Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft
File:                     Aonh4IK22hq6VVKEDAyrAsKjt04.mft (raw, json)
Hash identifier:          yRjNrN3LR+MwekDOVtrJzRLZJffYsmSyOZ03nbFULDM=
Subject key identifier:   8F:BD:F9:E3:70:9E:8B:C7:18:1E:52:ED:30:F7:36:43:A8:EE:03:2A
Authority key identifier: 02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E
Certificate issuer:       /CN=A9144C70/serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E
Certificate serial:       09
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft
Manifest number:          0323
Signing time:             Sat 23 Nov 2024 00:45:55 +0000
Manifest this update:     Sat 23 Nov 2024 00:45:54 +0000
Manifest next update:     Sat 30 Nov 2024 00:45:54 +0000
Files and hashes:         1: Aonh4IK22hq6VVKEDAyrAsKjt04.crl (hash: 0KZv42NOTBCEjCl4OkiQjJn52YxPP24vztggDBEAuf4=)
                          2: EF216A18A8E111EFA334B016C4F9AE02.roa (hash: Flk71He97dfGazx59BWliW3X+nP8emfpsZtwhcWiBRY=)
                          3: B546EBFEA2F811EFA29F873AC4F9AE02.roa (hash: MqzzAzr1z8WUt2hgwcYlQRzSoFaRw0QC63G+ODEmE5c=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl
                          rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 30 Nov 2024 00:45:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9 (0x9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9144C70/serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E
        Validity
            Not Before: Nov 23 00:45:54 2024 GMT
            Not After : Nov 30 00:45:54 2024 GMT
        Subject: CN=674125c2-df29
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:c8:36:87:29:7e:a0:61:70:dd:4a:3f:36:00:
                    78:9d:85:3f:66:51:a0:5e:fb:90:74:ec:20:d9:9e:
                    0a:77:ab:80:15:8e:c3:74:a6:98:41:c5:02:d6:20:
                    11:40:43:ac:b1:47:fb:58:cc:df:b8:dd:09:ab:db:
                    05:2f:51:9c:97:f4:ff:e2:69:ca:c0:33:cd:04:68:
                    58:fb:7b:3e:cf:b3:9c:6a:8c:fc:5c:88:9a:1e:33:
                    9d:fc:46:86:e4:ce:99:bd:2f:30:18:45:20:7d:a0:
                    c6:52:04:9a:3e:d8:51:7d:fd:e8:66:54:f8:ce:b1:
                    c9:d4:d3:b3:e7:03:28:0a:8f:3d:27:ea:27:8c:aa:
                    72:e6:6e:ff:4a:fb:d3:83:7b:fa:6e:99:e1:10:d3:
                    0a:3c:c2:b5:ee:5c:60:da:cf:db:9e:db:8c:57:3f:
                    c0:32:cd:b6:2e:6c:ea:90:2e:ba:fb:ec:0d:03:a6:
                    e5:27:ba:72:cd:64:34:7a:ba:be:fe:e9:61:1f:97:
                    ff:a8:43:75:50:7c:5a:40:7e:12:4c:5f:ae:a2:63:
                    91:6d:e4:c8:77:43:89:f5:6c:8c:ac:f8:db:49:83:
                    2f:8e:01:07:91:db:ba:69:28:25:03:6f:9a:99:ee:
                    26:69:e6:ba:78:2e:1f:f9:d6:df:0a:23:69:a8:84:
                    69:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:BD:F9:E3:70:9E:8B:C7:18:1E:52:ED:30:F7:36:43:A8:EE:03:2A
            X509v3 Authority Key Identifier:
                keyid:02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:9c:3f:42:1e:44:83:9a:14:2b:6a:7c:d5:83:39:5e:f4:3e:
         81:32:22:56:aa:55:79:87:4a:66:8d:3e:d6:1b:03:f0:b5:ea:
         c9:ee:13:89:ff:20:45:84:82:73:0f:31:c0:9e:64:93:f7:d4:
         89:1d:36:a1:85:3e:82:a0:c6:97:45:31:e5:53:5b:03:18:a2:
         67:6c:96:1d:2c:ea:9a:61:92:d6:25:fd:4f:f7:b1:6c:82:42:
         f9:5d:28:be:95:36:af:1d:73:77:b7:01:bb:a2:3a:79:cf:bb:
         ae:20:c1:cf:23:4c:46:88:c6:7a:c9:ee:47:08:b3:f1:84:90:
         f2:77:41:dd:d2:5d:be:0c:30:ca:9c:c1:09:b2:21:9a:fa:42:
         f7:3f:54:1e:29:bc:1e:64:aa:09:61:69:79:b9:08:7b:e6:70:
         37:dc:ab:bd:c4:1b:01:6d:77:30:4e:23:7d:67:88:f5:35:06:
         cb:de:72:23:dd:e2:7b:20:db:7d:cc:1d:b9:9f:f4:76:f5:b7:
         bc:76:bf:04:3f:80:34:cc:5d:3e:3d:14:5d:7e:6d:d9:62:14:
         f3:05:73:71:03:f9:88:0e:ab:00:53:79:2d:41:6d:45:a2:bb:
         d5:3f:f3:c3:3d:e2:e7:f3:a0:57:df:1f:90:4e:71:16:b8:20:
         2f:c8:8c:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:58:38 2024 by rpki-client on console-ams.rpki-client.org