Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft
File:                     bODpSXEbID5KyyK2gPP_9H7RbGE.mft (raw, json)
Hash identifier:          OETfJRCwFMwRax/zFU8q34b5QcLRoBr7hEHaxgczdd4=
Subject key identifier:   1E:4B:CC:04:93:E3:4D:1A:E3:D0:5E:FD:60:48:1A:92:85:4C:49:1C
Authority key identifier: 6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61
Certificate issuer:       /CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61
Certificate serial:       7B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft
Manifest number:          71
Signing time:             Sat 23 Nov 2024 04:56:42 +0000
Manifest this update:     Sat 23 Nov 2024 04:56:42 +0000
Manifest next update:     Sat 30 Nov 2024 04:56:42 +0000
Files and hashes:         1: bODpSXEbID5KyyK2gPP_9H7RbGE.crl (hash: 5HOup28XQ5xnPimc+e28yUAT2rGHdF4BPd6dL3mbygM=)
                          2: 7980C32AA71B11EFA8320136C4F9AE02.roa (hash: hJsUf4TXH8x/dBCx0NqRGC8PLycMzLRzxEAEp3v9Kv8=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl
                          rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 30 Nov 2024 02:50:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 123 (0x7b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61
        Validity
            Not Before: Nov 23 04:56:42 2024 GMT
            Not After : Nov 30 04:56:42 2024 GMT
        Subject: CN=6741608a-d674
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:24:33:7e:ab:8a:1f:55:8e:14:73:e3:90:83:
                    9d:c5:3a:a3:44:8b:fa:db:7e:65:fc:4b:59:34:31:
                    6b:07:55:93:1e:d7:f9:a2:f9:80:9f:8d:95:ab:7b:
                    1d:1e:78:57:9c:61:04:f7:6e:44:9f:b6:ba:3d:85:
                    45:8c:15:dc:86:25:20:4a:6a:54:08:03:99:aa:23:
                    e4:a4:8c:33:f4:6c:74:c4:85:53:bd:87:3c:56:dc:
                    b1:e3:08:63:a9:95:fa:d5:d1:d5:4a:49:3d:80:98:
                    a5:a2:2a:d0:de:1e:70:8e:58:64:d1:25:20:73:af:
                    96:12:1e:58:25:f3:d7:88:d7:47:6b:f4:30:9d:4e:
                    d6:e5:36:03:cb:43:98:08:d7:55:e0:3e:bb:f2:d1:
                    42:32:ae:47:ba:14:b5:30:19:cf:b4:8d:ab:d2:6a:
                    47:f8:c2:e7:02:d8:70:45:f0:59:5f:fc:16:29:58:
                    74:03:7a:7c:2e:ae:e8:1d:42:73:23:d7:d4:56:a8:
                    f1:cb:54:5d:39:c8:86:33:d5:4e:dc:d3:53:dd:5a:
                    9b:0b:43:ef:a6:f0:ee:6c:b6:05:75:2e:3d:8c:d2:
                    99:31:63:af:a9:5e:a8:7f:9b:fe:29:40:84:56:44:
                    f6:31:0a:8f:b2:b6:1c:4a:3b:68:9c:2c:7c:64:95:
                    ed:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:4B:CC:04:93:E3:4D:1A:E3:D0:5E:FD:60:48:1A:92:85:4C:49:1C
            X509v3 Authority Key Identifier:
                keyid:6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:18:57:9b:6e:e7:aa:79:53:c4:6f:6e:6e:17:bf:96:a2:f3:
         68:99:0e:5e:27:7a:84:86:bf:ff:69:9b:2f:2c:64:c0:cd:f8:
         0a:4e:84:19:a4:5a:65:21:ab:0d:17:64:c9:59:5c:7c:ce:c9:
         62:fb:63:50:47:4e:ac:8f:98:5a:50:90:47:12:d0:f2:32:a0:
         60:8a:53:82:b7:ce:0d:92:92:61:ad:e0:41:25:71:ea:b3:d9:
         07:dd:7e:2c:2a:58:25:f4:a4:eb:45:67:f3:e8:3e:dc:1e:73:
         43:32:7b:cf:58:da:4f:ed:43:13:c0:bf:e8:13:06:4c:00:de:
         41:7f:e5:f6:a0:10:cf:ae:9a:c7:be:61:f1:52:e1:cc:63:85:
         54:47:ba:7a:31:ac:46:b5:fe:3d:b7:01:62:e5:7c:16:79:22:
         91:2e:65:a3:15:1f:12:2e:56:e9:a2:7f:8f:dc:0c:ab:7c:a9:
         9d:ed:8f:62:cf:52:b6:2c:65:6e:a3:4e:d9:cc:c5:19:b7:9f:
         bf:01:6c:be:2a:f6:7b:b9:9a:cf:7a:2e:52:2d:fc:77:d2:a9:
         41:34:34:61:5e:54:45:12:18:5a:97:3e:77:97:8f:38:9f:4e:
         7f:e3:68:f6:9d:93:e8:95:f1:6f:54:85:1a:57:f0:45:de:c2:
         11:a5:ea:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 06:13:22 2024 by rpki-client on console-ams.rpki-client.org