Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft
File:                     YBqj_Udwv8aa8kBvLoDtCOfca0M.mft (raw, json)
Hash identifier:          udJUknSAlsRtf1Zzv7rJcE9R2Mq8l+1MV0NnUTixEdg=
Subject key identifier:   C4:8E:66:36:D8:29:C1:D4:F8:DF:EF:35:97:79:98:73:04:41:64:5F
Authority key identifier: 60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43
Certificate issuer:       /CN=A91954E2/serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43
Certificate serial:       44
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft
Manifest number:          43
Signing time:             Sun 03 Nov 2024 05:16:56 +0000
Manifest this update:     Sun 03 Nov 2024 05:16:56 +0000
Manifest next update:     Sun 10 Nov 2024 05:16:56 +0000
Files and hashes:         1: YBqj_Udwv8aa8kBvLoDtCOfca0M.crl (hash: uwfrN1GwaS6mfNqD/cpq60khd4muBQXpz5a2KgeTYo4=)
                          2: CC8E710C347011EF9F04CE66C4F9AE02.roa (hash: urtUAIwb+zR0u7Kbr6u1BvZ02jJcyaKAix72zb6Od6c=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl
                          rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 10 Nov 2024 02:50:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 68 (0x44)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91954E2/serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43
        Validity
            Not Before: Nov  3 05:16:56 2024 GMT
            Not After : Nov 10 05:16:56 2024 GMT
        Subject: CN=67270748-dbf8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:d6:35:04:c8:39:1a:0a:4c:c7:39:57:3c:e7:
                    8f:88:53:ec:29:51:ae:72:5e:d8:aa:91:32:c7:87:
                    20:7f:2c:8b:af:b5:ee:71:4f:3f:fc:b5:43:cd:20:
                    57:94:c8:37:63:bc:9e:38:17:f5:4a:30:df:85:10:
                    4c:05:e3:e4:23:c3:be:d5:fc:64:43:5d:5f:b8:7d:
                    d9:9b:60:26:3f:fd:0d:68:bf:42:97:a7:75:0a:56:
                    92:db:bb:c4:0b:68:d4:a1:a7:2d:64:fe:ba:9f:9b:
                    eb:3e:7c:99:9d:28:91:43:0a:71:47:0a:52:55:bb:
                    14:ea:86:12:7b:da:fc:aa:07:44:43:f5:53:5d:1b:
                    81:08:1f:74:7d:5f:e1:8c:57:83:2a:11:62:38:7d:
                    db:7d:cf:9d:ce:a1:1c:0e:da:87:37:1d:b1:27:02:
                    5b:d1:82:9d:2f:ed:46:f6:45:68:fc:76:73:68:5b:
                    4c:4d:e4:b1:84:61:f7:18:2c:7a:5d:a5:6f:7e:71:
                    57:67:c8:fb:6d:28:ea:6c:c0:28:c4:72:9a:13:eb:
                    ff:08:a2:93:82:18:49:00:17:1d:2f:39:2c:b3:6e:
                    52:4f:7e:82:e9:b4:3b:12:38:fe:6a:d0:71:88:c8:
                    af:70:ef:a7:56:2f:05:56:54:8b:1e:fd:85:b1:7e:
                    8c:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:8E:66:36:D8:29:C1:D4:F8:DF:EF:35:97:79:98:73:04:41:64:5F
            X509v3 Authority Key Identifier:
                keyid:60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         97:aa:07:6c:f8:b5:05:29:31:22:ee:05:10:6a:a5:dc:d0:6b:
         6d:dc:a1:63:1e:d1:21:60:01:64:01:6c:b9:36:cf:af:eb:01:
         f9:9c:dc:71:e9:41:71:69:6a:20:91:57:b2:d7:d4:94:b0:9f:
         71:95:45:68:80:e4:a8:78:97:0e:d9:60:c7:41:2f:62:42:ed:
         41:b6:e8:3a:eb:31:77:d9:eb:fe:81:0b:57:4a:a6:b3:46:ca:
         49:32:34:3b:76:b8:fc:01:09:3b:20:73:9c:93:db:73:ad:f1:
         0f:55:04:a9:90:a6:fc:c3:7d:f4:b5:db:11:96:0c:1a:0e:63:
         15:87:a6:3b:4b:dd:71:5b:5b:ae:8d:32:d2:8b:21:b0:46:02:
         c6:86:7c:65:47:71:23:fc:f0:9e:bb:be:55:e7:3f:ea:52:79:
         bb:2e:bb:84:7a:c1:6e:72:97:e9:fe:be:45:ee:9e:dd:9f:07:
         8e:3a:e5:d1:2e:4e:3a:a2:a6:a9:f5:c4:82:1e:9c:6b:ba:4d:
         7d:78:a1:57:34:c7:8e:69:b7:00:2d:4c:dd:4a:07:5b:e3:48:
         5a:3a:85:83:36:95:59:49:33:c6:6d:36:8c:c7:4f:a6:58:db:
         cf:cb:26:1a:4f:3e:43:c6:af:e8:40:78:99:24:49:1e:3f:74:
         9a:04:aa:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 3 06:07:42 2024 by rpki-client on console-fra.rpki-client.org