Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft
File:                     ZH5crcsfv367iZpyGcOg8D0_ew0.mft (raw, json)
Hash identifier:          hZYBSKBLxqkFLnUYLDRxHkr+220cAfJLNE/t6OkFs0Q=
Subject key identifier:   2A:B5:23:04:35:4A:C4:D5:1C:43:EE:6B:25:E2:8D:3D:66:70:18:1F
Authority key identifier: 64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D
Certificate issuer:       /CN=A91951DE/serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D
Certificate serial:       08
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft
Manifest number:          07
Signing time:             Wed 23 Jul 2025 08:33:01 +0000
Manifest this update:     Wed 23 Jul 2025 08:33:01 +0000
Manifest next update:     Wed 30 Jul 2025 08:33:01 +0000
Files and hashes:         1: ZH5crcsfv367iZpyGcOg8D0_ew0.crl (hash: b4FqYWxfLJYNi7WUdZRDg+P/nX3mUNHg5jmTS/MpEwI=)
                          2: 533DC25E60B511F0AB567568C4F9AE02.roa (hash: 9UZrURL/5cYm+3q79UbhWbJw8l3P1ZGycupb15ORpsw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl
                          rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 08:33:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8 (0x8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91951DE, serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D
        Validity
            Not Before: Jul 23 08:33:01 2025 GMT
            Not After : Jul 30 08:33:01 2025 GMT
        Subject: CN=68809e3d-3cf9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:32:e2:87:04:26:0f:62:1d:9e:14:69:e2:fc:
                    de:03:bf:d8:1e:3b:5b:5a:92:d4:97:2f:53:9f:bb:
                    7e:85:4c:63:69:d1:9f:af:df:12:49:d7:7a:a6:34:
                    08:44:22:09:e0:1f:7c:3b:c6:c2:a8:78:99:43:5b:
                    1b:cd:d2:da:6a:36:c8:8d:bb:be:33:5d:26:8d:7a:
                    c9:d3:96:7a:02:b4:f3:61:35:8d:a0:e1:31:fe:d8:
                    6d:94:2f:c7:85:f4:51:70:44:89:05:88:84:22:40:
                    9c:1c:3b:46:05:50:31:eb:14:d3:8d:8c:09:a0:cf:
                    56:55:b9:74:24:37:13:7a:f2:9f:1f:73:d8:2b:44:
                    1d:5a:12:01:bb:f3:38:dc:4b:61:21:79:74:eb:3f:
                    14:cd:d0:1d:75:c7:d6:9f:32:7c:77:8e:28:d9:c8:
                    e5:cb:47:46:99:dc:8a:37:87:a3:21:d7:44:e1:1b:
                    a5:15:02:e1:47:19:2b:ad:29:3d:25:c0:c3:ce:ec:
                    38:26:91:cc:0b:70:4c:33:d8:2d:01:af:00:4b:1a:
                    82:d3:8c:00:bf:f4:d2:54:4a:c5:32:a2:ab:7e:07:
                    0e:6a:b3:e0:56:c6:0c:14:69:ee:79:a5:7e:79:eb:
                    b0:13:cf:38:4c:67:09:3e:b8:20:10:a1:cf:f5:3f:
                    11:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2A:B5:23:04:35:4A:C4:D5:1C:43:EE:6B:25:E2:8D:3D:66:70:18:1F
            X509v3 Authority Key Identifier:
                keyid:64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         79:51:ff:32:4c:f1:13:15:10:1c:d8:a8:31:db:5b:e2:c1:6b:
         9a:d8:ae:b8:9b:9e:35:e7:b8:d3:5a:6e:04:87:d7:c6:9f:4b:
         1a:41:f2:e0:3c:d4:86:e0:4a:0b:37:79:3b:42:5b:69:30:9e:
         80:02:82:a3:0c:93:34:eb:cc:c8:c6:9d:fc:0e:2a:9b:6f:37:
         b7:e0:a7:12:e5:53:0e:09:30:af:2c:65:32:02:34:95:2b:96:
         2c:0b:41:21:f0:3c:17:97:64:ab:c2:2f:51:a8:7a:9b:82:e3:
         c3:a2:80:57:24:bc:b6:91:bc:94:dd:4f:88:c7:47:88:c9:4d:
         bc:a5:27:1e:3c:d2:73:26:68:9e:d8:55:b0:44:54:b6:c6:ab:
         d1:3c:d8:fa:a7:9e:a2:af:1a:eb:ec:7a:c3:0b:17:1e:6b:5b:
         53:66:24:93:71:e1:0c:d4:8a:c6:c1:4d:8d:96:7e:66:3d:a1:
         44:ac:dc:4c:f3:1f:b3:42:87:fb:f5:b8:c6:95:f4:d0:1d:da:
         fb:fc:ed:38:ba:4b:41:fa:a9:3a:d5:f3:2b:78:c6:4c:f0:09:
         7c:a2:13:5a:06:f5:69:71:1c:00:0b:f4:41:ee:a9:0e:de:d6:
         79:55:a4:21:dc:bc:17:68:2c:63:07:c7:0a:fb:0d:3b:1a:fd:
         fd:c9:69:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 04:59:33 2025 by rpki-client