Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft
File:                     ntkFUQfHD4W7kajaAnC1ynYK61Q.mft (raw, json)
Hash identifier:          5S6OefcsO2FIiFpuA2+1NIRPoDmSoDmVvBHkNp8zP9I=
Subject key identifier:   F2:21:27:7F:21:BF:14:97:AC:90:6A:29:58:54:DC:43:35:01:C1:DE
Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54
Certificate issuer:       /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54
Certificate serial:       3560
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft
Manifest number:          342D
Signing time:             Wed 20 Sep 2023 14:51:20 +0000
Manifest this update:     Wed 20 Sep 2023 14:51:20 +0000
Manifest next update:     Wed 27 Sep 2023 14:51:20 +0000
Files and hashes:         1: ntkFUQfHD4W7kajaAnC1ynYK61Q.crl (hash: Qyfv9xyD1O4ZWJu8yvAz/ACTNLxNq+238CiUrMVW2Dw=)
                          2: 9D67280A844911EAA528AD63C4F9AE02.roa (hash: KkfOtuDBJG2pDkXZx5bb2tWCvb4gNQMGo0l3qNnl6lk=)
                          3: 35575C68844811EAB301615FC4F9AE02.roa (hash: m8kXjeLN2R4/2SpX25kuPJ+bB6wnSS+WiVF/xRgGVZo=)
                          4: 9604F4A6899911EBA32C6224C4F9AE02.roa (hash: vBH5UvUNESUBRATbVA62oerjKzYQikGnMvGZgZDg1/8=)
                          5: 7418230A6D4B11EBB1805C0DC4F9AE02.roa (hash: 7YzHbzAlN3P9NWeqg6oeWbPkZEfPbvGU9/a5GYdkevE=)
                          6: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (hash: nPd316Ss5x2RW4d0EyGxXZD4lPTOQfNdUfeTV93VjA0=)
                          7: 62F1B55EDC2B11EDB096B435C4F9AE02.roa (hash: WPtrisHv3kSvRs2ts01nNBhgzxT5jUbFeJ0JCRjJ4bQ=)
                          8: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (hash: 6Mar85+uke9D5/lKzQTCekP803m2mQL4RZrcdItZAFY=)
                          9: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (hash: eD4gf2wH1j+GIm+Uh6cabpZMfi7M2Nnmu6uKuqqgyug=)
                          10: 62464AACDC2B11EDB096B435C4F9AE02.roa (hash: dRLkAXfWPgpPEr2kDMy02kNf7W0VAlKj9wS7O0vK8tg=)
                          11: 35E95924844811EAB301615FC4F9AE02.roa (hash: yP1z3Hi9irTNK5CturM5keuqBRZDsHOrxX8k/YUFNLg=)
                          12: 32CF326ECA2E11EA80305F0DC4F9AE02.roa (hash: e6hFjEO2OZBIG7Obl/BshRFIzaRviwBFssIA5WC19IY=)
                          13: BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa (hash: j3/P07XCAwfjscQn398eo/DixUgrInPze7jLy5zxCT4=)
                          14: 443470FC7C1511EBB779C03EC4F9AE02.roa (hash: wf4GLKWmlE2jjhcu9Ii67Uwx+JylUPxvTsYfwDjvTcw=)
                          15: DED04A561D4111EB89535E1EC4F9AE02.roa (hash: w4A+gKv5lX7BnApjpOOZ0LTDKUy8hOsGg+JiZyf1mXo=)
                          16: 167FCE12844B11EA91F6956BC4F9AE02.roa (hash: ghtsneQrzutRg0n66Ez3VKb8Lj+TN+2xoPOjCGixLHQ=)
                          17: 9E1F70A4844911EAA528AD63C4F9AE02.roa (hash: Y0JYD9ZSTWq6l9AGGYhH3PhgIOKUHWRvWQxJBcPkFrs=)
                          18: D10DBCB2475C11EEBF5FB180C4F9AE02.roa (hash: CDHRKu4cLpcAHVzMdyu6rQYr30jICm+qYpTVZYhgXRI=)
                          19: D9E23E4A6D4C11EB938EC44DC4F9AE02.roa (hash: vUd046BIkUok6rKstTPyGg5c60qZCr4Ec61ggFuzqrw=)
                          20: DF6E9324D08D11EA9010E72EC4F9AE02.roa (hash: EzDqJO7NPmldTiOpJ5HxQKxo+kkfjdOLtAk1lrR/fm0=)
                          21: FBCDF210490B11EC8E4D1136C4F9AE02.roa (hash: yqIVfwysrk0uor9Z6FBr15Lpsk0JHARmh4bHj1ks068=)
                          22: FAF25932427711EEBEA02D22C4F9AE02.roa (hash: o+IG2UXKGlweQdZR5ILzIAhIEc2P1LEwRPoAhH0b/jo=)
                          23: 53E6ACC03B3C11EE9AD03F6DC4F9AE02.roa (hash: faGszzaWLaTCikGs/18YPg+E9I+9uvfi401Vrv4g09A=)
