Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft
File:                     7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json)
Hash identifier:          Jz6E7hT1HprOVayoXoZMDjwMsyGwjs81rci7KJjq2hE=
Subject key identifier:   00:F5:53:60:E2:D9:FD:BB:0C:CC:08:F6:EB:BF:A8:68:25:F9:C1:C6
Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33
Certificate issuer:       /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33
Certificate serial:       08B8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft
Manifest Number:          08AB
Signing time:             Wed 22 Mar 2023 21:37:03 +0000
Manifest this update:     Wed 22 Mar 2023 21:37:03 +0000
Manifest next update:     Wed 29 Mar 2023 21:37:03 +0000
Files and hashes:         1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: jrF9RDHF6hxPru0OH+WZLoCfATLO9uXq35PdRCzeUTk=)
                          2: DD057E30C32F11ED82655C36C4F9AE02.roa (hash: w/sJ3faEDfbcENeUZ21pDjqrR0eoJ16WZEL19vxq2+k=)
                          3: DBD3D778C32F11ED82655C36C4F9AE02.roa (hash: fhQU0wP6cEwLVmakFy+sRsHL3PHSe89bJ7g7IFQ7o9I=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl
                          rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 29 Mar 2023 20:07:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2232 (0x8b8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33
        Validity
            Not Before: Mar 22 21:37:03 2023 GMT
            Not After : Mar 29 21:37:03 2023 GMT
        Subject: CN=641b74ff-6faa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:a0:c9:b3:9a:67:b9:87:83:ad:7c:a2:87:75:
                    f6:ec:01:80:ae:ac:39:14:5e:6e:b9:64:3d:9f:43:
                    78:cb:63:85:23:25:61:2d:5b:8c:3a:2b:76:59:4b:
                    94:e3:d2:95:b9:b6:ea:4a:7d:60:27:f2:dd:bf:01:
                    6c:94:e1:7b:2f:49:a5:3c:03:8c:0b:1f:e2:9a:8d:
                    27:ce:70:0c:50:9f:5c:64:fc:8e:76:d4:70:09:81:
                    45:0d:9d:fb:9b:f1:f4:c5:e8:8d:8d:db:c8:6c:90:
                    91:26:a8:16:20:af:53:7d:4f:a8:14:1d:b8:77:6d:
                    7c:22:f2:68:e9:42:32:92:13:f3:bb:dc:a9:2a:b7:
                    69:e6:e6:a0:b5:83:6a:f6:e7:5f:b1:63:d5:4b:69:
                    34:b7:13:18:5e:ee:23:53:96:50:9b:ba:67:dd:3b:
                    9e:4c:7d:98:05:0a:72:15:b5:07:01:0e:7d:8a:34:
                    f0:12:d6:d2:01:d7:21:1c:77:5c:34:3f:a4:00:b4:
                    a1:c6:0e:ee:ba:65:f2:7f:51:2a:15:e4:77:8d:da:
                    2f:91:d1:35:17:4f:90:81:e8:c6:84:ef:e3:a9:6b:
                    52:26:e8:33:08:2f:65:33:a6:8f:e5:c4:99:54:e7:
                    00:47:3f:d7:2d:da:8a:a0:83:e7:a1:b2:d9:fa:e2:
                    80:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                00:F5:53:60:E2:D9:FD:BB:0C:CC:08:F6:EB:BF:A8:68:25:F9:C1:C6
            X509v3 Authority Key Identifier: 
                keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:96:2d:68:a1:d6:8d:48:0a:25:4d:d4:de:72:61:82:4d:dd:
         1e:a6:9e:5b:8a:44:a3:46:02:b9:52:3b:99:6a:f4:68:c0:3e:
         26:b9:58:f7:94:6c:d5:d8:24:fa:ba:01:21:50:45:8a:22:69:
         c0:52:cb:26:0d:55:57:31:2f:a6:08:73:a9:34:65:42:3d:0a:
         94:6f:18:55:27:b1:34:e5:69:cc:00:f3:4f:61:5b:1a:f6:4c:
         7f:0f:d4:05:ed:c0:59:4e:6a:f6:ca:f7:f0:42:23:e3:dc:c7:
         cf:f1:1e:f7:ac:35:8f:31:f0:65:c4:2c:97:cf:b7:69:fc:b9:
         b2:df:cc:dd:eb:1c:46:1d:da:4b:61:e5:38:c9:db:4b:34:a3:
         64:f6:ba:7c:d5:03:fd:ff:44:1d:bd:ca:31:22:e5:e2:95:af:
         40:54:68:78:06:66:06:d0:ef:6a:47:68:84:6f:15:a8:ca:18:
         f1:91:ae:a0:38:b5:16:3e:56:56:93:77:7e:54:33:e5:24:82:
         d5:09:44:e0:19:6c:0a:3b:d2:28:ac:6e:15:bb:95:3b:57:a9:
         7b:d1:1b:93:78:05:50:e5:db:1c:25:87:a9:5d:8e:1d:da:dc:
         56:66:0e:46:a4:a2:83:7e:23:02:e9:ad:17:6a:51:3a:1d:50:
         8e:89:2c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 22 22:12:42 2023 by rpki-client on console-fra.rpki-client.org