Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft
File:                     ZpvKCpDeWAORqO5km-TvvjbOhBg.mft (raw, json)
Hash identifier:          lGFxMQZ8PnmI/N75Nl4u8O7acUBK3NF0g9xnTLqO2d0=
Subject key identifier:   37:F5:64:83:0F:86:28:CA:7A:13:3B:5C:6C:0A:71:7C:07:18:0F:5D
Authority key identifier: 66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18
Certificate issuer:       /CN=A918031D/serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418
Certificate serial:       A4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft
Manifest number:          A2
Signing time:             Mon 09 Jun 2025 05:11:08 +0000
Manifest this update:     Mon 09 Jun 2025 05:11:07 +0000
Manifest next update:     Mon 16 Jun 2025 05:11:07 +0000
Files and hashes:         1: ZpvKCpDeWAORqO5km-TvvjbOhBg.crl (hash: UkMtMwiW/N6tjm2CZnS0C6JRH/EEgxKKnJ7ioAMoISU=)
                          2: 314597D64EEF11EF8BACFA30C4F9AE02.roa (hash: NfFMnt+VEyqSWVwOi+J918td9eREww3K9CdjnLDT82w=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl
                          rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 16 Jun 2025 05:11:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 164 (0xa4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918031D, serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418
        Validity
            Not Before: Jun  9 05:11:07 2025 GMT
            Not After : Jun 16 05:11:07 2025 GMT
        Subject: CN=68466ceb-e74c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:fe:57:e9:87:0f:fe:01:5e:63:dc:dd:df:34:
                    8c:44:0a:52:7a:cd:07:0f:dd:60:6d:6b:48:87:3e:
                    3f:fa:ee:e4:88:00:dd:14:1f:10:68:8d:7c:fb:bb:
                    09:d8:6f:1c:4c:e5:2f:81:b3:4e:3b:13:38:11:68:
                    58:a9:b4:47:14:95:69:96:57:da:b5:c1:ed:7e:fc:
                    b0:a1:8a:6f:a2:e3:49:4d:ed:81:98:ca:a2:db:8c:
                    e1:68:08:7a:24:30:a1:7e:a2:da:05:c8:5b:04:dd:
                    7e:87:7a:bc:e6:50:bc:16:f3:1a:0d:21:33:85:ca:
                    17:9d:33:67:50:fb:d5:93:a1:d3:ed:84:e6:09:68:
                    22:e1:fd:3e:7d:47:85:e8:b0:86:d7:a3:7f:eb:ab:
                    92:c4:e9:6c:ea:37:e0:4e:93:f3:d3:0a:64:fa:65:
                    76:4d:0a:75:40:32:7e:dc:1e:2e:77:2f:61:53:49:
                    ec:05:b0:4d:fb:ec:58:0f:8e:94:95:ad:96:0b:90:
                    4d:7b:97:a8:55:c0:39:16:1d:e3:74:b4:f8:8d:3f:
                    97:c7:06:92:35:b9:d6:ca:8e:1f:91:ff:5d:fb:c0:
                    f3:61:68:43:87:7b:8a:75:2e:77:c0:39:ca:06:b6:
                    24:53:b6:87:f9:1d:e1:f0:d1:bc:e3:6f:6e:7b:30:
                    f9:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:F5:64:83:0F:86:28:CA:7A:13:3B:5C:6C:0A:71:7C:07:18:0F:5D
            X509v3 Authority Key Identifier:
                keyid:66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5e:ac:27:ac:7d:61:4c:5d:0d:78:ec:4a:e8:e1:42:17:d8:6b:
         f4:12:21:23:61:00:b0:cb:f2:f6:ca:79:57:ae:89:b5:7a:70:
         57:fd:83:23:f6:06:db:00:69:34:c0:18:41:65:60:f7:70:7b:
         87:b5:63:6b:5e:8a:16:48:13:28:b3:89:29:fd:85:80:57:c2:
         aa:53:e5:9d:54:7f:28:0f:1f:ae:6b:36:b1:4d:b9:9c:a7:20:
         74:74:02:45:99:ae:67:b3:d9:e9:d4:f5:c1:3b:2b:47:c7:6e:
         0c:fc:52:40:82:03:8d:54:12:76:5b:e4:53:be:f3:88:14:1b:
         ec:ce:ad:3f:25:1b:d5:55:91:6b:9a:e0:0e:7d:7c:64:32:d0:
         45:29:14:fb:b6:66:c1:a7:65:b7:32:9e:19:0a:d6:ee:5b:97:
         39:9b:49:18:7c:cd:c9:9a:12:33:4c:d9:e8:a8:3b:2a:6d:14:
         9b:7a:7f:7d:d2:66:69:e8:1e:7b:ec:37:0e:af:57:c2:76:d4:
         ec:26:3a:7e:42:14:1b:01:e3:33:d6:93:64:63:0c:db:3a:5d:
         56:71:a4:07:db:26:37:1f:24:26:cc:20:2e:6f:45:13:e0:fc:
         7f:4b:02:82:64:92:67:21:ef:18:4b:29:33:d8:1b:d4:1b:16:
         34:c6:fd:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 19:04:44 2025 by rpki-client