Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft
File:                     wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft (raw, json)
Hash identifier:          +lyTJHZdU6ckAvYJ9/DOJYfyahD/vWFDw2OUEq7EJU4=
Subject key identifier:   DF:52:FE:D3:2E:BD:34:8C:DF:11:EC:9B:25:15:47:F9:EE:9F:33:76
Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72
Certificate issuer:       /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72
Certificate serial:       0E5D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft
Manifest number:          0DF3
Signing time:             Sun 12 May 2024 18:33:50 +0000
Manifest this update:     Sun 12 May 2024 18:33:49 +0000
Manifest next update:     Sun 19 May 2024 18:33:49 +0000
Files and hashes:         1: wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl (hash: VUdYg8SAzibpDFQpOJX7VnhCExg8PORaUMlqBZ38nws=)
                          2: E563749EE95211EDA4284D3BC4F9AE02.roa (hash: cKXumGBSaNEhDOCW+Px2ZFG9XlyHMMr33FKaEhpGJ7M=)
                          3: ED2BF5FEDF3711ED99AC7D58C4F9AE02.roa (hash: 2DySL4ObOCmXyb+PPtfKYhuKGwJyecMzBCKZCiDkN6w=)
                          4: 21C5EC42C27411ED9C3E8009C4F9AE02.roa (hash: cn8eRj0oCpNU6HWGhqdTOckkgR7WPqDDUTCkzR/Q9R8=)
                          5: B1FABD6CAFEB11EBB965A648C4F9AE02.roa (hash: NKJhX3Zw2T8VjXKwp117ywoJ8+iUSkOQd4VbQaTma90=)
                          6: 369A67D4B01B11EEBD075854C4F9AE02.roa (hash: XbK9ZS66lQ8Sh5MzdlkIQKDZwfgQBO6b/QK9xz6pZFM=)
                          7: 416881CE924011EB8767521BC4F9AE02.roa (hash: pqLESChkdmP/9OVTdbyMMz2k1ZDaIE9YZCoNErEaxrA=)
                          8: A9630ACCF78011ED829BBD5DC4F9AE02.roa (hash: /1k8cf09XpBT8IXB/KxmxDgDn3BpN9om+/6lhG0uR6Y=)
                          9: B2B5EE70AFEB11EBB965A648C4F9AE02.roa (hash: 7XR5r74GcilldrrcFfIwt0qfXtc6J6p+OWBLfzFoFfw=)
                          10: E23B9C48F97D11EDB12DE418C4F9AE02.roa (hash: sriNW2tVnJV2jSVMbNiK9zJcT3+r67WYgA7Qo3J6GfY=)
                          11: 1A582DBABDCB11ED998A723DC4F9AE02.roa (hash: AJ4MEoVFl8Yoc7cWv7ajIsgfC5XAGoNNmz9nCNaNpao=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl
                          rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 15 May 2024 02:42:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3677 (0xe5d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72
        Validity
            Not Before: May 12 18:33:49 2024 GMT
            Not After : May 19 18:33:49 2024 GMT
        Subject: CN=66410b8e-4bb0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:bf:dc:ee:f2:5a:eb:25:9f:ac:8f:08:9f:3a:
                    48:5e:55:f9:77:dd:23:41:a6:64:66:ef:cc:4e:b9:
                    7d:25:f6:a2:fb:91:71:12:97:44:e0:9e:82:ea:6d:
                    8b:0f:ba:1a:36:b6:0d:84:29:7d:59:f6:df:2f:e9:
                    98:e4:d2:aa:b6:27:f5:dc:22:2d:8f:38:4e:1a:69:
                    e1:b9:24:5f:f9:c3:de:a2:40:c5:d8:1e:32:d7:36:
                    e1:03:6d:35:e0:e4:00:32:26:a2:67:7d:d3:f2:d0:
                    82:d7:46:eb:c0:72:f4:39:48:75:1c:39:b8:60:99:
                    fd:a1:11:5d:aa:88:a2:b1:ae:92:88:1e:5e:85:aa:
                    05:f1:93:ce:99:7c:ef:58:89:d4:86:5c:c6:91:7b:
                    38:ed:53:0e:91:52:86:5e:6d:76:07:3a:c3:e8:6d:
                    13:02:8e:f9:0c:35:43:1c:e1:83:47:fa:c9:f7:83:
                    d0:d5:ac:c4:1a:5f:ff:a8:b2:17:b6:60:3c:c1:07:
                    39:e3:6f:f5:a5:b4:cf:9e:15:05:d6:8b:19:8c:8f:
                    44:bf:a7:96:a7:2e:ab:eb:5d:60:c4:27:dd:e5:a2:
                    d6:37:fe:5d:d5:6c:77:7b:87:15:7a:91:56:8f:1f:
                    06:5d:74:ac:fb:fc:de:41:95:11:54:ed:e8:cd:1c:
                    33:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DF:52:FE:D3:2E:BD:34:8C:DF:11:EC:9B:25:15:47:F9:EE:9F:33:76
            X509v3 Authority Key Identifier:
                keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:bd:1e:f3:3e:bf:51:b5:1a:4d:c4:ab:e0:9c:ed:23:22:eb:
         96:37:7b:6a:f2:6c:8f:6b:db:3c:04:64:a7:99:5d:6d:b4:d5:
         29:56:28:ad:ac:94:ca:2a:5c:c6:70:7c:c9:eb:17:94:60:07:
         74:39:fa:91:36:cd:41:04:7d:61:b2:1f:23:b5:86:3b:10:0f:
         4a:8e:0c:28:78:c2:74:40:ef:be:8f:29:47:d6:4e:8f:39:54:
         31:30:05:66:10:f1:c7:d8:bc:74:14:4d:2c:d3:98:c9:82:a3:
         ee:d8:82:f6:27:d4:7e:ac:ed:90:1b:3b:b0:e7:43:52:b9:f0:
         2c:b7:ed:06:15:56:70:0d:d3:30:24:a2:67:4e:f3:e3:ad:5d:
         cc:c1:dd:8c:f1:a2:e4:e7:4f:3a:6d:8f:18:70:20:24:f9:77:
         2a:5c:af:a5:09:6f:ec:06:1d:a4:1b:25:84:50:45:20:76:af:
         2b:8d:b5:e6:36:e7:9c:f9:5f:d4:de:39:20:55:4b:66:33:66:
         fa:e6:01:ef:17:e2:f2:2c:b8:94:49:bb:c9:fe:8a:f9:f0:61:
         da:33:2d:d7:df:cc:51:fb:e3:9c:74:87:79:39:61:b1:9d:14:
         64:ea:89:b6:6c:66:1b:a3:4a:9f:ff:00:a8:c0:ea:e4:f6:4a:
         dd:a7:c8:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 20:26:23 2024 by rpki-client on console-ams.rpki-client.org