Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft
File:                     wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft (raw, json)
Hash identifier:          kOU6eKpP9DeDEnqbNNW0Z96dHcdD8So/IRklH+niotQ=
Subject key identifier:   FC:57:D8:0E:59:9C:4B:E7:8E:CF:FC:DE:80:6E:62:EF:7E:98:BA:3E
Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72
Certificate issuer:       /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72
Certificate serial:       0E5F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft
Manifest number:          0DF5
Signing time:             Thu 16 May 2024 18:37:51 +0000
Manifest this update:     Thu 16 May 2024 18:37:51 +0000
Manifest next update:     Thu 23 May 2024 18:37:51 +0000
Files and hashes:         1: wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl (hash: qVnu+5XK/iu9xfxxjKY16Gr9CKkQj1kzUnY4HAC0f+0=)
                          2: E563749EE95211EDA4284D3BC4F9AE02.roa (hash: cKXumGBSaNEhDOCW+Px2ZFG9XlyHMMr33FKaEhpGJ7M=)
                          3: ED2BF5FEDF3711ED99AC7D58C4F9AE02.roa (hash: 2DySL4ObOCmXyb+PPtfKYhuKGwJyecMzBCKZCiDkN6w=)
                          4: 21C5EC42C27411ED9C3E8009C4F9AE02.roa (hash: cn8eRj0oCpNU6HWGhqdTOckkgR7WPqDDUTCkzR/Q9R8=)
                          5: B1FABD6CAFEB11EBB965A648C4F9AE02.roa (hash: NKJhX3Zw2T8VjXKwp117ywoJ8+iUSkOQd4VbQaTma90=)
                          6: 369A67D4B01B11EEBD075854C4F9AE02.roa (hash: XbK9ZS66lQ8Sh5MzdlkIQKDZwfgQBO6b/QK9xz6pZFM=)
                          7: 416881CE924011EB8767521BC4F9AE02.roa (hash: pqLESChkdmP/9OVTdbyMMz2k1ZDaIE9YZCoNErEaxrA=)
                          8: A9630ACCF78011ED829BBD5DC4F9AE02.roa (hash: /1k8cf09XpBT8IXB/KxmxDgDn3BpN9om+/6lhG0uR6Y=)
                          9: B2B5EE70AFEB11EBB965A648C4F9AE02.roa (hash: 7XR5r74GcilldrrcFfIwt0qfXtc6J6p+OWBLfzFoFfw=)
                          10: E23B9C48F97D11EDB12DE418C4F9AE02.roa (hash: sriNW2tVnJV2jSVMbNiK9zJcT3+r67WYgA7Qo3J6GfY=)
                          11: 1A582DBABDCB11ED998A723DC4F9AE02.roa (hash: AJ4MEoVFl8Yoc7cWv7ajIsgfC5XAGoNNmz9nCNaNpao=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl
                          rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 May 2024 18:35:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3679 (0xe5f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72
        Validity
            Not Before: May 16 18:37:51 2024 GMT
            Not After : May 23 18:37:51 2024 GMT
        Subject: CN=6646527f-6ad6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:43:36:d2:93:bc:e5:2f:0d:86:0d:03:11:ee:
                    a0:7b:f8:d3:a9:d2:79:b2:b5:23:9b:da:82:8e:8d:
                    f7:19:11:29:bd:57:f0:53:72:b9:0f:ec:db:3a:90:
                    1d:b0:c1:93:63:66:39:d0:a7:aa:ff:58:65:61:2c:
                    97:3c:fa:ac:e3:bf:a3:5f:5a:a7:a7:81:86:20:d6:
                    1a:b0:7f:f0:ba:c3:28:90:0e:4a:bc:69:b6:5b:fa:
                    b3:85:a1:a4:84:5b:7e:52:c5:56:49:89:87:d8:d4:
                    25:80:c9:c0:18:a3:1a:e9:39:81:67:bf:3e:a9:8d:
                    1d:e2:da:2e:0f:ad:ee:96:03:af:04:fe:99:a7:66:
