Manifest

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
File:                     hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft (raw, json)
Hash identifier:          r2c1+eooirv+fvj7LT/3DYa04pAOSDJ5RtW3MYmbUAw=
Subject key identifier:   99:A0:B8:1E:FC:F9:BB:34:CC:2C:AF:A2:B1:31:22:7F:C2:00:1D:D4
Authority key identifier: 86:96:44:48:77:5B:2F:8F:86:35:9D:54:16:8E:22:0C:1E:87:1B:F5
Certificate issuer:       /CN=F36D8D30AF/serialNumber=86964448775B2F8F86359D54168E220C1E871BF5
Certificate serial:       0204
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/hpZESHdbL4-GNZ1UFo4iDB6HG_U.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
Manifest number:          0203
Signing time:             Sun 16 Jun 2024 02:10:13 +0000
Manifest this update:     Sun 16 Jun 2024 02:10:12 +0000
Manifest next update:     Tue 18 Jun 2024 02:10:12 +0000
Files and hashes:         1: hpZESHdbL4-GNZ1UFo4iDB6HG_U.crl (hash: OrYts/Py0YAhiTypeX6NDMwpbY/1YIKTa/DdubA4GEU=)
                          2: 3049086EA6B111ED933D49A0F1222468.roa (hash: BeKV2NJ2k9BqOeZnEYVNNVtyyQ+PyOb9/ofU/Yofnbo=)

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
                          rsync://rpki.afrinic.net/repository/afrinic/hpZESHdbL4-GNZ1UFo4iDB6HG_U.cer
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Tue 18 Jun 2024 00:04:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 516 (0x204)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F36D8D30AF/serialNumber=86964448775B2F8F86359D54168E220C1E871BF5
        Validity
            Not Before: Jun 16 02:10:12 2024 GMT
            Not After : Jun 18 02:10:12 2024 GMT
        Subject: CN=666e4985-fc21
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:3f:24:ad:ff:cb:0f:a6:9e:63:53:73:27:ef:
                    62:62:5c:47:34:d2:59:b4:d3:8b:d0:16:be:19:0e:
                    c0:50:75:9c:2b:0d:3e:30:86:04:6a:7e:ab:af:fa:
                    d2:6d:1a:14:16:52:1e:92:b1:ba:79:00:7d:c0:b8:
                    13:17:8b:2d:f2:4e:d4:cf:86:c8:b0:0c:48:2e:d3:
                    b9:74:30:07:34:7f:ca:a1:27:0b:53:52:76:33:bd:
                    0a:de:36:68:aa:84:43:70:29:bd:1a:10:e7:52:85:
                    21:07:bb:a5:86:f3:de:f8:f1:06:69:17:91:08:b6:
                    26:75:a3:ef:7f:10:37:66:d9:04:41:d1:81:2d:16:
                    5a:07:90:04:ae:a9:5a:f6:52:4d:9c:1c:d9:d0:22:
                    bb:b0:75:11:aa:c0:b8:d0:92:3d:05:19:e6:e0:cc:
                    05:1a:da:0d:17:40:d5:1e:8d:7d:ff:77:ad:a0:a1:
                    02:f8:a5:4b:a9:f6:36:20:13:ff:71:b5:e9:26:88:
                    a7:b7:b0:30:3b:ea:3d:02:16:40:b6:d2:12:60:a0:
                    92:7e:dc:f6:c3:2f:87:db:d4:9d:37:54:93:9c:e9:
                    e1:87:99:b0:20:6b:a4:91:79:a1:63:f8:de:3e:b9:
                    74:9f:a1:04:5c:11:8b:cc:0e:17:e3:d8:aa:c3:7d:
                    cc:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                99:A0:B8:1E:FC:F9:BB:34:CC:2C:AF:A2:B1:31:22:7F:C2:00:1D:D4
            X509v3 Authority Key Identifier:
                keyid:86:96:44:48:77:5B:2F:8F:86:35:9D:54:16:8E:22:0C:1E:87:1B:F5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hpZESHdbL4-GNZ1UFo4iDB6HG_U.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:7d:15:33:38:63:f3:d7:82:20:65:d8:5a:0d:d9:d8:6c:ba:
         82:13:b7:6c:bf:71:43:0c:04:5e:a2:67:20:b7:19:eb:6f:e3:
         93:2e:5f:0d:0c:d3:4b:11:03:e4:56:64:98:39:5b:d5:88:56:
         26:b4:32:f6:a5:58:96:d2:69:92:d8:3f:2d:36:26:cb:b2:57:
         7a:ac:0a:15:70:d4:16:ae:83:c9:d2:20:34:54:97:21:90:7e:
         f7:ca:1a:24:89:22:fd:88:f0:bc:44:32:fa:89:bf:97:ed:3f:
         4a:2d:4d:d9:98:97:49:42:b2:d2:82:d1:29:1b:89:a4:1a:d3:
         69:5b:8a:99:bd:28:60:1e:6d:7d:7f:32:51:17:d5:58:90:0c:
         3b:a5:fc:83:cf:a1:8d:56:8b:2f:c4:32:53:b5:d2:4c:fe:fe:
         2f:a1:d9:b7:21:90:a7:95:52:27:5d:9b:f2:ba:4a:43:de:06:
         61:27:e8:c9:f1:f0:2c:6a:7c:2e:e3:59:2c:43:85:3d:8d:5c:
         be:a8:70:15:8b:7e:ac:a3:ec:cb:e8:66:99:88:8d:38:ba:8b:
         1b:5c:19:87:76:02:f1:0e:c6:a9:1a:35:27:36:43:97:51:84:
         44:8c:e1:25:80:a4:50:b1:d8:fa:6e:9f:1b:a0:9f:5e:cc:0b:
         dd:28:f2:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 02:45:11 2024 by rpki-client on console-fra.rpki-client.org