Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
File:                     AO-zr_90_WIfS42RFpt6HEOzlBc.mft (raw, json)
Hash identifier:          xo8BAEK7RcdggNQXyrty9aTMLkj770WUX8jTYbd3Zpk=
Subject key identifier:   F4:B0:5F:D6:05:73:37:6C:6C:D2:8D:D1:65:44:9D:04:AF:97:05:E1
Authority key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17
Certificate issuer:       /CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417
Certificate serial:       016C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
Manifest number:          0164
Signing time:             Fri 25 Jul 2025 04:15:41 +0000
Manifest this update:     Fri 25 Jul 2025 04:15:40 +0000
Manifest next update:     Fri 01 Aug 2025 04:15:40 +0000
Files and hashes:         1: AO-zr_90_WIfS42RFpt6HEOzlBc.crl (hash: dK+cBqMKH41m3E7vpxdG/hxcjLrGHNw8Mt8TJqe6prw=)
                          2: A80498FABAAB11EEBA024655C4F9AE02.roa (hash: g6wCJDrtHyuCox1Dak/0D/0mdLei/24CwRHwHNh/Oi8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl
                          rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 01 Aug 2025 04:15:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 364 (0x16c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912C8FA, serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417
        Validity
            Not Before: Jul 25 04:15:40 2025 GMT
            Not After : Aug  1 04:15:40 2025 GMT
        Subject: CN=688304ed-9c91
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:40:44:4c:ee:be:44:69:8b:b4:93:78:cf:ae:
                    05:ee:d5:47:f4:87:79:60:d4:99:b2:4b:fd:7b:b5:
                    06:26:2d:05:d6:3b:50:f9:16:af:1e:d6:3c:47:be:
                    03:3a:6b:72:37:6a:27:c1:1b:ab:7a:cf:19:07:89:
                    79:55:fd:c5:d9:bc:e4:aa:58:fd:fd:b6:c7:e1:0a:
                    15:c5:41:7d:df:67:42:4c:23:93:d1:89:cf:7f:2e:
                    72:be:5a:42:33:35:d6:dc:26:1b:81:aa:ac:f5:2b:
                    f8:59:f6:98:60:9d:85:dd:b5:18:e4:30:30:e0:b0:
                    af:ee:10:9b:2d:11:02:64:a8:c5:72:10:04:e9:8a:
                    a4:e5:b4:e6:7d:0e:31:56:43:ff:8a:b5:70:7b:0b:
                    18:70:10:eb:e1:c9:f7:2d:b3:43:dd:af:e3:83:73:
                    bf:07:6b:be:02:0f:bd:91:5f:9b:eb:dc:5a:a8:a2:
                    7e:26:71:0b:4f:4f:a6:fe:0f:7b:52:6f:b8:55:29:
                    a6:2b:d1:b1:1c:7a:c0:3a:e3:5a:b5:0b:08:8a:25:
                    de:f3:f0:1a:d8:70:a6:eb:e8:c2:e5:fc:84:69:5d:
                    87:7a:56:87:01:2f:8b:83:e6:ef:dd:0d:06:ba:45:
                    8c:96:85:11:42:f8:dd:a6:e4:e3:88:6c:d5:66:37:
                    a3:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:B0:5F:D6:05:73:37:6C:6C:D2:8D:D1:65:44:9D:04:AF:97:05:E1
            X509v3 Authority Key Identifier:
                keyid:00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:01:b0:83:da:38:e7:26:3f:36:6d:a3:81:85:0f:57:a5:f9:
         e9:c3:be:c4:c7:96:dd:10:ce:e7:ac:6b:3f:6a:57:76:cc:07:
         df:e3:de:5c:13:73:2c:20:29:74:fa:39:4e:f1:30:62:e0:c2:
         35:3f:5c:d9:c8:ef:3b:95:95:09:19:0b:34:d2:3f:42:cb:6b:
         6a:83:4e:3d:a9:f6:bb:c9:69:a3:fe:8c:45:22:08:84:05:fc:
         e6:04:42:d6:f0:d4:7f:4b:8a:37:96:e1:f4:40:55:cb:f3:61:
         35:ef:2b:22:53:d1:e1:ca:db:4a:a0:84:b3:9a:fd:29:34:be:
         b1:a5:66:c8:32:09:6c:14:cf:e8:d2:1e:c1:69:01:7b:d1:60:
         09:64:a8:75:8e:34:b2:ee:b1:c7:ce:73:86:79:24:3d:8f:56:
         25:08:b4:16:2e:b6:be:75:fb:08:94:45:cf:72:04:cf:6f:78:
         7c:43:28:f5:e5:04:c0:fe:af:41:27:9a:82:ee:fd:a9:19:b3:
         03:63:3f:fb:c4:05:0b:18:bf:01:22:09:a3:60:bb:9e:bf:2b:
         ec:fa:cc:a3:ed:54:85:a6:07:fb:60:9b:29:b8:8c:b3:ee:20:
         0a:41:a8:34:0d:08:08:63:ec:4d:d4:68:c4:7d:b8:73:10:c9:
         24:21:9a:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 02:04:13 2025 by rpki-client