Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft
File:                     ZpvKCpDeWAORqO5km-TvvjbOhBg.mft (raw, json)
Hash identifier:          knKfXqwl/Po8PLzHwgxGadfDhuySdb4xEoPn1N/8aeA=
Subject key identifier:   8D:BD:D6:59:29:EE:B4:D0:31:D0:C7:F2:41:CB:72:CC:CD:D9:8D:D2
Authority key identifier: 66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18
Certificate issuer:       /CN=A918031D/serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418
Certificate serial:       A6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft
Manifest number:          A4
Signing time:             Fri 13 Jun 2025 05:07:11 +0000
Manifest this update:     Fri 13 Jun 2025 05:07:10 +0000
Manifest next update:     Fri 20 Jun 2025 05:07:10 +0000
Files and hashes:         1: ZpvKCpDeWAORqO5km-TvvjbOhBg.crl (hash: DSySkPIEXjbuoQyiK2+jncVgL+nDAJcQLlftijqbE9A=)
                          2: 314597D64EEF11EF8BACFA30C4F9AE02.roa (hash: NfFMnt+VEyqSWVwOi+J918td9eREww3K9CdjnLDT82w=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl
                          rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 20 Jun 2025 05:07:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 166 (0xa6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918031D, serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418
        Validity
            Not Before: Jun 13 05:07:10 2025 GMT
            Not After : Jun 20 05:07:10 2025 GMT
        Subject: CN=684bb1ff-a48a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:b8:12:df:ea:92:9b:8c:e6:b6:81:0f:39:a9:
                    5e:d3:c1:39:e8:d1:a8:e2:5a:a6:4f:9c:a3:03:1a:
                    84:e3:f4:c2:e6:af:57:e8:27:3a:58:24:4a:70:9f:
                    2a:73:c2:a6:a5:c9:aa:d8:d2:e1:e8:22:76:c8:2a:
                    5b:2c:cc:42:ba:10:bc:a3:a4:67:2c:b1:d8:12:e1:
                    e8:43:60:87:c3:44:02:0c:75:c4:a8:1b:31:a9:af:
                    4e:c4:bb:7d:5f:7c:7a:cb:43:25:63:c2:a1:0d:86:
                    c6:2a:8f:0b:0e:b2:58:76:b3:e7:98:20:4c:75:2c:
                    ad:e9:91:33:bc:3a:7b:6d:d6:06:43:bc:fe:dc:73:
                    3b:09:12:72:f8:d9:81:07:55:10:5b:3a:53:49:87:
                    7d:6b:33:95:7b:07:79:4a:5a:11:32:ae:ba:9f:e1:
                    30:1d:59:5d:e1:de:01:8d:23:c1:86:d3:eb:9e:0a:
                    05:36:cb:89:a6:89:f4:47:d4:8d:c8:c2:64:24:4d:
                    fc:f0:b6:25:77:ed:1e:1b:ea:32:e0:13:a2:44:37:
                    58:57:62:12:95:6f:a1:79:40:6c:fa:4b:7d:b2:9b:
                    86:ff:36:81:2e:a4:73:89:36:96:6b:80:2e:d2:4c:
                    ee:87:10:40:5f:33:3f:f4:d2:90:db:58:9e:e2:32:
