Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
File:                     AO-zr_90_WIfS42RFpt6HEOzlBc.mft (raw, json)
Hash identifier:          qZsLlGEBSkRCsUcrIceJHThzSZz06QX92QNDyYFff8I=
Subject key identifier:   E6:1D:FF:7A:9E:9A:37:82:EE:C1:4C:A3:C4:3F:DF:AA:9A:BD:FD:1C
Authority key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17
Certificate issuer:       /CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417
Certificate serial:       016A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
Manifest number:          0162
Signing time:             Mon 21 Jul 2025 04:08:21 +0000
Manifest this update:     Mon 21 Jul 2025 04:08:21 +0000
Manifest next update:     Mon 28 Jul 2025 04:08:21 +0000
Files and hashes:         1: AO-zr_90_WIfS42RFpt6HEOzlBc.crl (hash: pbmZZl6QHciemH/RltLYF7n8EBrkJP9lHldMWmeIVhM=)
                          2: A80498FABAAB11EEBA024655C4F9AE02.roa (hash: g6wCJDrtHyuCox1Dak/0D/0mdLei/24CwRHwHNh/Oi8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl
                          rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 04:08:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 362 (0x16a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912C8FA, serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417
        Validity
            Not Before: Jul 21 04:08:21 2025 GMT
            Not After : Jul 28 04:08:21 2025 GMT
        Subject: CN=687dbd35-a5f3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:28:42:b9:81:9d:29:a6:24:25:39:6b:ea:60:
                    1e:49:6b:1e:38:6e:77:09:7b:43:d3:3c:d5:e2:c4:
                    8f:e7:de:5d:f0:56:8b:c0:43:e5:92:13:ee:f6:c5:
                    92:81:10:21:6e:c6:ba:2b:b4:bf:82:59:69:42:56:
                    fc:bf:5f:9c:41:18:6a:20:39:99:5c:89:d6:f7:79:
                    c5:03:df:33:9a:1d:22:f0:58:ce:cc:8c:44:bb:be:
                    6a:9c:4b:5e:29:85:03:b6:ae:34:93:85:ce:45:13:
                    e0:fe:9d:5e:4a:32:d6:95:f6:05:81:6f:53:3d:a5:
                    fc:2f:09:25:8e:3f:c5:65:95:88:55:b7:7b:ad:48:
                    66:67:30:6d:8f:64:35:da:aa:a7:c5:e4:a1:6a:c2:
                    73:4e:10:e4:a6:dd:5e:f1:07:27:be:a3:c3:40:64:
                    55:1e:38:57:79:31:77:5b:0f:1e:8f:52:2c:23:7d:
                    c9:a2:e4:76:39:5d:c7:29:cd:ca:29:2f:f5:5d:f9:
                    88:25:37:14:e5:24:07:3d:c4:59:fd:d8:62:4d:ae:
                    3a:71:96:11:71:4c:3f:5e:7c:e7:48:42:3f:a2:e5:
                    b9:a9:e7:fc:3a:44:e6:13:39:02:36:42:91:77:a5:
                    5f:00:00:81:ee:02:b7:59:76:c8:21:1b:39:39:5c:
                    9e:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:1D:FF:7A:9E:9A:37:82:EE:C1:4C:A3:C4:3F:DF:AA:9A:BD:FD:1C
            X509v3 Authority Key Identifier:
                keyid:00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c0:a3:52:b4:e7:32:46:6e:12:67:52:e2:9a:6c:0e:f0:c5:a6:
         3a:96:bc:35:58:99:29:61:c6:e3:3d:5a:c4:86:d1:8a:dc:f2:
         41:4f:bf:d8:4c:bd:a0:e4:79:85:a5:9c:f4:e7:a5:9c:e8:5e:
         0a:ef:63:78:5c:69:11:60:9d:30:86:2d:43:50:d8:78:19:b7:
         e3:11:ff:6f:93:c3:15:9a:b1:f6:21:38:75:db:1b:ec:de:02:
         80:6e:42:3c:bf:24:7a:bb:55:b9:6c:34:72:49:0a:29:94:dc:
         6c:41:53:b1:6f:19:03:45:39:d4:1d:74:1d:c4:48:7c:d0:88:
         62:9c:ea:48:3b:25:c9:4b:8c:02:2f:c8:8c:d1:ef:39:3a:c6:
         02:d2:8b:4e:1f:e2:88:3e:e3:42:f5:60:81:d2:2c:b9:19:1a:
         0f:8a:a3:7e:13:14:88:08:2d:04:27:95:73:26:7a:ee:68:b3:
         29:8c:fa:85:28:71:52:19:7e:37:fb:78:49:4b:bb:4c:20:f9:
         82:13:dc:15:42:3b:e3:aa:10:10:87:3a:b1:7f:2d:c1:da:1e:
         03:7f:4a:55:cb:e1:1b:a1:69:1b:b6:2f:14:54:dd:3c:bc:91:
         8e:bd:2a:ec:90:71:4c:e8:22:2d:fd:f9:b6:5a:45:93:dc:05:
         ac:1c:86:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:34:18 2025 by rpki-client