                    69:a9:79:fb:fd:88:11:20:90:e1:a9:4e:75:11:6d:
                    1d:39:ce:4c:61:e5:7c:17:57:1c:5b:28:1e:d4:49:
                    c7:9e:7b:08:99:aa:af:a5:7b:fb:7a:a0:85:e8:6b:
                    d6:fe:a2:3e:d3:72:75:57:27:66:4c:58:9d:93:36:
                    9c:39:2c:a6:7f:e9:4f:15:92:21:ff:a1:ec:04:98:
                    3a:1c:2e:c7:9c:ca:a7:d3:8d:c3:15:d5:c9:8d:d5:
                    54:ab:94:fa:ae:c6:95:47:10:64:0a:33:17:3e:1f:
                    40:fa:e6:2a:a2:72:d0:69:d4:fe:d8:54:f4:0d:c1:
                    d1:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:57:D8:0E:59:9C:4B:E7:8E:CF:FC:DE:80:6E:62:EF:7E:98:BA:3E
            X509v3 Authority Key Identifier:
                keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:a6:e5:32:a3:56:b9:dc:23:50:b7:9b:e0:62:97:e4:e9:ee:
         a8:32:8b:ce:e3:86:ab:7f:00:96:d2:6f:33:bc:b2:cd:46:3f:
         2b:42:96:c8:70:df:8f:13:32:34:8a:ef:43:cc:c8:ea:f2:65:
         db:b4:1f:00:b7:98:18:3e:c3:86:86:99:0f:fa:aa:bd:4f:6f:
         cf:3f:7e:f3:19:4f:a1:07:03:b0:87:2f:dc:6f:bf:81:fe:ee:
         7f:d9:9a:10:d7:97:63:24:77:59:c3:a1:81:1c:91:9c:1e:a7:
         9f:cf:0b:8c:57:37:6c:7e:0f:6d:92:80:fe:5d:b5:3e:2b:a9:
         20:a5:98:2c:b9:86:1c:78:04:8b:04:9a:85:d4:be:23:1c:bb:
         a0:b2:bb:7c:55:89:af:e7:e9:82:a5:c7:8d:bb:e0:bd:8e:22:
         58:d5:58:02:4b:d5:41:6f:f9:bd:a8:8a:7d:7b:0f:ab:cb:41:
         76:a7:91:22:7e:75:9b:7b:72:79:f5:f9:b5:70:40:6d:26:37:
         97:25:56:29:98:c8:65:d8:30:f6:5f:7b:f5:e6:0d:15:12:f8:
         4e:1c:f0:36:86:76:49:29:78:7e:34:6b:a1:9c:54:3c:95:6f:
         2c:e6:ee:e9:a7:48:dc:eb:73:62:43:88:ca:76:54:24:fd:04:
         14:ae:58:cf
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICDl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC
NTI3NzZGNzIwHhcNMjQwNTE2MTgzNzUxWhcNMjQwNTIzMTgzNzUxWjAYMRYwFAYD
VQQDEw02NjQ2NTI3Zi02YWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvEM20pO85S8Nhg0DEe6ge/jTqdJ5srUjm9qCjo33GREpvVfwU3K5D+zbOpAd
sMGTY2Y50Keq/1hlYSyXPPqs47+jX1qnp4GGINYasH/wusMokA5KvGm2W/qzhaGk
hFt+UsVWSYmH2NQlgMnAGKMa6TmBZ78+qY0d4touD63ulgOvBP6Zp2ZpqXn7/YgR
IJDhqU51EW0dOc5MYeV8F1ccWyge1EnHnnsImaqvpXv7eqCF6GvW/qI+03J1Vydm
TFidkzacOSymf+lPFZIh/6HsBJg6HC7HnMqn043DFdXJjdVUq5T6rsaVRxBkCjMX
Ph9A+uYqonLQadT+2FT0DcHRVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxX2A5Z
nEvnjs/83oBuYu9+mLo+MB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz
RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi
M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
NkJGRi9FNDJCRUFDMjkzRjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFB
V2kxSVc2UVMydEsxSjNiM0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBmpuUyo1a53CNQt5vgYpfk6e6oMovO44arfwCW0m8zvLLNRj8rQpbI
cN+PEzI0iu9DzMjq8mXbtB8At5gYPsOGhpkP+qq9T2/PP37zGU+hBwOwhy/cb7+B
/u5/2ZoQ15djJHdZw6GBHJGcHqefzwuMVzdsfg9tkoD+XbU+K6kgpZgsuYYceASL
BJqF1L4jHLugsrt8VYmv5+mCpceNu+C9jiJY1VgCS9VBb/m9qIp9ew+ry0F2p5Ei
fnWbe3J59fm1cEBtJjeXJVYpmMhl2DD2X3v15g0VEvhOHPA2hnZJKXh+NGuhnFQ8
lW8s5u7pp0jc63NiQ4jKdlQk/QQUrljP
-----END CERTIFICATE-----
Generated at Thu May 16 19:10:54 2024 by rpki-client on console-fra.rpki-client.org