Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft
File:                     1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json)
Hash identifier:          t3yL4tjQ54yB7HLeSbYc2r6lSw6+zm5+ECiIxxu+rFg=
Subject key identifier:   B1:80:9E:16:F0:74:9F:D7:01:B0:D4:CD:38:CF:AD:68:72:26:4F:67
Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78
Certificate issuer:       /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78
Certificate serial:       0776
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft
Manifest number:          0768
Signing time:             Fri 22 Nov 2024 21:00:51 +0000
Manifest this update:     Fri 22 Nov 2024 21:00:51 +0000
Manifest next update:     Fri 29 Nov 2024 21:00:51 +0000
Files and hashes:         1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: 5sNvC3K/yx2qvp994StAvKSvFYxXHfc7UV9TakR7VnI=)
                          2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=)
                          3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl
                          rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 29 Nov 2024 20:43:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1910 (0x776)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78
        Validity
            Not Before: Nov 22 21:00:51 2024 GMT
            Not After : Nov 29 21:00:51 2024 GMT
        Subject: CN=6740f103-8a3d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:b8:73:59:9c:5e:be:e2:f1:67:7b:d6:d6:e7:
                    80:ac:0b:08:2a:12:e5:bf:b4:cd:e5:1d:82:db:90:
                    f6:82:a1:5c:dd:5b:bb:08:0b:97:be:59:1b:85:c6:
                    88:9b:81:8f:74:0f:4c:8e:9e:32:ef:99:10:22:d6:
                    72:1c:17:61:24:67:24:5b:fe:7e:01:f0:c4:4f:7e:
                    da:46:9c:bc:ef:22:8f:29:29:4b:b3:b0:5a:e7:41:
                    13:b5:5c:00:28:bb:3d:e4:f4:05:74:3e:44:29:ba:
                    15:02:3f:1e:07:e6:ce:16:27:6f:7c:eb:6c:ad:ca:
                    5e:f2:64:cc:3b:59:bb:72:f4:61:45:4c:c1:6a:5c:
                    68:0a:43:f5:93:fd:9f:30:a3:fd:33:c6:ad:c0:f9:
                    57:f7:b3:c2:43:5f:ce:e5:57:15:b7:48:0b:b1:ee:
                    1c:2f:25:7e:55:01:a2:88:e2:ad:e7:65:02:c8:ae:
                    73:f9:a8:85:6f:59:6a:08:97:bb:d4:a9:f0:b8:51:
                    18:ea:4a:84:d2:1d:39:f8:aa:f1:ec:f3:f2:30:1c:
                    1c:f1:a1:f6:62:56:e8:0d:ad:90:1e:8f:fd:ef:34:
                    89:fb:e8:73:f9:5d:45:d8:11:6d:e0:01:ba:4d:ca:
                    e9:9a:85:ae:ca:bd:0f:fe:09:b5:28:ce:4a:60:36:
                    06:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:80:9E:16:F0:74:9F:D7:01:B0:D4:CD:38:CF:AD:68:72:26:4F:67
            X509v3 Authority Key Identifier:
                keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:39:be:c6:33:08:e6:23:04:46:2c:3a:97:c4:20:33:b2:cc:
         d0:a3:a7:78:d0:61:62:12:28:49:6e:37:56:32:76:d5:92:1d:
         20:f2:cc:4e:0e:fe:10:1c:24:33:fa:2a:1d:ec:e0:0e:44:1d:
         c8:a8:0a:eb:9f:02:40:65:88:18:dc:d6:ec:6e:b2:ce:32:9d:
         d0:66:05:11:60:a7:87:e8:67:9f:6c:9b:9b:f0:8f:e8:0f:b3:
         bb:6f:51:a6:ce:60:95:7c:13:38:60:60:d1:bf:08:7c:8b:3c:
         64:2d:ec:a8:28:eb:52:cd:25:f7:6c:1b:21:aa:9a:8e:b8:b9:
         08:4e:22:63:0a:56:3d:85:1f:ef:74:1e:e8:bc:eb:9f:c5:28:
         90:c4:cd:26:6e:c4:d1:c0:bb:5c:ff:55:50:6f:d8:cd:43:4c:
         2e:11:5d:48:7f:e3:7c:b0:04:93:7b:84:18:de:40:1e:ac:58:
         89:a7:9d:e7:50:4c:62:bb:38:d1:f5:8c:26:88:30:ec:1a:3a:
         31:cf:85:3a:b4:97:5d:22:6b:55:64:49:6e:6e:c1:fd:42:a4:
         21:eb:ab:95:ac:d0:26:3f:5e:46:dd:fc:07:4f:6c:bb:1f:61:
         4e:11:bb:b2:b3:c7:b9:14:b0:1b:13:70:7b:a4:db:4f:58:32:
         d3:48:5a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:09 2024 by rpki-client on console-fra.rpki-client.org