Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft
File:                     UlhBQeXpBP16_D4Noo2QCKGvkhI.mft (raw, json)
Hash identifier:          2pSC9rKtCrImxUbs/cYs6ClGyUs3gz21t1IZdK7LCpw=
Subject key identifier:   65:A8:DA:62:94:47:2C:2E:1E:6C:BD:F9:1D:D0:88:9C:98:05:C6:F4
Authority key identifier: 52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12
Certificate issuer:       /CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212
Certificate serial:       FC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft
Manifest number:          FA
Signing time:             Sat 23 Nov 2024 03:18:18 +0000
Manifest this update:     Sat 23 Nov 2024 03:18:17 +0000
Manifest next update:     Sat 30 Nov 2024 03:18:17 +0000
Files and hashes:         1: UlhBQeXpBP16_D4Noo2QCKGvkhI.crl (hash: hJ8PwE2X3XbtC4HDaUZ8GnLcdHY57UhVg9bRkGwSguY=)
                          2: 41D133CC2B5911EE85AD762BC4F9AE02.roa (hash: jQ/0lCjJIMkOJNGjS+k508Q8Du2UjlHI8yBfLB/rzdQ=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl
                          rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 30 Nov 2024 02:50:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 252 (0xfc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212
        Validity
            Not Before: Nov 23 03:18:17 2024 GMT
            Not After : Nov 30 03:18:17 2024 GMT
        Subject: CN=6741497a-44d3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:28:73:b0:5f:75:e4:d7:c7:13:f6:fe:d6:59:
                    11:c0:61:11:c3:d4:31:f9:3c:42:2f:80:0e:03:10:
                    94:ee:df:93:ec:f0:3a:f3:0c:b4:6e:bd:4c:f3:fa:
                    c0:45:81:90:d0:31:9c:6d:fa:bd:6f:41:ae:32:18:
                    5e:ac:5c:c1:27:98:8c:9c:ff:eb:03:7e:c1:ac:a2:
                    75:e2:68:51:ff:63:6f:f9:17:57:6f:f3:fa:da:77:
                    28:c4:1e:42:a3:56:12:be:c3:b1:70:83:e1:a5:cc:
                    37:32:25:8f:0e:3f:43:d6:a0:cd:9b:b6:26:11:bc:
                    3d:21:ba:a3:ea:26:a3:80:0d:c0:af:47:b1:0a:4f:
                    88:69:23:9f:4a:d0:dd:59:c8:ad:3c:c2:8b:1d:1e:
                    f8:2e:e1:9e:87:10:45:d7:35:6f:11:84:c8:63:36:
                    ab:4f:2b:87:40:70:21:79:f4:e0:bf:df:b2:4c:a2:
                    c8:32:a2:1a:44:67:a7:ac:10:43:64:46:3f:c8:2b:
                    4f:e8:a3:fe:8f:f9:8b:1b:d1:90:d0:2c:a8:7c:7e:
                    53:72:c7:ca:49:4d:0b:9b:d7:87:44:e8:20:68:f6:
                    fe:aa:ba:a3:75:37:5c:12:34:64:d2:82:38:bb:77:
                    46:fc:ee:eb:1b:6a:21:87:75:dd:76:dd:04:9d:0b:
                    03:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                65:A8:DA:62:94:47:2C:2E:1E:6C:BD:F9:1D:D0:88:9C:98:05:C6:F4
            X509v3 Authority Key Identifier:
                keyid:52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:6a:1f:7c:04:62:69:e2:24:a8:0b:44:9f:7a:b8:4b:ce:a8:
         17:25:56:1e:30:ce:9e:87:21:6b:d7:7e:e6:df:cf:09:2d:fb:
         36:80:c1:d1:c5:51:a1:d5:f2:9f:04:41:f6:b7:4d:31:20:e0:
         10:8c:70:89:39:9e:8d:8a:51:f6:ba:ee:1d:18:1d:d3:79:20:
         5f:1e:9f:70:8f:31:5b:35:82:e8:1a:0e:7a:7c:a1:36:b3:cc:
         bc:4d:a6:97:c7:44:3b:21:94:c5:99:ff:bc:a4:f4:37:59:e3:
         7f:c5:fb:15:95:56:a8:ef:2b:56:e5:63:5b:83:46:2a:b2:5f:
         be:18:f6:89:a4:0b:88:77:d8:c6:c2:d9:c2:cc:0d:05:67:ef:
         cd:ff:83:1f:57:c3:8a:21:ec:7b:51:39:e0:63:5c:72:44:54:
         06:1b:a2:cf:11:72:3b:96:79:61:7d:56:09:7c:46:2b:5a:24:
         d3:5b:37:4e:51:d7:3a:64:f0:00:61:eb:23:b4:08:d3:d4:7b:
         dc:95:97:e6:03:2a:2e:a8:18:3d:07:11:63:b5:96:e8:0f:d9:
         e1:f5:fa:fc:bc:3c:b5:b1:a3:c6:19:d8:23:64:41:fb:97:24:
         94:bf:4b:a1:20:f7:eb:16:7d:94:a0:95:d4:54:b5:5a:2f:db:
         4f:ce:bd:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 06:13:22 2024 by rpki-client on console-ams.rpki-client.org