Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft
File:                     5esYDNbcUWxm01KwR7npxaUCcOM.mft (raw, json)
Hash identifier:          d9CBwI9PRlo66U1C6j2/lZxqXRpgBbBr6DcS4+6kCB4=
Subject key identifier:   9C:3F:D7:57:C5:1A:DC:37:80:7D:3B:05:17:77:79:69:00:D1:D7:71
Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3
Certificate issuer:       /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3
Certificate serial:       07FD
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft
Manifest number:          07E6
Signing time:             Sun 26 May 2024 22:01:55 +0000
Manifest this update:     Sun 26 May 2024 22:01:54 +0000
Manifest next update:     Sun 02 Jun 2024 22:01:54 +0000
Files and hashes:         1: 5esYDNbcUWxm01KwR7npxaUCcOM.crl (hash: Pcrsk8O0AavPnVQSA2PEJM+AZyq6qfKerwQTfFEvDPk=)
                          2: E2E21364C4F811EAB8D31113C4F9AE02.roa (hash: BIQumIGr6erTS4dsWexAI1EzFQcSWiKFq9JxlaxJzA0=)
                          3: F1A54AC47A5611EB876D281FC4F9AE02.roa (hash: dDoSSqmj+1KqoTK5wDPnFr2+FIWdHPdVfbnO5yGmVKY=)
                          4: 36945EC2232711EBA0F14F17C4F9AE02.roa (hash: /0RjVarbhWIDpd3cHraVVa21CcbNpmGk66YkcBro3Ns=)
                          5: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (hash: Lr1KMxJhPQ8D3zuPrAPoJ61RfejQ9+IvNN/JJj+oj5o=)
                          6: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (hash: btmAvtbg+cv8vIT238XnatcxOtJFH8w/wTzWY/BWnok=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl
                          rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 02 Jun 2024 21:17:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2045 (0x7fd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3
        Validity
            Not Before: May 26 22:01:54 2024 GMT
            Not After : Jun  2 22:01:54 2024 GMT
        Subject: CN=6653b153-a701
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:d1:fa:ae:d4:0d:c0:8f:58:5a:cb:61:25:d2:
                    78:dd:91:94:a3:9d:15:2c:ee:67:02:35:10:10:e0:
                    82:07:3f:9b:2e:53:31:17:2a:20:14:ad:ed:ed:86:
                    e5:7b:c5:7b:23:24:0c:6c:e1:0f:29:50:e6:93:66:
                    c7:a4:d8:69:bc:9e:e1:dc:5a:9e:9e:85:9a:3e:00:
                    d5:8d:0a:c1:30:44:dd:a3:07:87:68:d7:7c:d8:c3:
                    54:12:03:d2:4d:1b:ce:1f:78:9e:65:e9:52:cf:40:
                    ae:98:2a:3d:48:55:e7:f7:e3:76:42:e2:c3:ad:e7:
                    05:88:82:00:f8:fa:18:65:bb:01:50:e6:9f:3e:2e:
                    d5:00:e7:17:74:fe:73:4c:52:5a:6e:4a:04:fd:c6:
                    01:a1:6d:d9:4e:45:85:31:69:c8:7f:6c:82:0e:56:
                    a7:1a:dd:37:4c:12:f3:e7:bd:4a:ae:f9:e9:5a:08:
                    48:3d:69:f1:2a:4b:b9:1a:3b:37:60:b2:c9:34:85:
                    51:07:1d:45:6f:ca:19:f5:76:db:a9:f6:7f:4b:b3:
