Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
File:                     TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json)
Hash identifier:          9fksmJUnkLG09mlKxIu3UPPMnKUg8p3QAXcGIFY5iZE=
Subject key identifier:   B7:45:55:FA:6A:F6:A8:D4:EE:1D:5E:85:50:CB:20:D0:54:92:A1:B7
Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8
Certificate issuer:       /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8
Certificate serial:       1552
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
Manifest number:          14D9
Signing time:             Thu 20 Jun 2024 17:20:25 +0000
Manifest this update:     Thu 20 Jun 2024 17:20:24 +0000
Manifest next update:     Thu 27 Jun 2024 17:20:24 +0000
Files and hashes:         1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: envUltvTmjy1wxYgDP2TY/eNk4+I0RT4A44AHYXmrCo=)
                          2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: tZs7Jo2Vwt4OV24GTrtVhwZBng8xDrHXDmJyWLYnaQg=)
                          3: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: tEvhbktaxXSOPBsOlOp9gbkXZKZjLCAbmL8sFIx8930=)
                          4: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: t4b6owy4NRrP0RobCmaoRMjmGrWzoOMmUErgUnimxkk=)
                          5: 57A65AD4DF7111EE9EDAA07FC4F9AE02.roa (hash: hSRHAwS7VPs3Xh0qkgsS0cMOauabddShgmlyBn4Cwvw=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl
                          rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 27 Jun 2024 17:20:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5458 (0x1552)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8
        Validity
            Not Before: Jun 20 17:20:24 2024 GMT
            Not After : Jun 27 17:20:24 2024 GMT
        Subject: CN=667464d8-5424
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:fa:4e:d1:99:88:e8:ff:77:6d:8f:06:1f:81:f7:
                    9a:46:ff:1c:a4:00:0b:d6:85:93:bf:1f:83:19:9f:
                    7c:8e:24:0f:b2:5c:2e:f8:97:0f:a5:96:48:9a:52:
                    e6:50:4f:69:ff:dc:56:b1:ed:3b:40:8e:88:25:a0:
                    cc:5c:55:52:50:cc:4a:e0:7c:73:7d:6d:68:f8:62:
                    a7:94:61:db:5d:b0:61:5b:7b:dd:67:ce:88:19:29:
                    a3:4d:9a:c1:1e:bb:c2:23:54:f0:94:76:70:a8:c3:
                    61:79:74:c7:31:8d:fd:39:75:47:be:9d:74:dc:33:
                    05:99:91:00:42:72:d8:70:f1:ed:cd:35:27:e6:02:
                    62:aa:df:e0:45:e2:f6:93:a0:27:38:00:a2:e1:15:
                    36:d7:77:7a:0d:02:8c:c9:da:92:40:9d:c2:b4:3e:
                    a5:1b:3b:31:75:42:6d:8c:9d:40:5c:44:e3:a6:fb:
                    ea:6a:02:3d:48:66:89:45:70:4c:06:48:a3:24:f8:
                    65:da:62:47:21:97:fe:c3:1c:88:e8:c0:06:26:0e:
                    96:b1:ac:74:8b:03:94:68:4b:ab:9b:ed:62:79:45:
                    81:84:1a:50:2d:9b:7a:21:8c:a8:6f:18:22:70:6b:
                    95:80:f5:85:93:a6:47:cc:e5:62:24:0a:2b:13:f8:
                    94:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:45:55:FA:6A:F6:A8:D4:EE:1D:5E:85:50:CB:20:D0:54:92:A1:B7
            X509v3 Authority Key Identifier:
                keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:d0:7b:85:69:59:ce:38:82:69:62:d2:3e:4b:13:c5:a3:44:
         77:d7:97:14:15:6c:ff:ab:e7:bb:09:93:eb:6a:9b:b1:18:d9:
         3e:1c:cf:0d:7c:c0:8e:ab:58:4b:cb:d2:e3:3c:2f:51:bb:47:
         c7:dd:1e:fe:f3:32:05:d8:6b:da:90:4d:7e:ee:90:67:f0:79:
         a9:4e:83:fe:16:f0:19:dd:dd:a2:31:ab:3f:c7:4d:72:10:a3:
         9a:21:de:3a:39:2e:a9:50:5c:f7:58:c2:eb:e4:e0:71:11:16:
         66:37:06:72:2b:21:03:23:a6:d0:16:5e:cb:42:12:0b:0f:d1:
         f2:0b:74:ff:1d:26:80:f8:19:d6:67:f5:78:a2:b1:8c:a9:eb:
         c9:b8:b5:11:88:7d:84:f6:1c:f3:87:7b:0d:08:7e:1d:b1:0b:
         9c:03:6e:b5:93:fe:a5:5b:57:a9:27:bf:66:d9:28:45:6e:99:
         ac:ae:4e:f6:d1:b3:bb:63:18:8c:3e:23:2d:ab:b5:19:60:53:
         f3:7a:7a:6a:d0:dc:50:77:a5:8d:ed:75:17:79:f4:69:d0:09:
         d9:4e:4c:16:6e:88:f1:63:34:ce:ea:1a:ea:77:2f:ca:d2:08:
         88:39:76:52:d7:0d:87:da:8e:0a:f7:01:dc:c8:2a:b3:a3:c7:
         d8:33:c7:52
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICFVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2
NDI5RDg4QjgwHhcNMjQwNjIwMTcyMDI0WhcNMjQwNjI3MTcyMDI0WjAYMRYwFAYD
VQQDEw02Njc0NjRkOC01NDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA+k7RmYjo/3dtjwYfgfeaRv8cpAAL1oWTvx+DGZ98jiQPslwu+JcPpZZImlLm
UE9p/9xWse07QI6IJaDMXFVSUMxK4HxzfW1o+GKnlGHbXbBhW3vdZ86IGSmjTZrB
HrvCI1TwlHZwqMNheXTHMY39OXVHvp103DMFmZEAQnLYcPHtzTUn5gJiqt/gReL2
k6AnOACi4RU213d6DQKMydqSQJ3CtD6lGzsxdUJtjJ1AXETjpvvqagI9SGaJRXBM
BkijJPhl2mJHIZf+wxyI6MAGJg6Wsax0iwOUaEurm+1ieUWBhBpQLZt6IYyobxgi
cGuVgPWFk6ZHzOViJAorE/iUaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdFVfpq
9qjU7h1ehVDLINBUkqG3MB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5
NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp
TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT
em1nTm5hQ3R2c0JrS2RpTGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAY0HuFaVnOOIJpYtI+SxPFo0R315cUFWz/q+e7CZPrapuxGNk+HM8N
fMCOq1hLy9LjPC9Ru0fH3R7+8zIF2GvakE1+7pBn8HmpToP+FvAZ3d2iMas/x01y
EKOaId46OS6pUFz3WMLr5OBxERZmNwZyKyEDI6bQFl7LQhILD9HyC3T/HSaA+BnW
Z/V4orGMqevJuLURiH2E9hzzh3sNCH4dsQucA261k/6lW1epJ79m2ShFbpmsrk72
0bO7YxiMPiMtq7UZYFPzenpq0NxQd6WN7XUXefRp0AnZTkwWbojxYzTO6hrqdy/K
0giIOXZS1w2H2o4K9wHcyCqzo8fYM8dS
-----END CERTIFICATE-----
Generated at Thu Jun 20 21:03:35 2024 by rpki-client on console-ams.rpki-client.org