b:1c:a0:04:
         1d:b4:53:d6:ea:54:e4:15:e8:ea:74:63:cc:5b:b0:a4:8d:eb:
         b3:1d:09:54:81:da:80:17:a0:27:15:bd:47:87:2d:61:00:a9:
         ff:f9:35:55:7b:04:26:52:4c:21:8e:80:1d:6e:37:97:63:8b:
         3f:43:86:e5:db:ba:c7:3e:ba:45:fb:da:ce:91:4f:07:5e:12:
         7d:d8:67:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 22 16:22:28 2025 by rpki-client