Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft
File:                     X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json)
Hash identifier:          G3/YbxgaFpQGncgezkAvKISk+0xJDvRSrbZwtKhsh2o=
Subject key identifier:   68:C0:78:0D:E9:69:08:15:F6:85:7A:C4:80:E7:D4:23:49:5E:5A:EA
Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76
Certificate issuer:       /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76
Certificate serial:       018B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft
Manifest number:          0187
Signing time:             Thu 21 Nov 2024 01:58:51 +0000
Manifest this update:     Thu 21 Nov 2024 01:58:50 +0000
Manifest next update:     Thu 28 Nov 2024 01:58:50 +0000
Files and hashes:         1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: woke1Jm8PhzMwRSDBxFdpGH17+TjcWol1GwSdBnsJRA=)
                          2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: OY0zr2n6spxnIHGbL3oStlwDmEG60mOZ/pJc1RRwfOk=)
                          3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: YxeOVJUAGpB4uR8Uh6hpe+MVw/LDcqDhKKHxSAXAZM4=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl
                          rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 27 Nov 2024 20:33:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 395 (0x18b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76
        Validity
            Not Before: Nov 21 01:58:50 2024 GMT
            Not After : Nov 28 01:58:50 2024 GMT
        Subject: CN=673e93da-41b5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:e4:58:b4:5c:c0:b1:19:db:cb:9c:54:59:22:
                    9b:10:e2:46:58:bd:ad:b9:3d:22:61:90:ac:cc:c8:
                    38:d9:98:91:ed:43:9f:3e:91:ae:7a:bc:b2:4b:ac:
                    43:2b:17:ff:e8:16:3e:27:07:e6:5b:e0:a7:9e:1b:
                    ef:7d:fa:64:29:0a:f8:49:9e:28:cb:d5:44:26:20:
                    55:8b:e0:a9:43:69:bf:67:01:8f:81:4f:24:7a:e4:
                    2b:bd:6b:bb:7a:a2:cb:4b:2f:d5:fd:39:a1:1a:b4:
                    dd:c6:51:1b:7e:de:4d:27:da:7b:89:0b:16:89:62:
                    53:8c:16:69:2c:d7:bb:dc:b7:c1:09:04:8b:c8:c2:
                    6d:76:cb:6b:23:73:33:08:e4:e0:e0:d6:6c:ae:da:
                    d9:c5:73:d4:87:5d:9d:2d:47:52:5d:5d:fc:c9:a0:
                    66:4f:31:0a:6f:f0:0d:a0:42:07:d2:14:ec:37:6b:
                    17:e6:4f:9a:57:91:8e:27:4a:e8:41:40:7b:3e:9a:
                    7f:f3:a9:7b:63:66:5a:4a:dd:fa:6c:2e:63:e3:1c:
                    f7:ff:2e:4a:1f:62:65:ec:d2:06:e6:3f:9c:a9:76:
                    1d:ed:10:f9:2e:5c:b1:fe:5e:4b:e5:38:88:27:28:
                    57:9f:4b:8c:ba:4a:02:a0:c7:12:6e:a3:17:6d:d5:
                    fd:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:C0:78:0D:E9:69:08:15:F6:85:7A:C4:80:E7:D4:23:49:5E:5A:EA
            X509v3 Authority Key Identifier:
                keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:5b:c3:3c:2c:1b:c3:27:28:70:21:88:cc:b3:73:27:26:25:
         c4:bd:76:35:79:cb:ca:88:3c:db:9d:93:21:f7:40:84:68:48:
         a6:ee:15:03:18:87:52:43:90:fe:e3:28:53:bc:8e:02:75:9f:
         1f:21:66:db:06:58:09:46:9b:51:57:c1:ee:b0:99:e8:4e:e8:
         ce:6c:7b:d2:9e:16:cd:0f:87:ee:cc:e1:9f:7b:1b:e4:ce:66:
         00:c4:09:95:40:6a:5c:bc:7a:f9:ce:71:20:b5:df:b2:dd:fb:
         92:7f:f1:37:94:66:75:ff:26:2b:f6:38:64:a3:2f:1b:2e:a4:
         6f:e5:cb:ca:df:ea:75:9a:0a:cf:d7:89:f1:44:7b:6c:93:c7:
         0c:c0:de:5a:b8:c1:ef:fa:43:35:9e:2a:2e:cd:8b:f6:42:b0:
         61:1b:6e:58:3a:e9:68:ed:d5:58:e3:f4:36:83:8c:41:e1:40:
         f3:ca:49:27:4d:8a:b0:c5:11:d3:cf:77:f8:b9:8f:31:03:66:
         8c:64:5b:15:d7:5b:e4:59:c0:1f:cf:f2:ee:20:76:64:fc:9a:
         e3:06:65:ea:40:42:4a:2a:80:9c:50:a0:8d:7e:c6:08:98:0f:
         1f:42:0b:9a:06:d2:47:2c:c4:9b:ff:e6:b8:cc:28:26:47:97:
         2a:59:92:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 03:21:37 2024 by rpki-client on console-ams.rpki-client.org