Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft
File:                     CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json)
Hash identifier:          FZuChYcsR5DK4QWjQ3KCzJh8rQl8yb59eBNMKFAQP5Y=
Subject key identifier:   89:BE:9C:46:B6:86:45:81:57:50:4C:39:B5:B5:8D:D8:26:1C:A6:71
Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01
Certificate issuer:       /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01
Certificate serial:       07C6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft
Manifest number:          145D
Signing time:             Fri 08 Aug 2025 18:23:02 +0000
Manifest this update:     Fri 08 Aug 2025 18:23:01 +0000
Manifest next update:     Fri 15 Aug 2025 18:23:01 +0000
Files and hashes:         1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: t+1DDU/qml7RkvY2Hm2LQs3euzpClc4cLrCebZ7Gsi4=)
                          2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: B2tDIxeYNCo5gTNbHXofF/quSOaekq5ljkbk6cQhp5U=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl
                          rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1990 (0x7c6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01
        Validity
            Not Before: Aug  8 18:23:01 2025 GMT
            Not After : Aug 15 18:23:01 2025 GMT
        Subject: CN=68964085-2e33
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:57:24:0e:87:a4:60:62:a9:de:84:0c:c9:76:
                    e7:62:db:55:28:cf:22:fe:ca:c3:f2:59:7d:5b:94:
                    d4:5b:56:ae:b7:d6:46:c9:a4:4b:25:2f:73:16:36:
                    e4:5f:75:21:90:95:e8:67:d6:7c:b7:46:f2:d4:00:
                    8a:04:0a:c8:d9:0a:44:06:2a:d6:de:f2:f8:b3:b1:
                    4d:41:ea:3a:78:53:8f:fa:56:2e:39:e8:93:66:ad:
                    ae:20:2d:7d:11:39:33:ae:47:00:b2:ac:82:1d:69:
                    66:95:8b:20:8f:4b:90:3d:d1:1d:6b:b7:19:2c:95:
                    fd:ce:9a:43:f7:7b:e0:a7:6c:8f:99:a7:4d:78:a1:
                    23:1c:0b:f6:49:06:b1:45:ae:56:93:11:d9:e4:6e:
                    e9:f1:5c:6d:c5:ec:2c:aa:64:0e:b8:3c:cc:b5:cc:
                    49:7e:ce:84:0f:2b:ab:2f:37:21:20:0b:eb:b3:c9:
                    ba:43:eb:06:2b:47:bb:16:47:db:0a:62:51:2a:ab:
                    ca:d7:b3:4d:7c:0c:b6:24:b3:57:cf:fa:33:79:5f:
                    8f:a6:5f:84:f3:49:22:eb:ea:0d:0a:4a:c4:86:87:
                    d4:2e:91:96:b6:60:33:90:2d:66:e7:02:5a:75:b9:
                    29:23:3f:fa:48:a1:66:cb:82:6d:27:12:f8:2a:85:
                    2e:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:BE:9C:46:B6:86:45:81:57:50:4C:39:B5:B5:8D:D8:26:1C:A6:71
            X509v3 Authority Key Identifier:
                keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:1a:ac:64:87:b7:af:d8:16:bd:00:2a:f2:55:ae:79:fa:90:
         ca:34:82:9a:cd:ef:01:bc:90:7c:2e:47:f3:92:4b:9e:65:46:
         0a:6b:05:56:a5:26:39:32:67:eb:33:98:a3:74:bb:91:e8:71:
         1c:5b:ff:cc:f2:98:ab:ee:91:21:43:09:06:c0:0d:6d:73:67:
         51:fa:e7:45:91:fa:9d:53:c5:f1:2d:22:72:41:6b:86:f9:c6:
         7d:37:ca:d2:f7:68:27:6f:5e:95:fb:73:e4:97:20:d7:93:93:
         a1:d6:33:55:58:f9:4d:b7:28:5a:ee:0d:98:e2:c4:40:3b:22:
         f4:77:89:ba:22:eb:74:fc:8c:53:e3:31:a7:60:31:a9:a2:72:
         c2:1e:ff:25:53:b0:99:28:b2:60:0f:02:de:a7:14:88:17:5d:
         22:9d:58:d6:37:97:a7:1a:21:aa:ad:05:f4:4b:82:f2:52:17:
         59:78:72:ae:cc:1b:a5:0c:33:f3:a8:a8:e4:2c:1e:8d:96:3d:
         a0:7e:be:02:d2:9a:36:3b:55:6f:af:4e:36:d7:e3:c4:05:f6:
         55:41:7a:0c:8c:3a:e2:d5:cd:d5:e5:1f:f7:a3:89:45:a0:ee:
         11:92:94:60:2d:39:2b:7b:f9:29:38:1f:d1:0f:c8:26:48:09:
         70:dd:21:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:23:40 2025 by rpki-client