Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft
File:                     ZpvKCpDeWAORqO5km-TvvjbOhBg.mft (raw, json)
Hash identifier:          HpfLC/5KX7BXI9fj2vg20QxoEVI9Q2Dz4cyr/Jzngss=
Subject key identifier:   1B:B6:C5:F3:3D:93:7A:38:D2:58:BE:F8:4B:80:B6:77:3A:1E:2B:1C
Authority key identifier: 66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18
Certificate issuer:       /CN=A918031D/serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418
Certificate serial:       A5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft
Manifest number:          A3
Signing time:             Wed 11 Jun 2025 05:35:33 +0000
Manifest this update:     Wed 11 Jun 2025 05:35:33 +0000
Manifest next update:     Wed 18 Jun 2025 05:35:33 +0000
Files and hashes:         1: ZpvKCpDeWAORqO5km-TvvjbOhBg.crl (hash: xW9heeO9AZTZFrH/ZuXVWG57QSebtxGV07pNM+HWcWo=)
                          2: 314597D64EEF11EF8BACFA30C4F9AE02.roa (hash: NfFMnt+VEyqSWVwOi+J918td9eREww3K9CdjnLDT82w=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl
                          rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 18 Jun 2025 05:35:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 165 (0xa5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918031D, serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418
        Validity
            Not Before: Jun 11 05:35:33 2025 GMT
            Not After : Jun 18 05:35:33 2025 GMT
        Subject: CN=684915a5-5561
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:de:57:ed:8e:61:82:e1:c3:eb:91:27:7f:2e:
                    b0:f0:b2:db:7e:56:af:14:2a:72:10:34:82:98:70:
                    3e:07:6c:86:7a:53:d2:6f:f0:11:7b:72:11:e0:dc:
                    1e:d7:fe:f8:e7:80:8b:48:b0:22:25:1f:de:30:75:
                    8b:21:3c:43:4e:c7:6b:e9:ec:d4:4f:84:18:45:ff:
                    71:73:d3:4b:ec:9f:11:b5:a5:61:d6:3d:b5:99:34:
                    b9:52:2d:3a:0b:1d:09:9c:51:20:88:9f:58:83:fc:
                    33:bf:3e:63:2c:2e:ba:23:0c:70:2c:ca:e5:0b:59:
                    b0:fc:bd:ee:a1:7f:4a:ad:19:c6:d7:b5:6a:29:e8:
                    ff:fc:e5:83:37:57:52:ca:b3:56:52:ce:67:37:6c:
                    7b:b7:44:98:3c:fb:e1:85:ab:0d:84:7c:05:20:f0:
                    e4:5e:e7:7d:40:17:f6:38:e6:c1:4a:f1:a0:32:d1:
                    54:9b:2a:55:91:b3:4f:c5:03:18:cb:0b:b9:dd:1a:
                    4e:64:da:6f:0f:9a:14:d5:40:28:f1:b6:b0:ba:81:
                    6c:54:31:e7:4b:30:bd:a7:26:1c:aa:49:d3:50:e3:
                    45:ab:af:51:11:7d:ce:48:a5:44:eb:4c:7c:b4:02:
                    36:50:67:56:ce:9e:a2:dc:28:81:d7:17:4b:d5:57:
                    d6:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:B6:C5:F3:3D:93:7A:38:D2:58:BE:F8:4B:80:B6:77:3A:1E:2B:1C
            X509v3 Authority Key Identifier:
                keyid:66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b1:91:b1:bd:50:da:c2:a8:45:dc:65:ce:73:17:c7:43:77:8e:
         50:bf:c2:3d:d7:a5:06:9c:42:74:be:b3:af:7e:d3:d5:89:64:
         76:ba:8c:89:4b:0a:df:b2:e0:d1:68:63:86:c9:e4:f3:a6:c2:
         e3:a1:a8:ad:50:98:32:16:33:88:13:a2:77:ea:fd:c7:26:0a:
         02:08:18:82:c3:c1:c3:3a:e7:ec:3a:f4:48:51:30:93:b3:f4:
         bd:34:7f:12:8a:0c:0f:f0:7b:c1:30:54:93:77:fd:7e:0c:51:
         c8:8c:a2:c9:de:c6:40:23:f3:ed:13:86:52:2b:e2:da:7a:20:
         70:63:ac:42:e3:e7:4a:5b:56:90:2a:45:4c:ec:6a:c0:a5:da:
         e4:88:ac:8d:97:2e:ec:0c:fe:fb:ac:ee:77:9d:e8:35:c5:09:
         3e:db:49:a6:1e:b1:36:3f:5c:30:9d:1d:a2:fa:b4:04:6f:16:
         86:dd:7b:da:04:87:41:3b:9a:02:df:df:e7:c4:16:dd:c4:dd:
         49:10:17:d0:38:27:9c:2f:d3:6f:93:15:39:42:65:0f:d7:63:
         a7:0c:17:2b:a0:45:80:7c:a3:9f:66:4a:88:27:66:62:92:e6:
         05:9f:37:eb:22:ca:5b:ca:6f:80:a9:67:a9:f9:9c:e9:77:b6:
         6f:4b:fa:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 12:34:16 2025 by rpki-client