Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft
File:                     HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json)
Hash identifier:          6JM+0zpeaNbeqIrVbxgxQwUDzMFlVK29ajuWVh8Coe8=
Subject key identifier:   98:FD:24:15:61:8A:6C:DB:D0:9E:58:B4:DA:22:BD:7F:40:5A:BB:77
Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10
Certificate issuer:       /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10
Certificate serial:       1412
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft
Manifest number:          1406
Signing time:             Thu 20 Jun 2024 17:20:22 +0000
Manifest this update:     Thu 20 Jun 2024 17:20:22 +0000
Manifest next update:     Thu 27 Jun 2024 17:20:22 +0000
Files and hashes:         1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: +WMaH8qgg8gl7mwlIVBQ8yCDAAsDjY8m8tjQoc2YKGk=)
                          2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: CIGlpvkFxQBpTdIiM2OJXd45dg87sgYC6+6uY0OF7Tk=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl
                          rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 27 Jun 2024 16:37:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5138 (0x1412)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10
        Validity
            Not Before: Jun 20 17:20:22 2024 GMT
            Not After : Jun 27 17:20:22 2024 GMT
        Subject: CN=667464d6-3d12
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:9e:52:cd:11:48:f2:48:be:3c:d1:e6:e6:97:
                    22:16:15:b2:83:b5:bf:b6:71:0a:05:f9:0b:f4:d3:
                    0d:1e:79:8c:93:bc:38:12:a5:c8:74:2f:00:62:f2:
                    75:24:c1:d7:bb:88:10:8c:f2:51:62:09:8a:c0:2e:
                    0d:b0:f4:ca:96:61:48:0a:15:84:f4:c6:28:1b:7a:
                    6a:49:0f:93:85:89:e4:b2:14:ad:4c:b1:3f:1f:c3:
                    c5:7f:b8:f5:5c:7e:65:0b:46:ad:ec:3a:fc:30:23:
                    c7:71:4b:17:79:d9:1d:eb:ea:65:fb:11:08:0e:f8:
                    7f:54:32:e8:27:17:cd:82:17:ef:3c:f2:9c:d8:07:
                    39:39:4e:cb:ff:cf:34:88:cb:65:49:fc:8c:a8:dd:
                    1f:1e:12:43:bc:f6:c5:a4:19:51:d0:9b:b3:f7:b4:
                    23:42:e4:77:60:e2:a8:40:31:ff:16:92:8b:87:e1:
                    d8:db:fb:7a:40:f5:4f:7c:3f:ca:7d:ee:4d:89:3a:
                    52:c0:5f:9b:23:ac:6b:ca:06:ff:2a:93:38:92:10:
                    e8:65:70:58:9d:95:53:2f:e4:62:6c:1d:49:c1:a1:
                    a7:3d:92:28:01:6d:34:d8:5f:f4:7c:a1:05:a1:c6:
                    80:59:d5:9c:2e:66:90:9f:eb:9c:7a:c7:aa:59:49:
                    1b:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:FD:24:15:61:8A:6C:DB:D0:9E:58:B4:DA:22:BD:7F:40:5A:BB:77
            X509v3 Authority Key Identifier:
                keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:22:f0:bb:d6:b2:7a:e3:3a:6c:28:27:0d:ba:d8:f0:94:12:
         08:ea:08:8e:ed:23:f1:18:a7:10:6f:c7:76:c1:4b:65:bf:28:
         f0:37:c5:ea:f4:6c:e7:78:3b:59:39:3d:6e:2a:90:ea:8c:e4:
         01:cc:b1:85:4b:ca:de:d5:15:80:7a:8a:2e:d2:78:4c:69:f7:
         f6:06:c7:f4:ca:5a:bd:55:50:42:7f:8d:85:cb:51:59:a0:8c:
         31:9a:3d:c4:25:f3:eb:91:d9:d8:e4:b3:a9:2d:1e:71:56:3f:
         36:86:7e:a1:9a:d6:d2:8d:97:d6:cb:8b:5c:a8:6b:e2:fc:eb:
         79:9a:09:9c:8f:7d:7b:73:47:c7:6a:12:f4:0f:c9:c1:ce:40:
         36:c5:00:06:af:f6:e1:6f:94:be:d0:db:3e:4c:c4:20:79:9e:
         a7:80:51:cf:c0:92:ea:f8:86:24:2d:02:87:3b:2a:03:56:7c:
         33:9b:8a:4d:63:2d:8d:6c:9c:14:b7:ca:4f:75:19:12:d9:61:
         ba:3d:9b:78:0a:b3:ad:75:e1:88:e7:b1:ad:fa:e6:b4:02:50:
         40:2a:cf:22:19:7e:2f:15:b8:77:27:cc:9e:c2:9a:6d:c9:98:
         2e:89:b0:6e:50:71:fc:5b:4a:ff:0c:ce:a7:27:13:d3:45:06:
         2e:5d:fb:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 20:11:12 2024 by rpki-client on console-fra.rpki-client.org