                    e7:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:BD:D6:59:29:EE:B4:D0:31:D0:C7:F2:41:CB:72:CC:CD:D9:8D:D2
            X509v3 Authority Key Identifier:
                keyid:66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:1c:72:94:82:d5:92:ec:ff:09:e8:0a:02:64:9f:e8:7e:2c:
         80:d1:84:37:e6:28:0c:60:97:1e:6c:13:69:c2:25:e5:df:5b:
         d2:8f:d3:60:b3:df:34:29:59:97:b8:96:42:de:85:48:89:30:
         c9:2b:df:b2:0a:1c:9b:0c:3b:3e:12:d6:1f:5a:d0:e1:e8:03:
         d5:af:9e:0c:4e:df:37:94:79:21:3d:50:1a:84:35:3c:f0:6e:
         db:4d:c1:49:6f:df:c8:47:e6:75:a5:f9:41:82:b3:cf:43:52:
         f7:d9:be:2a:db:16:a4:60:89:5a:ac:6c:b4:cd:94:7e:ae:53:
         66:75:4a:8b:25:34:89:5f:4e:65:10:57:f7:d9:c5:53:52:e5:
         6c:9c:52:b6:14:a3:94:f8:3d:cb:c4:04:71:9a:42:aa:34:c7:
         7e:ee:31:08:20:59:52:c0:d2:f5:06:25:67:78:99:54:42:f6:
         5c:b7:da:1b:bc:de:d4:25:fe:d6:8b:d9:c0:1d:64:82:f1:63:
         8d:c3:fc:86:a1:a6:8c:e7:00:d2:f9:b5:68:a8:ea:b4:18:2e:
         30:84:31:75:b8:a8:96:2a:49:b9:1d:de:fc:f5:e4:bf:cc:48:
         e8:4c:b3:a4:2a:c9:b9:81:0a:f8:b2:63:b5:c6:dc:e2:2b:e5:
         85:d5:fc:b8
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODAzMUQxMTAvBgNVBAUTKDY2OUJDQTBBOTBERTU4MDM5MUE4RUU2NDlCRTRFRkJF
MzZDRTg0MTgwHhcNMjUwNjEzMDUwNzEwWhcNMjUwNjIwMDUwNzEwWjAYMRYwFAYD
VQQDEw02ODRiYjFmZi1hNDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAs7gS3+qSm4zmtoEPOale08E56NGo4lqmT5yjAxqE4/TC5q9X6Cc6WCRKcJ8q
c8Kmpcmq2NLh6CJ2yCpbLMxCuhC8o6RnLLHYEuHoQ2CHw0QCDHXEqBsxqa9OxLt9
X3x6y0MlY8KhDYbGKo8LDrJYdrPnmCBMdSyt6ZEzvDp7bdYGQ7z+3HM7CRJy+NmB
B1UQWzpTSYd9azOVewd5SloRMq66n+EwHVld4d4BjSPBhtPrngoFNsuJpon0R9SN
yMJkJE388LYld+0eG+oy4BOiRDdYV2ISlW+heUBs+kt9spuG/zaBLqRziTaWa4Au
0kzuhxBAXzM/9NKQ21ie4jLn/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI291lkp
7rTQMdDH8kHLcszN2Y3SMB8GA1UdIwQYMBaAFGabygqQ3lgDkajuZJvk7742zoQY
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDMxRC9FRDQ2M0JDNjRF
RUUxMUVGQjFEMzMwMzBDNEY5QUUwMi9acHZLQ3BEZVdBT1JxTzVrbS1UdnZqYk9o
QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1pwdktDcERlV0FPUnFPNWttLVR2dmpiT2hCZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
MDMxRC9FRDQ2M0JDNjRFRUUxMUVGQjFEMzMwMzBDNEY5QUUwMi9acHZLQ3BEZVdB
T1JxTzVrbS1UdnZqYk9oQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQA7HHKUgtWS7P8J6AoCZJ/ofiyA0YQ35igMYJcebBNpwiXl31vSj9Ng
s980KVmXuJZC3oVIiTDJK9+yChybDDs+EtYfWtDh6APVr54MTt83lHkhPVAahDU8
8G7bTcFJb9/IR+Z1pflBgrPPQ1L32b4q2xakYIlarGy0zZR+rlNmdUqLJTSJX05l
EFf32cVTUuVsnFK2FKOU+D3LxARxmkKqNMd+7jEIIFlSwNL1BiVneJlUQvZct9ob
vN7UJf7Wi9nAHWSC8WONw/yGoaaM5wDS+bVoqOq0GC4whDF1uKiWKkm5Hd789eS/
zEjoTLOkKsm5gQr4smO1xtziK+WF1fy4
-----END CERTIFICATE-----
Generated at Fri Jun 13 17:15:16 2025 by rpki-client