Manifest

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
File:                     hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft (raw, json)
Hash identifier:          5WpgmF4OeZseE1JfENmp6fRxveAnmJuyo1n8rdu4/ds=
Subject key identifier:   99:EF:68:69:EF:80:0A:48:92:B5:B0:7E:AA:6F:0C:A3:ED:05:0D:77
Authority key identifier: 86:96:44:48:77:5B:2F:8F:86:35:9D:54:16:8E:22:0C:1E:87:1B:F5
Certificate issuer:       /CN=F36D8D30AF/serialNumber=86964448775B2F8F86359D54168E220C1E871BF5
Certificate serial:       020A
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/hpZESHdbL4-GNZ1UFo4iDB6HG_U.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
Manifest number:          0209
Signing time:             Sat 22 Jun 2024 02:04:29 +0000
Manifest this update:     Sat 22 Jun 2024 02:04:29 +0000
Manifest next update:     Mon 24 Jun 2024 02:04:29 +0000
Files and hashes:         1: hpZESHdbL4-GNZ1UFo4iDB6HG_U.crl (hash: /tlIJRhPw5Xh2g6Gp0o2RwiINkhCg60OD5w3VRXpIKc=)
                          2: 3049086EA6B111ED933D49A0F1222468.roa (hash: BeKV2NJ2k9BqOeZnEYVNNVtyyQ+PyOb9/ofU/Yofnbo=)

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
                          rsync://rpki.afrinic.net/repository/afrinic/hpZESHdbL4-GNZ1UFo4iDB6HG_U.cer
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Mon 24 Jun 2024 00:05:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 522 (0x20a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F36D8D30AF/serialNumber=86964448775B2F8F86359D54168E220C1E871BF5
        Validity
            Not Before: Jun 22 02:04:29 2024 GMT
            Not After : Jun 24 02:04:29 2024 GMT
        Subject: CN=6676312d-749b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:3a:b4:fd:00:4a:da:3f:33:c9:05:4d:d8:f1:
                    71:b9:8a:4e:b0:a9:d1:a1:03:6a:19:82:9b:fa:4b:
                    26:10:6d:f5:4e:cc:96:49:a3:0c:c4:14:bd:8f:4f:
                    41:5c:e9:0e:f5:1b:e6:77:ee:f3:48:1b:6d:57:f9:
                    37:4e:d6:3e:83:a4:ba:78:1f:47:38:b3:c7:11:c8:
                    41:43:f7:aa:b6:22:51:95:a2:d9:e0:0b:8a:71:10:
                    27:22:7c:e8:70:d0:70:71:98:66:5a:f6:c2:31:e2:
                    6d:e3:f7:ed:26:03:b3:85:f0:d7:75:90:e4:e8:60:
                    31:ca:b7:3a:c1:9b:38:79:2e:db:2a:41:b3:9e:97:
                    ac:b1:ce:3c:a3:44:b2:56:ec:9e:7e:09:07:39:f9:
                    76:cf:78:59:ff:dd:fc:63:b5:bd:b2:95:e5:b7:64:
                    3e:9a:b6:f9:a1:f4:6b:e0:25:9f:72:d6:bf:a8:34:
                    61:96:ea:1c:2d:68:99:c0:8e:c4:b9:d5:11:ea:86:
                    55:86:88:fb:c8:3c:79:23:bb:18:f1:bb:91:b5:25:
                    7c:f6:5b:03:bf:ad:73:22:92:df:00:b0:66:9a:cf:
                    3a:1b:b3:b5:e0:81:f8:af:6f:e0:0d:27:12:4c:dd:
                    4d:6f:56:1a:b0:49:a8:f8:91:0e:60:59:97:d1:d0:
                    42:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                99:EF:68:69:EF:80:0A:48:92:B5:B0:7E:AA:6F:0C:A3:ED:05:0D:77
            X509v3 Authority Key Identifier:
                keyid:86:96:44:48:77:5B:2F:8F:86:35:9D:54:16:8E:22:0C:1E:87:1B:F5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hpZESHdbL4-GNZ1UFo4iDB6HG_U.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:c0:a3:59:8b:4d:c8:ae:c2:51:f5:ec:f3:dd:13:da:78:d3:
         25:1e:50:56:25:68:d6:41:ed:52:18:d9:e4:9d:86:48:b5:93:
         e8:9d:ca:de:93:42:75:73:dc:c7:fb:c6:1d:1a:8b:4b:72:a4:
         de:18:ce:f6:7c:03:81:06:a6:81:62:5d:37:58:3d:44:0f:af:
         f5:0d:f0:bb:23:45:6b:4f:95:00:4c:06:4c:c4:ec:99:af:5e:
         92:9a:f8:e1:a9:a3:b6:98:fb:68:cf:73:09:7b:78:b8:cf:a4:
         cc:1e:23:6f:f3:4d:7b:e6:b8:6f:f2:02:bf:e7:2e:63:d5:16:
         95:21:9e:b4:9a:bc:c9:6e:e8:86:32:c1:74:04:a7:b1:29:81:
         2a:46:ad:d5:32:f7:96:e9:4f:5a:b3:01:cf:24:10:0d:49:b8:
         6c:06:bf:bd:76:5d:72:8e:91:e6:e9:ec:fc:98:0d:b8:38:99:
         c6:df:b7:67:92:97:bf:46:f3:f4:a1:41:67:d0:bb:56:e7:af:
         aa:88:18:fc:1b:38:57:57:83:64:81:38:f8:b8:f2:62:85:a4:
         bc:f7:30:57:93:26:0f:c3:e9:aa:f5:99:ac:80:64:36:e7:b6:
         99:33:0c:ea:46:1c:8e:f8:cf:03:7e:87:00:ff:a8:f1:17:3d:
         62:da:f7:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 03:14:37 2024 by rpki-client on console-ams.rpki-client.org