Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft
File:                     YBqj_Udwv8aa8kBvLoDtCOfca0M.mft (raw, json)
Hash identifier:          ouH9TdSTCjYcLwLfOVTK0g0q9tzbnWJUGmuEwOrrOHc=
Subject key identifier:   B6:FC:71:FB:41:EE:79:C7:E7:37:5F:C0:ED:71:11:63:37:63:65:E2
Authority key identifier: 60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43
Certificate issuer:       /CN=A91954E2/serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43
Certificate serial:       4E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft
Manifest number:          4D
Signing time:             Sat 23 Nov 2024 05:13:39 +0000
Manifest this update:     Sat 23 Nov 2024 05:13:39 +0000
Manifest next update:     Sat 30 Nov 2024 05:13:39 +0000
Files and hashes:         1: YBqj_Udwv8aa8kBvLoDtCOfca0M.crl (hash: NEDJap0d48vE42Y9AYiwIF0cwngD/0R8LpnhpSASLho=)
                          2: CC8E710C347011EF9F04CE66C4F9AE02.roa (hash: urtUAIwb+zR0u7Kbr6u1BvZ02jJcyaKAix72zb6Od6c=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl
                          rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 30 Nov 2024 02:50:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 78 (0x4e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91954E2/serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43
        Validity
            Not Before: Nov 23 05:13:39 2024 GMT
            Not After : Nov 30 05:13:39 2024 GMT
        Subject: CN=67416483-e56c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:ed:5d:35:5c:26:97:b0:e3:bc:44:5c:e1:cb:
                    5e:e3:76:c5:7e:37:43:f4:a4:f3:e8:c1:73:c3:9a:
                    cb:82:85:b5:90:dd:40:77:51:e8:05:97:42:83:71:
                    6c:af:aa:c1:e6:75:52:54:66:5a:be:ad:50:44:35:
                    c6:94:6c:01:0e:01:4e:ec:f3:a6:02:93:e8:45:f0:
                    96:57:c8:86:38:14:bf:a8:f3:e9:1b:f6:1d:b8:05:
                    cf:74:96:e7:b5:07:15:3d:53:25:4f:19:c8:91:53:
                    a3:af:d7:8b:da:ab:93:d6:2b:a7:a9:66:69:b4:b8:
                    1d:9c:f0:57:ba:f6:ec:78:75:e9:cd:24:e5:b6:d1:
                    51:60:0b:87:c1:fc:9f:00:a1:3c:42:23:af:5b:85:
                    d7:90:4e:b6:54:dd:23:1f:2e:f6:5f:58:5e:53:36:
                    c3:fe:ea:ba:a8:81:43:e3:ed:27:ad:94:d3:c7:af:
                    86:16:49:79:bb:8f:aa:7f:01:b4:33:4e:fb:53:df:
                    65:23:07:de:31:35:64:60:75:d1:4d:63:88:7c:23:
                    0b:e9:2a:f8:c9:16:6c:31:ec:1f:32:65:5b:83:b9:
                    4a:e5:1f:b4:59:e5:4e:c4:54:86:1e:df:a4:42:39:
                    a5:39:88:31:d0:db:06:24:d4:58:38:ae:ff:f4:28:
                    86:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:FC:71:FB:41:EE:79:C7:E7:37:5F:C0:ED:71:11:63:37:63:65:E2
            X509v3 Authority Key Identifier:
                keyid:60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:64:8c:35:82:7e:01:58:3e:1d:56:d5:58:c1:c4:99:b3:1e:
         d0:14:20:8e:88:93:71:d6:58:24:e3:51:e8:00:10:38:71:df:
         36:23:b9:39:4e:61:b0:ec:19:f5:73:18:8f:27:cc:2a:45:28:
         2d:6b:9b:be:cf:ca:f8:f5:ea:84:53:45:79:a9:c9:5f:88:52:
         75:6f:79:ca:63:1f:4c:a7:50:e5:64:88:1a:71:22:d7:2d:cb:
         f0:5b:03:47:89:2b:c8:3d:45:ac:79:dd:83:1a:8e:a1:09:97:
         c9:a3:4e:b9:08:42:3f:6a:d4:d3:cb:c8:02:c3:ca:95:ed:42:
         a5:5c:7f:6e:93:10:88:fb:07:f0:57:b6:df:6e:f5:5a:6c:61:
         2f:d4:99:dc:39:c5:30:74:7a:a9:9a:5b:d8:da:b6:3c:98:66:
         65:27:fe:c4:56:5d:23:58:f0:46:b3:ec:44:cc:12:56:24:89:
         d6:5c:82:29:6b:44:47:2e:79:46:ef:a5:e4:66:f0:78:56:b6:
         d6:5d:b9:5d:26:f7:ea:35:2f:d0:63:9c:4a:da:75:53:9f:ac:
         f7:66:73:e5:44:31:9e:fa:3a:97:e4:4f:aa:00:c6:e6:55:a6:
         75:97:c9:bb:42:36:95:01:56:9d:aa:4c:56:fa:1a:b2:d7:56:
         17:a7:39:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 06:13:15 2024 by rpki-client on console-ams.rpki-client.org