Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft
File:                     bODpSXEbID5KyyK2gPP_9H7RbGE.mft (raw, json)
Hash identifier:          tChnrG9EctaK3nsz1x/1uaocRp4THsAm+OWx1sDWhDc=
Subject key identifier:   F7:17:91:9C:75:64:33:01:31:06:BC:7A:04:CB:5E:85:27:22:1E:B6
Authority key identifier: 6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61
Certificate issuer:       /CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61
Certificate serial:       62
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft
Manifest number:          5F
Signing time:             Sun 03 Nov 2024 04:59:41 +0000
Manifest this update:     Sun 03 Nov 2024 04:59:41 +0000
Manifest next update:     Sun 10 Nov 2024 04:59:41 +0000
Files and hashes:         1: bODpSXEbID5KyyK2gPP_9H7RbGE.crl (hash: xOfMse1hSxb6nq+nZWzCROXrTHqv5kR6058XpW0blhQ=)
                          2: 67CF2A6A0EB211EFABFDC92AC4F9AE02.roa (hash: FOUYi95lNXm8SEjFhVuUWGX0GAPgVX3x759HqmPgBcU=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl
                          rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 10 Nov 2024 02:50:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 98 (0x62)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61
        Validity
            Not Before: Nov  3 04:59:41 2024 GMT
            Not After : Nov 10 04:59:41 2024 GMT
        Subject: CN=6727033d-e125
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:dd:35:f3:22:4c:92:3c:13:f8:df:0e:d3:f3:
                    8c:d3:a5:f9:e6:f8:11:60:6b:28:f3:71:6c:f1:3d:
                    43:61:c2:7d:1e:1a:db:f5:b9:77:ca:b1:df:2b:6a:
                    63:96:39:b0:ef:40:0d:ea:4c:f8:89:6e:e5:cd:e7:
                    b1:e2:bd:ff:83:0b:ea:84:7a:b2:e4:21:67:e7:71:
                    45:df:a2:ed:bb:f6:72:af:6b:0f:36:4f:66:f0:8c:
                    9e:83:b6:43:ac:2c:bd:22:66:6b:ac:91:99:4b:e5:
                    a1:82:3c:91:36:c7:f9:73:fe:4b:57:02:17:4d:35:
                    93:0d:d2:9d:00:18:9b:15:09:aa:46:06:bf:b4:e0:
                    88:e1:6c:09:01:f3:b3:e9:d7:48:1f:df:e1:3f:eb:
                    df:e5:f0:53:f8:15:a3:1c:4f:3e:c1:10:e6:95:4c:
                    b1:f6:e9:f9:d5:8c:db:76:bd:9b:5e:34:88:ce:b6:
                    b6:f2:ee:6a:ee:2f:ee:81:42:ac:1e:fb:74:1c:6e:
                    18:72:f5:11:07:81:7c:f3:63:be:58:6e:13:24:3b:
                    0b:2b:36:a5:d9:55:d7:ba:f0:5c:ac:26:52:cb:37:
                    a0:eb:7c:5d:bd:50:10:4d:b2:0b:86:43:61:2e:e6:
                    c0:e4:4a:db:62:53:1b:9d:9a:ce:26:6b:35:28:f0:
                    b7:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:17:91:9C:75:64:33:01:31:06:BC:7A:04:CB:5E:85:27:22:1E:B6
            X509v3 Authority Key Identifier:
                keyid:6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:7f:be:11:8a:3d:7b:dd:a9:c2:6c:96:0e:73:c3:dc:57:2b:
         51:7a:7a:e8:f9:12:f0:5d:a0:a1:94:17:db:4f:3b:55:e8:0e:
         b0:35:b3:7d:b2:e7:3c:16:23:5d:d8:4a:70:4d:a4:97:ab:77:
         f8:c2:b6:11:b4:f3:73:ac:61:8c:e7:41:f6:1f:16:c9:c6:d0:
         0e:73:7c:5c:7c:fb:bb:43:ce:02:32:f2:b2:5f:75:1d:4b:a9:
         3f:19:f9:e6:da:f7:77:2d:74:95:26:59:0c:61:c7:48:07:82:
         78:12:2b:72:b4:ae:48:bf:5c:6a:f8:2a:3e:4e:fa:ea:be:f2:
         07:96:c2:6d:d9:92:d5:59:6c:b0:ed:14:39:44:e7:3c:26:d0:
         3a:79:4b:fc:cd:fb:a2:27:ae:61:d8:b6:89:0e:f2:76:c6:d5:
         36:35:6f:e0:e9:df:bb:c3:a1:55:94:97:26:6b:e4:2e:07:74:
         5e:a9:4f:70:4c:e5:d2:af:1e:34:eb:f8:57:5a:31:97:60:a4:
         c9:f7:fe:46:71:aa:69:98:00:84:6f:70:67:36:b7:19:c1:62:
         3a:fd:f4:41:b0:12:25:c5:ed:d4:b5:8d:0f:bc:4d:f9:2e:92:
         95:a8:30:01:83:e9:6b:84:b2:92:a5:c0:05:b4:94:d0:f3:7a:
         36:ad:f7:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 3 06:07:45 2024 by rpki-client on console-fra.rpki-client.org