                    d8:43:04:2d:56:83:59:68:7a:5e:38:a2:0a:85:37:
                    51:77:75:4d:2d:e0:90:b4:e2:1e:f4:1c:f5:c3:76:
                    fa:c8:58:b8:2a:b3:de:3c:85:9e:e2:0a:84:47:db:
                    37:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:3F:D7:57:C5:1A:DC:37:80:7D:3B:05:17:77:79:69:00:D1:D7:71
            X509v3 Authority Key Identifier:
                keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:72:35:8e:e6:ad:e2:7f:b2:b0:f9:6c:06:1b:ab:5d:da:13:
         d0:63:55:32:35:69:61:0d:28:f8:ac:86:1b:63:d4:7a:e6:5c:
         82:5b:10:b4:a4:0b:57:fc:03:fd:e5:fb:2b:e0:7c:bc:46:c5:
         86:ed:28:74:f1:c6:27:4c:5f:27:fd:e2:23:c5:80:f7:cb:b2:
         33:fd:71:a5:b2:cb:3a:57:68:5b:f3:f1:16:61:d2:4b:0b:c9:
         40:f1:57:1a:2b:3a:83:54:1b:48:c0:2b:38:1b:da:2d:ef:74:
         05:16:c9:08:33:06:80:a0:92:24:6a:11:44:6d:ab:f6:c9:98:
         56:6c:18:3e:ef:d3:ba:ae:7c:16:f0:43:b6:c9:9e:1d:25:73:
         aa:3a:34:7e:cf:fe:7b:20:a8:7d:3e:f0:91:00:4e:f2:5e:da:
         25:9e:73:08:c2:5f:a3:61:92:8d:ac:cd:ba:cc:16:35:38:c4:
         e5:e5:03:ca:6f:dc:b6:85:5c:4c:a9:af:e6:b1:7a:56:64:82:
         85:e8:cf:00:5f:ec:90:52:43:c2:01:cd:fd:4e:23:ce:1a:38:
         87:33:24:2b:34:bb:77:e8:14:46:31:7c:d9:8c:e1:e6:c9:1e:
         b1:04:7f:95:ab:b8:5e:f0:b4:3a:3b:c4:55:e8:45:52:6f:ff:
         33:a0:fd:50
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICB/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1
QTUwMjcwRTMwHhcNMjQwNTI2MjIwMTU0WhcNMjQwNjAyMjIwMTU0WjAYMRYwFAYD
VQQDEw02NjUzYjE1My1hNzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAmdH6rtQNwI9YWsthJdJ43ZGUo50VLO5nAjUQEOCCBz+bLlMxFyogFK3t7Ybl
e8V7IyQMbOEPKVDmk2bHpNhpvJ7h3FqenoWaPgDVjQrBMETdoweHaNd82MNUEgPS
TRvOH3ieZelSz0CumCo9SFXn9+N2QuLDrecFiIIA+PoYZbsBUOafPi7VAOcXdP5z
TFJabkoE/cYBoW3ZTkWFMWnIf2yCDlanGt03TBLz571KrvnpWghIPWnxKku5Gjs3
YLLJNIVRBx1Fb8oZ9XbbqfZ/S7PYQwQtVoNZaHpeOKIKhTdRd3VNLeCQtOIe9Bz1
w3b6yFi4KrPePIWe4gqER9s3YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJw/11fF
Gtw3gH07BRd3eWkA0ddxMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5
RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj
T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
QkZEOS80QUU4MDQxRUI5RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VX
eG0wMUt3UjducHhhVUNjT00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBfcjWO5q3if7Kw+WwGG6td2hPQY1UyNWlhDSj4rIYbY9R65lyCWxC0
pAtX/AP95fsr4Hy8RsWG7Sh08cYnTF8n/eIjxYD3y7Iz/XGlsss6V2hb8/EWYdJL
C8lA8VcaKzqDVBtIwCs4G9ot73QFFskIMwaAoJIkahFEbav2yZhWbBg+79O6rnwW
8EO2yZ4dJXOqOjR+z/57IKh9PvCRAE7yXtolnnMIwl+jYZKNrM26zBY1OMTl5QPK
b9y2hVxMqa/msXpWZIKF6M8AX+yQUkPCAc39TiPOGjiHMyQrNLt36BRGMXzZjOHm
yR6xBH+Vq7he8LQ6O8RV6EVSb/8zoP1Q
-----END CERTIFICATE-----
Generated at Sun May 26 23:05:37 2024 by rpki-client on console-ams.rpki-client.org