Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft
File:                     CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json)
Hash identifier:          bTm7zk7bhqKv3/DT/gZZkfS3ZfyT6tej/RYm2nX3qEE=
Subject key identifier:   05:73:05:EC:9B:8B:21:B7:C4:02:D6:10:B4:9F:CF:39:92:44:E0:C7
Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED
Certificate issuer:       /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED
Certificate serial:       03B0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft
Manifest number:          03A0
Signing time:             Fri 29 Mar 2024 02:18:30 +0000
Manifest this update:     Fri 29 Mar 2024 02:18:29 +0000
Manifest next update:     Fri 05 Apr 2024 02:18:29 +0000
Files and hashes:         1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: aeWl8s0zNjqlHUiyms4IqnWs0uAnqkrftcPz8XJNVr4=)
                          2: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: xKAp7QQZzvPcKaqeA8FNrW0vD6RfKP6sFaIFenq6yOk=)
                          3: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: ikrTe3JlBPJvvS7QA2MhzwcmLIASncvk8dd3dvu0eIo=)
                          4: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: S7MlN7EcdljIgirwT85s0UeMI1msMXz2OWeTrTt7MZs=)
                          5: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: Rzh0A53RJhQ7nkX8l0r1eEVHybEfvcunuAZy12At2jc=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl
                          rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 05 Apr 2024 02:18:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 944 (0x3b0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED
        Validity
            Not Before: Mar 29 02:18:29 2024 GMT
            Not After : Apr  5 02:18:29 2024 GMT
        Subject: CN=660624f6-64c8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:1f:9e:80:2d:dc:0e:07:24:4a:cd:4c:e7:f8:
                    0f:2e:80:33:cd:aa:fd:9d:1c:49:ac:9f:81:b4:fb:
                    07:2a:a9:7a:3c:7f:b2:49:72:d1:26:f1:ef:0e:a5:
                    f4:93:5f:e2:f5:ac:fd:19:8d:b0:32:f3:17:d3:4c:
                    df:4c:57:38:2b:37:d0:a6:5a:5e:c2:06:7d:30:0a:
                    f2:25:5a:a9:48:90:e3:80:4a:ba:75:6e:5a:67:68:
                    76:0e:cc:b3:22:66:71:dc:f2:7c:3e:d5:52:01:ae:
                    38:d0:5e:b8:aa:40:56:4d:df:a7:5d:45:0d:73:76:
                    30:0f:11:55:d2:cd:9e:f3:6f:4b:10:fe:f0:d0:35:
                    f1:ad:38:5e:06:1b:0b:b6:8d:c6:cf:49:3b:3e:e7:
                    10:9d:ac:94:a3:4c:91:62:75:c8:a4:6c:9f:b4:04:
                    2b:ff:4f:37:95:5f:1f:9b:57:93:f2:bc:5d:bd:76:
                    fb:8d:bf:3c:94:d8:d8:c1:0a:88:da:60:76:30:9f:
                    9f:19:9d:8d:10:19:fd:c8:7b:00:fe:7c:71:b1:dd:
                    35:05:2b:19:cd:d5:05:c9:d2:45:f5:5a:a4:aa:d6:
                    a1:ee:b8:d3:50:65:13:ef:a7:32:ce:fb:42:74:4f:
                    8e:dd:b8:a6:f0:06:70:9c:3f:dc:33:97:fc:94:16:
                    2f:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:73:05:EC:9B:8B:21:B7:C4:02:D6:10:B4:9F:CF:39:92:44:E0:C7
            X509v3 Authority Key Identifier:
                keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:6d:d7:42:1b:f3:a9:e4:13:01:05:41:65:eb:24:c1:22:63:
         df:cc:14:db:5c:62:b4:78:76:39:37:9d:00:a2:b8:8b:ee:36:
         82:84:a5:6a:c3:06:8d:fa:00:1f:b5:bd:ad:b3:0a:b5:ca:78:
         3b:c4:a9:a4:c7:a3:38:a4:54:b8:34:d9:3d:66:ee:bc:52:7e:
         5c:b0:93:f7:a7:8d:d6:5c:16:b8:2d:d5:8a:bc:f2:1f:1a:c6:
         6a:c9:fb:12:97:35:63:35:ba:1c:c6:c8:c2:50:a6:d1:0c:d5:
         76:bc:ba:1f:fa:97:32:20:96:3c:63:49:40:79:96:ec:10:58:
         cd:a1:58:9b:8b:54:22:8b:74:8c:b0:18:2b:44:d1:6d:d3:55:
         4c:c5:f2:d6:42:2d:c3:79:38:44:51:7c:d7:2b:f8:df:2b:08:
         77:d9:0f:e0:ca:6e:4b:c9:4c:05:01:98:41:fd:0b:0f:85:65:
         84:a6:12:0c:f1:37:f9:88:55:56:d1:77:21:6e:fb:57:22:94:
         ab:c2:f8:28:19:bd:89:b9:ae:85:d9:65:ba:bb:5b:62:cd:0d:
         21:c3:24:24:97:e6:96:fd:eb:10:db:ca:24:e6:bb:42:7e:d3:
         90:22:6c:96:6c:a5:5d:f8:a1:59:d9:3d:11:26:9a:8f:fa:69:
         8e:b2:b2:e0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICA7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx
OTAwNzE1RUQwHhcNMjQwMzI5MDIxODI5WhcNMjQwNDA1MDIxODI5WjAYMRYwFAYD
VQQDEw02NjA2MjRmNi02NGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwx+egC3cDgckSs1M5/gPLoAzzar9nRxJrJ+BtPsHKql6PH+ySXLRJvHvDqX0
k1/i9az9GY2wMvMX00zfTFc4KzfQplpewgZ9MAryJVqpSJDjgEq6dW5aZ2h2Dsyz
ImZx3PJ8PtVSAa440F64qkBWTd+nXUUNc3YwDxFV0s2e829LEP7w0DXxrTheBhsL
to3Gz0k7PucQnayUo0yRYnXIpGyftAQr/083lV8fm1eT8rxdvXb7jb88lNjYwQqI
2mB2MJ+fGZ2NEBn9yHsA/nxxsd01BSsZzdUFydJF9Vqkqtah7rjTUGUT76cyzvtC
dE+O3bim8AZwnD/cM5f8lBYvMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVzBeyb
iyG3xALWELSfzzmSRODHMB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2
RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG
ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
Q0NGRi85QTVFQzE2QzQ2RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpY
S1BKUHF0akxHbDhaQUhGZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAXbddCG/Op5BMBBUFl6yTBImPfzBTbXGK0eHY5N50AoriL7jaChKVq
wwaN+gAftb2tswq1yng7xKmkx6M4pFS4NNk9Zu68Un5csJP3p43WXBa4LdWKvPIf
GsZqyfsSlzVjNbocxsjCUKbRDNV2vLof+pcyIJY8Y0lAeZbsEFjNoVibi1Qii3SM
sBgrRNFt01VMxfLWQi3DeThEUXzXK/jfKwh32Q/gym5LyUwFAZhB/QsPhWWEphIM
8Tf5iFVW0XchbvtXIpSrwvgoGb2Jua6F2WW6u1tizQ0hwyQkl+aW/esQ28ok5rtC
ftOQImyWbKVd+KFZ2T0RJpqP+mmOsrLg
-----END CERTIFICATE-----
Generated at Fri Mar 29 03:43:49 2024 by rpki-client on console-fra.rpki-client.org