                          24: 9B4B6C82904911EABE5F0C63C4F9AE02.roa (hash: PeyJY8cseoRCQ1T3dMpA/vd6ZQvDMb2M8X2eQTYrfQc=)
                          25: D6672BEE0BD111ECB2E9C868C4F9AE02.roa (hash: pWaT8ovfK0F0EuVoZhY8rpCAMllqNJOJ2ia5JEy/+X8=)
                          26: 61B7C08EDC2B11EDB096B435C4F9AE02.roa (hash: aKr3TrivLM77yZnEMfPIx5Xrtby1gkV8btGYHv7PQrw=)
                          27: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (hash: XZ24Nlr9Ykfth13KN+60Y3nqanoc0REHI1pUHnxxEYg=)
                          28: 7D745B8C800411EB9398C63EC4F9AE02.roa (hash: JE9zy8+/s6cnCi1kVlSF8eOB+0Xz0t+RmT/hBdYZQxM=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl
                          rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 27 Sep 2023 14:50:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13664 (0x3560)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54
        Validity
            Not Before: Sep 20 14:51:20 2023 GMT
            Not After : Sep 27 14:51:20 2023 GMT
        Subject: CN=650b06e8-9afe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:1d:95:38:e4:c8:40:9a:36:b6:79:a0:41:11:
                    d6:4a:f2:cd:2d:ff:88:9d:78:bc:ad:cf:7a:13:69:
                    4b:93:db:f7:65:e2:fc:79:80:2a:9f:00:1e:9e:7e:
                    af:d9:48:27:ff:15:1d:09:1f:cb:76:b3:69:b3:f0:
                    cb:2c:48:0f:e7:f1:8e:6d:70:02:6f:53:34:ef:85:
                    e4:a5:3a:9a:c3:2c:99:87:ae:8e:2c:89:be:94:f8:
                    6c:e2:32:7a:48:86:cd:e2:23:c5:ed:1a:c6:19:5c:
                    c2:9d:6f:df:c8:8e:fe:6c:f7:e1:4e:be:e2:aa:6e:
                    83:b6:35:fb:30:7d:0e:64:62:a7:d3:98:e6:f4:70:
                    34:2d:5b:96:bc:9d:3f:e4:c9:eb:0a:5e:e8:a1:4d:
                    fa:1f:81:87:0e:b8:49:cd:96:85:84:30:ba:c3:b2:
                    8a:78:2e:cf:1b:6b:fd:1b:e3:a8:68:1c:a4:9a:76:
                    0f:84:c9:c2:f0:f8:a0:b9:bd:7b:60:40:46:8e:3e:
                    a3:c8:ad:0e:97:aa:cf:19:13:66:93:79:bd:11:06:
                    bc:80:f3:52:55:34:43:85:86:92:6c:33:49:eb:1b:
                    60:59:e6:c9:3a:f2:d3:dc:d1:97:c8:b3:54:6d:88:
                    89:e3:c1:d3:77:2a:ec:4c:55:b8:3b:1f:ec:80:e3:
                    3f:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:21:27:7F:21:BF:14:97:AC:90:6A:29:58:54:DC:43:35:01:C1:DE
            X509v3 Authority Key Identifier:
                keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:8f:09:e0:62:65:8a:a8:b4:38:83:56:b8:d5:fb:f5:50:26:
         d3:e6:41:89:ec:0a:57:6c:52:e6:c7:d6:1f:4f:8d:a8:15:8f:
         84:2e:cf:99:53:d9:72:bd:21:7c:ac:20:82:78:63:3c:ee:78:
         33:71:05:b9:c7:a2:7a:5b:df:11:9f:1f:16:97:71:a6:0a:2f:
         66:51:b4:6e:97:71:33:aa:25:3f:49:8d:7b:f3:89:d2:03:0c:
         e5:9e:39:76:dd:17:91:e1:2a:ec:4d:aa:27:34:1f:11:f0:91:
         5a:24:a6:a6:c9:b4:cb:66:2c:2a:c8:cb:50:b9:87:20:c2:00:
         95:0e:64:7d:d2:7b:b4:01:39:6b:c0:4b:f0:e1:9f:d2:10:db:
         5f:f0:0b:a5:e2:b7:c0:57:46:ec:df:25:69:e0:a2:43:2b:72:
         c1:fe:bd:81:32:4f:54:ea:f1:90:d4:35:c8:8e:f8:6f:00:e7:
         16:b0:b4:03:65:f7:49:9b:a4:d8:44:0f:1b:5b:4a:ec:cc:bc:
         b2:fb:79:be:bc:fe:dc:b9:31:1f:e0:d2:95:88:88:fd:4c:59:
         46:28:d0:41:ed:d0:3b:43:6f:63:9d:16:72:08:f8:6d:33:29:
         60:97:53:ed:b7:74:e3:32:a2:f1:f9:7f:3a:45:a9:35:87:47:
         78:88:af:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 20 15:19:03 2023 by rpki-client on console-fra.rpki-client.org