Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft
File:                     ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft (raw, json)
Hash identifier:          JaVcvJPIqF3uJpkFCDNKTESafJTCPMwaaQ4XK4fpBBM=
Subject key identifier:   66:4C:52:6B:CF:88:85:55:C9:76:AD:83:78:97:45:32:2D:1D:78:0C
Authority key identifier: 64:B6:86:B0:5D:CB:E8:BE:A9:28:07:53:2D:E2:9A:77:90:51:56:F5
Certificate issuer:       /CN=A91476F2/serialNumber=64B686B05DCBE8BEA92807532DE29A77905156F5
Certificate serial:       04E3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft
Manifest number:          04D2
Signing time:             Fri 29 Mar 2024 01:09:32 +0000
Manifest this update:     Fri 29 Mar 2024 01:09:32 +0000
Manifest next update:     Fri 05 Apr 2024 01:09:32 +0000
Files and hashes:         1: ZLaGsF3L6L6pKAdTLeKad5BRVvU.crl (hash: JrYwbeHbDk8FuV37wPWC9S3tm859yPGV7ZKcZaBbhoc=)
                          2: C8C6FC86CB4D11EB8EE48035C4F9AE02.roa (hash: JaIO2dT8Os8Peb5EgUHztrbnapJvSWl51qr0MY1dg+Q=)
                          3: C874A7C0058511ECA3212F6DC4F9AE02.roa (hash: ElYbSEk4rRJAjj7lezEHri8iWNpjG/As8ucdEHqyHv8=)
                          4: 2ED60096A91211ED8AC9104EC4F9AE02.roa (hash: Uc+rOEUpW18Fwe88i2RcZR2/2RCIPE1rXogHeTVj4MY=)
                          5: 1ED18488A91511ED9E2AC948C4F9AE02.roa (hash: e1klgolsSajatFbf1LJ30moBI1ympGhIPAvqXY1BcVg=)
                          6: C9FE370ECB4D11EB8EE48035C4F9AE02.roa (hash: TyLHpZxtrsbvNAjuHbPVOkbwAxDeJrj6EAR9jI37KvE=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.crl
                          rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 04 Apr 2024 23:37:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1251 (0x4e3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91476F2/serialNumber=64B686B05DCBE8BEA92807532DE29A77905156F5
        Validity
            Not Before: Mar 29 01:09:32 2024 GMT
            Not After : Apr  5 01:09:32 2024 GMT
        Subject: CN=660614cc-ff49
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:26:9c:29:d9:7a:f4:32:b4:78:5e:e3:51:92:
                    2b:74:3e:e6:d3:46:bf:fd:8d:43:cc:f9:1c:64:34:
                    5c:f4:f6:ca:1e:63:e1:33:6f:48:49:04:13:23:75:
                    57:91:f0:b8:0f:1a:17:7e:d2:a3:df:6b:7e:45:35:
                    1e:d2:6d:cb:ba:35:7f:15:61:3d:e2:4b:ec:b4:0f:
                    77:2f:33:e9:fd:52:77:b9:69:a7:82:75:4e:9e:ef:
                    cf:a1:85:72:3d:85:69:de:b7:87:e7:8b:63:50:2f:
                    cb:3b:9d:f4:17:e6:c8:0b:b7:84:ff:6b:a5:83:b7:
                    86:38:48:a2:07:54:06:61:ee:0b:13:31:73:4d:ee:
                    4f:6f:02:80:66:ae:5f:b4:31:90:d8:35:9b:1f:97:
                    18:0b:d7:4c:1c:d1:f6:12:b3:8a:01:6c:cc:28:78:
                    61:52:06:a5:7e:6e:b1:2a:62:05:7f:cc:fa:d1:45:
                    f1:68:0c:bd:a5:38:43:33:35:74:32:83:1c:05:3f:
                    8c:c6:b5:78:4d:67:1b:f6:6e:e2:83:b5:96:84:e5:
                    50:ec:12:c9:be:48:47:b6:ba:f5:c9:01:8b:48:d8:
                    e9:82:7a:75:6c:c3:e5:6e:fd:9a:78:74:34:b5:a4:
                    49:98:7d:3f:22:08:11:a3:b6:12:8c:40:ad:e3:b9:
                    ce:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                66:4C:52:6B:CF:88:85:55:C9:76:AD:83:78:97:45:32:2D:1D:78:0C
            X509v3 Authority Key Identifier:
                keyid:64:B6:86:B0:5D:CB:E8:BE:A9:28:07:53:2D:E2:9A:77:90:51:56:F5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:ea:dc:da:40:f0:87:aa:59:ce:c8:90:cb:d7:69:d4:36:34:
         87:20:e4:a0:94:8f:f8:bc:21:fd:d8:b1:30:ec:17:ae:1a:9a:
         a6:4a:4a:06:cb:e2:56:14:c3:84:b8:3a:23:93:e2:7e:45:e0:
         da:ad:d7:0d:bd:c2:75:2e:f6:50:7f:b1:42:de:64:cb:18:24:
         2c:43:67:e8:e1:cb:cd:c0:ee:5b:01:a7:65:27:92:65:4f:aa:
         a8:93:80:0f:6e:8c:09:bf:95:3d:37:8f:93:2f:db:30:6f:ca:
         c6:84:f3:12:03:16:a7:ee:11:bc:49:2c:6b:02:af:ca:d1:25:
         90:d5:01:0a:27:98:25:c7:ca:9c:7b:68:68:f4:f3:c3:74:30:
         25:13:4f:60:98:5b:d3:c9:5e:af:32:c4:85:7d:6a:94:d5:18:
         ee:52:69:de:43:0a:41:d2:fb:3b:ab:17:fb:73:9d:51:93:40:
         b6:ff:ad:37:b0:d9:78:60:af:5b:4e:c3:b9:9b:ea:c1:1e:7a:
         49:d9:b6:e7:0f:69:2c:ad:70:04:e1:27:3e:17:d9:b6:d8:98:
         92:9d:6b:44:69:48:96:e7:fc:2b:a7:da:3f:18:24:b4:a2:0c:
         c9:7a:5e:f7:ff:bd:a2:4e:c6:49:f7:5b:01:36:6e:95:cf:f9:
         57:ec:5d:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 02:19:22 2024 by rpki-client on console-ams.rpki-client.org