Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.mft
File:                     guQjhs0B-IaA3TAN-_-ittLn5OY.mft (raw, json)
Hash identifier:          MiMb/SUBU0Z6HfIkenkHy8MxuBS/WKVrGUanVaO5/nk=
Subject key identifier:   77:BA:00:E8:AD:4B:77:49:56:58:2D:16:10:3F:48:21:E5:9D:9C:79
Authority key identifier: 82:E4:23:86:CD:01:F8:86:80:DD:30:0D:FB:FF:A2:B6:D2:E7:E4:E6
Certificate issuer:       /CN=A919D530/serialNumber=82E42386CD01F88680DD300DFBFFA2B6D2E7E4E6
Certificate serial:       49
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/guQjhs0B-IaA3TAN-_-ittLn5OY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.mft
Manifest number:          47
Signing time:             Sat 23 Nov 2024 05:18:51 +0000
Manifest this update:     Sat 23 Nov 2024 05:18:50 +0000
Manifest next update:     Sat 30 Nov 2024 05:18:50 +0000
Files and hashes:         1: guQjhs0B-IaA3TAN-_-ittLn5OY.crl (hash: evcdhZxoJoj88CJWM2nioYve256oYhFeqQF+6/jIoSw=)
                          2: A48F17F6406411EF96445E28C4F9AE02.roa (hash: tty+LCDvang4Y0BeMpj6lCM+SIBVUZxAkloasgq2izo=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.crl
                          rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/guQjhs0B-IaA3TAN-_-ittLn5OY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 30 Nov 2024 02:50:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 73 (0x49)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919D530/serialNumber=82E42386CD01F88680DD300DFBFFA2B6D2E7E4E6
        Validity
            Not Before: Nov 23 05:18:50 2024 GMT
            Not After : Nov 30 05:18:50 2024 GMT
        Subject: CN=674165ba-3639
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:fb:5a:9f:53:9d:e8:40:8a:aa:37:9b:bf:86:
                    95:00:11:33:9f:da:02:4b:69:be:09:fb:d8:ff:d8:
                    f2:a9:47:d5:d4:d1:d4:f2:ec:f7:5c:81:ff:58:b0:
                    be:1a:ab:88:9a:36:57:3e:5a:88:42:f5:50:a6:93:
                    d5:68:dc:6b:68:59:14:11:68:ed:4a:bb:c9:55:c1:
                    da:43:04:bb:68:6e:06:ec:29:c4:d6:af:bd:f8:fa:
                    1a:00:79:11:df:7f:b0:47:10:8d:58:d4:dd:c7:60:
                    79:9d:68:84:68:cb:65:f4:86:82:e8:1d:5d:cf:81:
                    db:4b:de:49:9d:27:6e:24:83:3e:eb:04:20:8e:bb:
                    c5:c9:43:73:30:77:e7:88:59:c4:f0:99:3d:a3:8c:
                    5b:0d:9f:0e:0b:b5:ef:c8:3c:c2:52:36:fd:c4:fb:
                    2c:17:ce:61:67:b3:42:5a:e1:36:43:7b:6c:67:6b:
                    fb:d7:6c:7b:9e:ed:14:15:d6:4e:7a:1f:f8:cf:9f:
                    df:8e:72:06:fa:6a:ff:73:66:f7:66:eb:4c:76:32:
                    49:6f:e7:69:5f:00:07:f7:95:bf:da:e2:2d:83:cc:
                    27:bf:fc:e2:4f:8e:2f:46:0b:32:01:b7:39:af:0b:
                    22:dc:be:a9:14:5f:77:8a:7d:92:8d:67:81:73:f0:
                    3f:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:BA:00:E8:AD:4B:77:49:56:58:2D:16:10:3F:48:21:E5:9D:9C:79
            X509v3 Authority Key Identifier:
                keyid:82:E4:23:86:CD:01:F8:86:80:DD:30:0D:FB:FF:A2:B6:D2:E7:E4:E6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/guQjhs0B-IaA3TAN-_-ittLn5OY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:9f:31:0f:df:2d:00:4b:22:87:14:aa:c6:47:d9:56:92:82:
         19:6a:3f:60:d1:35:19:d8:bc:33:2d:a6:fb:6a:e4:13:3e:7e:
         bd:e2:a2:3e:43:9d:1a:d0:51:13:56:c3:84:5c:63:d0:a1:51:
         df:af:15:95:aa:ca:3d:dd:78:98:0d:6d:e9:ee:f9:ea:88:c9:
         17:10:d3:fe:83:76:6a:81:a7:39:ed:a8:79:0a:12:24:8f:b9:
         93:f5:e2:bf:ed:f8:66:90:0c:6a:2e:8e:ef:fe:ac:99:6c:88:
         e6:00:6b:a8:b8:da:3a:7c:86:5d:45:77:fb:9e:d5:50:24:47:
         2e:a3:8e:cb:d4:5f:cc:7d:a3:53:2a:83:ef:e0:9a:61:a4:47:
         9b:3d:ae:28:5d:4d:cd:3a:d7:86:cc:c8:b9:d5:a9:be:45:34:
         2f:86:33:54:00:d7:94:0e:9c:21:3e:e9:86:9b:56:a3:a1:92:
         b9:a8:dd:bb:ba:8d:1d:0a:14:f6:5e:68:bd:7e:09:97:66:fc:
         4b:f2:bb:4a:2e:b1:c6:30:4a:a0:bc:16:88:22:aa:0d:a0:ec:
         81:8a:21:78:40:46:f9:35:7a:17:8c:66:39:f7:d2:dc:f8:12:
         ba:04:ea:2e:89:92:99:8d:95:45:ba:e6:6c:6c:f3:a6:89:e9:
         13:28:6e:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org