Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft
File:                     ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft (raw, json)
Hash identifier:          Pvdt5QhY2sFVxCsYw4H2pqzRdEvzuQrGa62Hd1yC5Xk=
Subject key identifier:   96:45:52:ED:9A:34:9E:AB:3A:ED:D4:9D:58:4D:BB:DF:3A:AE:AB:3E
Authority key identifier: 65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD
Certificate issuer:       /CN=A91E4743/serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD
Certificate serial:       08CE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft
Manifest number:          08C5
Signing time:             Fri 08 Aug 2025 20:49:05 +0000
Manifest this update:     Fri 08 Aug 2025 20:49:05 +0000
Manifest next update:     Fri 15 Aug 2025 20:49:05 +0000
Files and hashes:         1: ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl (hash: mS9RQhkxRMCfX1qOpVZ7WsIzllfXNPzZAD6rsdjQprY=)
                          2: 1B2E0738BB7011EA93F7DE4EC4F9AE02.roa (hash: Kkq3FSGMJtrxAckL14K8lEjZBbSHWGV4MxpopXgePZY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl
                          rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 05:57:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2254 (0x8ce)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E4743, serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD
        Validity
            Not Before: Aug  8 20:49:05 2025 GMT
            Not After : Aug 15 20:49:05 2025 GMT
        Subject: CN=689662c1-b7cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:b0:13:a8:18:5c:3e:53:9d:8b:8e:41:46:b4:
                    9c:19:3f:76:66:1e:eb:46:bb:c4:22:a3:69:e1:ce:
                    11:b1:7a:5d:59:ea:d3:ae:23:51:73:7f:ca:47:de:
                    61:b3:51:82:c8:37:d2:18:7f:17:f5:7b:90:2a:79:
                    52:2c:b5:8b:d6:04:2b:e5:9d:4f:0d:42:7c:8a:af:
                    c8:9c:4f:e7:1b:ec:a0:39:dd:0b:56:5d:5f:44:ae:
                    55:79:90:64:28:95:eb:db:3e:a7:16:d7:24:e0:ff:
                    15:58:81:71:7b:64:34:df:47:86:33:84:57:b1:46:
                    94:10:88:ba:d6:61:d1:25:1c:97:48:8b:39:ba:50:
                    38:40:a6:07:19:37:05:e1:99:f6:75:23:6d:96:b3:
                    46:c8:36:6f:8a:6b:7d:d7:5c:28:82:12:9b:76:82:
                    5f:d8:b3:b9:79:c0:64:a9:d6:4a:e9:3a:db:c0:d0:
                    0f:81:e5:76:7b:3f:7e:b4:29:85:51:1f:91:77:25:
                    e3:8c:bc:10:17:37:a0:7d:25:ad:0a:7e:27:67:e0:
                    cc:37:af:00:e2:9e:fd:73:af:b3:fb:f5:a7:85:b1:
                    fe:e3:09:f2:62:8a:2a:8e:54:40:50:c6:1a:ff:f5:
                    2c:61:df:88:ee:e3:d2:f4:46:97:30:93:26:51:75:
                    99:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                96:45:52:ED:9A:34:9E:AB:3A:ED:D4:9D:58:4D:BB:DF:3A:AE:AB:3E
            X509v3 Authority Key Identifier:
                keyid:65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:80:e5:b9:ef:f3:a2:e8:f2:e4:58:ff:3b:fb:32:7a:d5:32:
         dd:73:89:b5:87:13:de:48:56:97:41:bc:5d:e9:8a:07:dd:a0:
         d0:bf:2e:83:57:90:83:b8:b5:b7:0c:80:0f:bb:64:58:c5:66:
         bd:27:7c:82:b9:20:9b:23:6f:0b:d6:bf:15:6e:fe:cb:6d:ab:
         51:12:c4:2f:98:37:ca:fe:87:8d:27:1f:cd:19:ba:2e:7e:cb:
         00:45:9c:65:ad:cb:50:47:e8:db:b7:03:f0:75:d3:ec:22:07:
         cb:ae:e1:4b:b1:6d:f3:70:34:47:e1:d9:4a:0c:33:44:d6:38:
         e2:49:b9:63:d8:75:d4:49:96:f5:ed:72:fe:55:69:8d:4a:5f:
         b1:f8:58:b1:6b:31:f9:c7:c2:77:96:03:02:ac:19:ed:17:aa:
         23:93:56:9c:7d:4f:35:ee:02:83:bd:28:e7:82:db:1f:50:d9:
         76:c4:28:03:f8:5b:0b:3f:30:55:38:45:47:a0:cd:46:22:7b:
         c7:14:ab:80:88:3b:8c:db:77:1d:db:1f:e1:19:77:cd:4d:f5:
         65:68:a7:a0:81:2b:3f:f0:9d:0d:a9:af:c3:08:48:ad:33:b6:
         d6:b6:b2:91:77:b1:ec:1d:64:84:39:81:69:9b:ec:f9:98:89:
         13:30:ff:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:08:07 2025 by rpki-client