Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft
File:                     YN1l7H9y62x9qLk3BuLTug8GW_w.mft (raw, json)
Hash identifier:          B2YS+/s1zCyDNKpwG/ZIZtoafxP/jicEEwC8ZvLxG6E=
Subject key identifier:   EF:29:EF:5D:BF:F4:53:8A:31:F5:39:D5:04:31:18:E0:10:43:42:FC
Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC
Certificate issuer:       /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC
Certificate serial:       1A03
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft
Manifest number:          19F6
Signing time:             Fri 22 Nov 2024 16:22:41 +0000
Manifest this update:     Fri 22 Nov 2024 16:22:40 +0000
Manifest next update:     Fri 29 Nov 2024 16:22:40 +0000
Files and hashes:         1: YN1l7H9y62x9qLk3BuLTug8GW_w.crl (hash: lTfPfUxKjGh8Z4+7DDAdKBhocpbUk85KKFECC1oyakM=)
                          2: D75BE71A410511E7970A2A5FC4F9AE02.roa (hash: bo/SZs4FQGVCgHbfJ/qOcN+amQtsXWeV9LBgPktlbik=)
                          3: 91CB97905BD211EBA9178181C4F9AE02.roa (hash: XfRW9hpvnBY9LTBMASrvKe5ewyj8spWmKtOVyqPmD0g=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl
                          rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 29 Nov 2024 16:22:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6659 (0x1a03)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC
        Validity
            Not Before: Nov 22 16:22:40 2024 GMT
            Not After : Nov 29 16:22:40 2024 GMT
        Subject: CN=6740afd1-4b8b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:42:31:8c:1f:6a:86:ef:d7:ee:c6:60:57:6d:
                    6a:42:80:76:26:cd:63:1f:20:7b:98:f6:71:7e:8c:
                    a2:fd:b7:06:0c:3f:0c:bd:74:09:ec:53:22:7a:d0:
                    d1:72:76:09:7b:ab:81:55:a1:7c:4f:f8:9f:cd:5a:
                    26:b5:4d:ed:e9:17:0d:eb:0e:b4:c3:00:38:a1:e9:
                    cd:23:ad:a6:a1:78:a1:65:56:22:65:df:7c:b0:15:
                    09:10:d6:88:a3:84:84:3c:ec:43:e3:ea:3c:a3:f2:
                    94:18:fc:90:52:8c:45:bd:c4:a2:93:cb:6d:73:06:
                    da:57:ff:07:ee:d8:79:54:db:79:28:9b:4f:85:b1:
                    ec:f2:50:5c:ac:e4:5c:5f:55:7d:3f:c4:02:24:24:
                    2e:af:73:f2:21:8d:c9:5c:6d:f7:32:b7:80:c8:4a:
                    a1:9d:4f:98:38:69:b2:a2:2c:3e:43:69:2c:c2:ae:
                    fb:77:ba:b3:af:7a:b2:7c:63:e8:0c:d3:fb:cd:a9:
                    d3:91:af:a9:9b:56:82:36:08:ee:e5:91:a9:05:bd:
                    8f:99:4f:a1:8e:a0:0d:88:b6:3b:88:63:70:3f:33:
                    1b:20:b7:fb:9e:f9:21:8d:74:72:62:7a:69:3a:1d:
                    bf:cc:22:57:99:ea:39:11:76:14:bb:be:0e:d2:5f:
                    67:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:29:EF:5D:BF:F4:53:8A:31:F5:39:D5:04:31:18:E0:10:43:42:FC
            X509v3 Authority Key Identifier:
                keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:31:97:fb:6c:66:b7:9a:d0:a4:1e:ad:7a:d9:0f:a9:95:b4:
         88:b9:9b:bc:33:42:13:67:81:ec:33:d6:70:60:73:54:5b:9f:
         48:70:6b:8f:0e:5d:29:d1:11:70:b3:4e:46:40:3d:f9:72:11:
         d4:92:c3:d0:9a:47:0b:5b:ba:fd:69:c6:7c:a4:f7:b4:15:d5:
         03:b6:d5:9c:0c:09:4a:fc:91:4d:93:9a:fd:00:9f:92:e8:8c:
         3b:f7:f7:6f:94:26:ab:fb:30:a3:e4:87:30:f2:0d:84:4a:89:
         58:c0:de:2d:e0:c9:83:5c:7d:6b:92:da:c7:7b:25:01:e2:37:
         07:7e:45:a2:a3:ab:41:55:97:8f:d2:d9:03:a9:62:a1:1c:a6:
         4d:83:42:2d:13:a0:85:17:48:09:24:f8:be:a5:0d:80:fd:ed:
         90:83:21:7d:9b:00:02:90:cc:67:55:29:4c:12:7b:6b:e1:6e:
         fc:e0:b9:4b:45:e0:f1:b9:81:91:e2:20:cb:14:ed:72:bf:6c:
         64:88:1f:e3:06:6d:0e:0a:ff:61:46:68:74:1c:51:91:18:82:
         68:09:0e:c2:99:54:00:d0:7c:61:81:d9:a6:2f:50:d0:eb:20:
         94:a3:f8:e4:32:05:5f:e9:14:3e:95:56:9e:a4:1f:69:ef:85:
         43:29:fe:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org