Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft
File:                     8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft (raw, json)
Hash identifier:          O/j3VmYt/Kll3b9ZQvBoXW8ZlenwD439PDDqJ9Co59M=
Subject key identifier:   52:2D:7E:F5:95:73:1A:A0:1B:45:D4:E4:AC:64:F5:3C:E6:FC:74:DB
Authority key identifier: F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8
Certificate issuer:       /CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8
Certificate serial:       09F2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft
Manifest number:          09EC
Signing time:             Fri 22 Nov 2024 19:39:48 +0000
Manifest this update:     Fri 22 Nov 2024 19:39:47 +0000
Manifest next update:     Fri 29 Nov 2024 19:39:47 +0000
Files and hashes:         1: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl (hash: dniUzU1NVmmRFfS0Ic5fSDXlkq4D7impX9dLNYCNqGI=)
                          2: 19250B84675711EAA928E22DC4F9AE02.roa (hash: BfaBbqdTeXcprKlCZnPR/VFXV6AoP9YV7kqFZXcvXOo=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl
                          rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 29 Nov 2024 19:39:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2546 (0x9f2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8
        Validity
            Not Before: Nov 22 19:39:47 2024 GMT
            Not After : Nov 29 19:39:47 2024 GMT
        Subject: CN=6740de04-c4dc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:20:1e:40:1f:c2:8a:6e:ec:f0:bf:43:9a:19:
                    5f:0c:45:fd:07:87:d2:09:34:20:ae:ba:2a:3f:05:
                    60:71:12:2e:e2:9f:64:d0:13:5f:7f:9a:c0:44:58:
                    85:31:27:38:79:a9:4d:f4:4f:26:ca:4f:da:e6:86:
                    37:81:d6:46:fd:3e:62:72:59:62:c9:45:e1:ee:84:
                    7a:92:df:72:8c:6a:3e:cd:78:92:17:70:af:1a:22:
                    ec:7b:34:b5:79:56:c7:32:94:6f:85:a0:64:1a:69:
                    53:fe:3f:70:ae:55:7f:a6:ed:4d:66:b5:4d:d7:2f:
                    94:52:79:2e:e4:43:fe:b6:43:41:59:e6:2c:39:7d:
                    9f:81:0c:72:b1:d4:33:77:42:40:a6:c9:2a:3f:5d:
                    38:69:e5:ea:45:3d:45:5e:6d:5a:92:3f:dd:3f:5f:
                    2f:f6:d5:64:4f:69:8a:f6:e8:3a:0d:0b:4f:47:e9:
                    67:ac:97:67:41:66:40:8a:44:57:57:85:f7:13:4c:
                    0d:16:19:0a:98:9c:db:d3:25:0e:2c:61:eb:e0:31:
                    94:cd:47:a1:19:77:ca:dd:9d:60:d1:cc:37:80:e4:
                    3c:a4:7f:2f:bb:29:2a:16:ae:43:72:15:9a:30:ba:
                    ce:f2:67:31:5d:1f:02:78:9b:b2:96:93:94:f2:89:
                    6b:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:2D:7E:F5:95:73:1A:A0:1B:45:D4:E4:AC:64:F5:3C:E6:FC:74:DB
            X509v3 Authority Key Identifier:
                keyid:F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         95:11:4d:74:8e:f9:c8:a8:23:ca:ca:8a:43:dc:ee:16:85:d1:
         9d:a7:ff:1c:ee:fb:3e:30:1a:bd:e0:a3:c8:3e:ee:37:d4:63:
         78:9a:82:cb:4b:40:3b:be:3d:d7:58:71:e3:fc:0b:e1:07:d0:
         85:b6:b2:af:3c:0b:35:6d:1c:bc:f8:55:a9:a9:fd:0a:4f:89:
         25:03:fb:db:f2:cd:9a:c8:90:ad:21:d2:0d:7d:2f:b2:09:c0:
         2d:dd:12:d5:4c:65:5a:73:fc:4a:09:dc:7d:ba:48:cd:01:d0:
         80:f9:ee:07:ac:2c:a9:2a:6e:ce:67:7f:7e:47:77:72:06:b5:
         5b:27:d6:32:71:0a:cc:be:cb:c0:45:f3:0d:37:9b:9e:88:33:
         cc:1c:69:7d:a1:4b:2e:3e:f3:c9:fb:e0:fc:ff:9a:57:d9:53:
         6e:5d:96:e1:16:c6:c9:6e:f0:b1:31:c5:63:a1:df:b4:40:7d:
         50:32:78:f8:a8:56:c0:70:4b:13:d2:41:13:98:29:11:28:8d:
         43:48:c7:18:60:04:01:a2:e4:17:fd:88:db:75:b1:86:5e:cb:
         6b:5b:d4:8c:6e:e9:40:b6:13:ff:7b:a7:ee:7f:02:c5:37:f7:
         2f:73:24:be:37:04:f7:0c:53:65:59:82:bf:e0:6e:22:4a:3a:
         b6:c6:fc:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org