Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft
File:                     7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json)
Hash identifier:          9ZpcXyjJ4gZO0e9Qua7VBWs0CIxUfzweCfCi8E1zo3U=
Subject key identifier:   BF:A5:0E:A6:D9:98:47:CF:EB:DB:2D:60:CC:1F:07:1C:3B:ED:F2:B2
Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33
Certificate issuer:       /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33
Certificate serial:       09BC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft
Manifest number:          09A9
Signing time:             Tue 16 Jul 2024 20:28:49 +0000
Manifest this update:     Tue 16 Jul 2024 20:28:49 +0000
Manifest next update:     Tue 23 Jul 2024 20:28:49 +0000
Files and hashes:         1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: 7OZ3j1KutnkFHaOD4ZQ5yeF5pvH11OAb5Yj6klSR1w8=)
                          2: 923B6404466B11EE8B37E13CC4F9AE02.roa (hash: 2PTTTwQLgh4fXXfTwObsWVUAWIktXTAcMw+Xyyr0VJ8=)
                          3: C2E32E34466B11EE988B243DC4F9AE02.roa (hash: ATnpQbMAdtf7EHZF16qCy3h60N8FuS/9+ZIqFWtImrM=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl
                          rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 19 Jul 2024 23:00:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2492 (0x9bc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33
        Validity
            Not Before: Jul 16 20:28:49 2024 GMT
            Not After : Jul 23 20:28:49 2024 GMT
        Subject: CN=6696d801-38f2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:91:eb:9c:a7:f4:e2:d9:fd:14:6c:22:38:e3:
                    2d:9a:9b:b2:7c:e9:e8:dc:a0:64:a1:7c:34:c0:42:
                    aa:fe:6b:3d:83:ed:dd:ec:ff:0c:e0:af:d2:1d:aa:
                    76:a8:76:0d:88:26:0a:54:c3:81:1e:83:69:6b:67:
                    8a:d8:52:ec:17:c7:51:de:98:86:e2:54:41:35:70:
                    28:3a:a2:6f:7e:89:1f:ea:bf:b9:c4:8d:91:00:c3:
                    c2:bc:15:78:c5:e7:a8:28:13:8d:d1:26:f8:6f:19:
                    51:26:99:e4:7c:75:58:dc:a9:63:81:18:25:2b:0c:
                    2f:82:af:91:42:65:70:07:14:a3:55:04:15:05:a9:
                    db:12:ae:db:1f:eb:17:ab:fa:24:52:fb:04:9d:1d:
                    06:a2:64:30:e8:d0:c4:54:91:9c:66:26:36:78:b9:
                    c5:23:f4:f3:bb:f8:2b:40:51:e7:d8:08:54:73:7e:
                    4c:89:5e:63:2e:f1:f5:70:ce:47:7e:b8:0a:dc:75:
                    93:b1:ff:fa:0a:08:de:28:e7:50:42:5f:7f:5f:43:
                    2e:ef:90:21:0e:54:6f:e2:04:d0:c8:ca:5f:9c:a6:
                    9e:f0:53:1a:61:6f:5e:a5:8f:49:58:66:b4:fa:98:
                    7d:6c:7b:de:aa:30:24:04:7c:6f:12:27:1a:2e:97:
                    30:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:A5:0E:A6:D9:98:47:CF:EB:DB:2D:60:CC:1F:07:1C:3B:ED:F2:B2
            X509v3 Authority Key Identifier:
                keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:57:b6:7c:82:2f:8c:2b:d7:85:7f:5d:16:f8:df:21:1f:c0:
         40:2a:a1:ce:5a:84:81:c5:28:39:fb:85:e3:37:72:1b:05:70:
         87:c4:c0:a7:49:11:18:6c:8d:85:4a:84:5a:4e:e0:56:0f:bc:
         2e:88:27:95:0b:54:4a:0c:3f:66:ba:61:48:7a:da:91:b0:72:
         bc:1e:ca:1d:58:a8:b2:56:4b:e3:0e:a2:54:b6:a3:f4:4e:21:
         d9:09:b3:09:01:a4:ad:a1:0f:81:30:9e:1f:24:cc:90:70:41:
         45:79:07:5b:67:81:31:dd:1c:ae:8b:be:01:04:07:ec:2d:e6:
         8d:dc:91:3f:27:28:1f:d7:88:04:df:37:2c:ae:27:a1:8a:81:
         e7:78:ac:81:2c:96:8a:00:39:be:be:8e:f3:d5:ae:dc:fa:03:
         30:7b:0f:2f:fd:79:00:bf:06:2e:f0:8d:3c:36:c5:8c:7f:05:
         98:65:63:c0:7a:fd:24:95:f4:06:dd:6a:d5:13:ab:16:42:69:
         3c:49:aa:64:8a:2a:76:68:cc:20:c2:d5:75:f1:35:55:53:a4:
         6d:eb:10:14:57:6a:7a:52:a1:2f:38:ab:43:c1:e3:06:1c:15:
         df:f3:46:80:4d:d6:90:45:22:34:a6:6c:da:39:0c:3a:2e:fc:
         58:da:f5:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 16 22:58:01 2024 by rpki-client on console-ams.rpki-client.org