Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft
File:                     nuqkUJudasqRzaQCHxBekhA363Q.mft (raw, json)
Hash identifier:          itG6BpPk8s9TxNgc2z8V/nD9vomDCM8e8/0s98v6aYw=
Subject key identifier:   FD:FC:21:2C:C8:6F:5D:C6:5F:F5:67:D8:3D:B9:06:13:B1:E8:80:C1
Authority key identifier: 9E:EA:A4:50:9B:9D:6A:CA:91:CD:A4:02:1F:10:5E:92:10:37:EB:74
Certificate issuer:       /CN=A91F2BA6/serialNumber=9EEAA4509B9D6ACA91CDA4021F105E921037EB74
Certificate serial:       0945
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft
Manifest number:          093A
Signing time:             Fri 22 Nov 2024 20:02:28 +0000
Manifest this update:     Fri 22 Nov 2024 20:02:27 +0000
Manifest next update:     Fri 29 Nov 2024 20:02:27 +0000
Files and hashes:         1: nuqkUJudasqRzaQCHxBekhA363Q.crl (hash: CqXjF8Sofl1Pdiv59pPyDMGWW2t2quYpe+j5DK76BBM=)
                          2: 5A7E13CA8C2B11EA90152018C4F9AE02.roa (hash: mjCI51z49d/ZR6NIO/Fc5BsNeBRLESAiodQLOKBux1k=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.crl
                          rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 29 Nov 2024 19:56:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2373 (0x945)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F2BA6/serialNumber=9EEAA4509B9D6ACA91CDA4021F105E921037EB74
        Validity
            Not Before: Nov 22 20:02:27 2024 GMT
            Not After : Nov 29 20:02:27 2024 GMT
        Subject: CN=6740e354-ef70
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:c1:39:b5:2d:87:e5:45:e4:21:3d:39:aa:50:
                    aa:57:27:b5:77:01:04:df:88:2f:af:3b:f2:9d:1c:
                    de:5a:1b:92:30:21:92:c9:5f:cb:90:de:89:2a:f6:
                    26:b5:1b:f0:56:8a:63:57:72:7d:61:64:e0:d0:87:
                    5d:ce:c0:6b:c8:d2:e4:1c:b2:c4:b4:50:b7:ad:f2:
                    82:20:a9:ec:44:e4:6f:9d:3f:01:14:a5:91:9f:94:
                    1e:5e:1f:d1:cb:74:76:3b:4f:4a:65:5b:44:9e:21:
                    e8:3e:d7:84:72:6e:a7:0a:94:3f:95:1c:45:f5:3c:
                    2c:e1:0e:e7:40:ec:a4:5e:43:28:ff:b9:bd:09:27:
                    59:cf:a8:3d:29:ec:bd:2a:e7:e6:d6:36:5f:49:3a:
                    b6:75:b0:9a:42:8c:5e:86:16:2d:47:98:60:83:61:
                    87:0e:a9:27:22:8d:d9:a5:de:19:24:69:2b:59:d0:
                    77:11:4f:53:af:3d:2a:75:c7:a3:07:a3:cb:69:4d:
                    1a:d7:8a:1d:6f:3a:a8:cf:82:08:31:d6:38:2a:b2:
                    97:06:4e:80:c7:62:6b:e3:e3:41:1c:5b:79:88:ea:
                    f5:13:c1:05:47:b7:24:a8:8f:7e:ea:2a:d7:04:e6:
                    d4:ce:f1:01:30:5e:cf:82:46:a3:20:3e:ee:44:df:
                    0d:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:FC:21:2C:C8:6F:5D:C6:5F:F5:67:D8:3D:B9:06:13:B1:E8:80:C1
            X509v3 Authority Key Identifier:
                keyid:9E:EA:A4:50:9B:9D:6A:CA:91:CD:A4:02:1F:10:5E:92:10:37:EB:74

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:48:9b:de:27:4e:24:ff:df:67:f5:b3:52:33:bb:05:0b:ea:
         f6:fd:0a:b0:c9:16:79:f2:a0:19:7d:24:05:a5:d3:09:4a:8d:
         ce:e6:09:d2:ef:13:77:21:06:40:2c:27:c7:3b:ce:98:cc:77:
         02:92:c3:8d:54:5f:9f:94:48:1c:0b:14:de:93:6f:fc:7c:f1:
         64:68:fd:15:07:d0:66:cb:f7:20:42:1c:c8:43:84:87:1e:da:
         89:af:2b:f2:d4:64:55:42:f2:07:ab:89:51:8f:b8:f5:76:c2:
         97:46:26:92:c6:3f:e4:56:58:32:5a:a8:9d:b2:33:89:30:25:
         2f:82:83:5b:14:f4:42:8e:f1:cb:40:b9:99:cf:09:77:07:9e:
         99:1f:d5:d4:eb:31:b2:fb:cb:8b:f0:5a:47:8b:7d:42:68:db:
         87:a3:8a:ef:5a:f1:31:22:34:05:4b:4f:00:8a:74:35:74:89:
         84:9a:d3:ae:fc:3c:0b:23:12:9e:cb:02:b9:26:f4:87:66:01:
         82:f9:f0:c4:0b:5e:f1:99:1a:08:24:3c:3c:d3:ee:b8:3e:40:
         3e:69:dc:4d:13:ec:0e:34:cf:6d:f3:d1:5e:f7:cb:cc:ed:7c:
         c1:ee:6c:8e:c1:a1:f5:ee:05:60:2b:40:65:91:78:93:d3:b8:
         15:79:54:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org