Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft
File:                     DlRiWWwMbnfhibUb4m4lyRU4xVw.mft (raw, json)
Hash identifier:          sVQBmkuOy/7HtEedGSPDF6AYhVrs2D/bBURumqRt5E0=
Subject key identifier:   9D:E5:56:BF:FC:1C:35:8B:4B:83:84:AE:4A:DE:12:29:40:FF:2D:30
Authority key identifier: 0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C
Certificate issuer:       /CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C
Certificate serial:       39
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft
Manifest number:          37
Signing time:             Thu 21 Nov 2024 05:35:49 +0000
Manifest this update:     Thu 21 Nov 2024 05:35:49 +0000
Manifest next update:     Thu 28 Nov 2024 05:35:49 +0000
Files and hashes:         1: DlRiWWwMbnfhibUb4m4lyRU4xVw.crl (hash: H9ILNP9Hbkxg0bXHOAlkzB9sXD4L8+gkc8U2IbPVxe8=)
                          2: 609701825A1611EF9ED11513C4F9AE02.roa (hash: bgNsvlct6cf/BWMOzM4D0nnTwsIX5vRKPjJTejU5LP8=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl
                          rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 28 Nov 2024 05:18:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 57 (0x39)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C
        Validity
            Not Before: Nov 21 05:35:49 2024 GMT
            Not After : Nov 28 05:35:49 2024 GMT
        Subject: CN=673ec6b5-6c54
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:87:a2:0a:61:89:28:e2:5e:24:5b:a8:ae:03:
                    16:16:80:69:c0:49:ae:5e:86:f1:47:d3:12:f9:4e:
                    ec:5c:f7:ad:63:22:4c:a6:ec:fd:fc:f0:78:cc:a7:
                    d0:16:03:e4:3b:23:bc:b3:7b:ca:7b:da:f9:a6:7c:
                    f1:75:cd:5b:bf:0f:55:e9:f6:b3:ac:96:70:fa:05:
                    73:78:66:2f:45:93:1c:40:e0:db:40:75:bd:7e:38:
                    00:b8:6a:54:52:98:e2:0c:e2:08:24:84:7d:e4:e2:
                    e8:8d:1d:63:fe:54:f4:ea:04:98:6f:42:88:94:61:
                    2e:bb:8c:63:25:bc:22:fa:83:43:59:6b:05:5a:81:
                    33:09:04:1c:76:d4:28:64:7d:7f:d0:25:0e:cd:ae:
                    d2:a9:d4:10:00:66:c0:bd:56:05:96:f0:a4:08:5d:
                    ca:bb:6a:da:ff:86:78:25:bf:5b:96:96:8e:cd:9f:
                    52:f8:3a:97:75:25:b9:cc:55:58:fc:bc:06:21:4c:
                    50:e9:d2:c4:d3:0d:c1:99:96:3f:27:d5:87:a6:94:
                    e2:5a:20:6c:ca:98:ee:4a:c2:98:61:77:2e:6d:53:
                    ce:2a:f6:c4:4b:a2:72:24:fa:a4:5d:64:24:ed:48:
                    fa:ba:92:cf:8a:bb:8f:90:c8:b0:22:67:82:60:8c:
                    54:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9D:E5:56:BF:FC:1C:35:8B:4B:83:84:AE:4A:DE:12:29:40:FF:2D:30
            X509v3 Authority Key Identifier:
                keyid:0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8b:e5:f6:3a:af:69:88:10:f0:89:23:b0:09:0d:81:7a:5a:02:
         c8:e1:7f:62:8c:96:04:18:5e:60:e5:ca:0f:ce:d1:8c:30:4a:
         ef:57:42:c3:92:cf:ad:09:21:4c:53:e3:3b:4d:13:c6:f9:00:
         f8:07:39:c6:41:e3:d7:ce:6e:61:dc:94:eb:54:3b:e8:fd:ad:
         cc:4c:a5:5f:15:f6:10:cb:79:0d:a6:d9:ef:ee:d8:0f:df:f6:
         c2:ae:06:bc:61:41:d5:e9:7a:0f:9a:b2:f8:ff:a8:8b:f2:ee:
         30:6e:ff:fe:57:ea:f0:a9:02:e5:55:39:52:26:bc:57:04:c1:
         5e:a7:63:92:9d:d1:43:84:24:b3:40:8d:5e:16:58:1f:62:b9:
         29:a0:9d:38:52:e0:19:8b:b4:9c:55:dc:c2:6c:ee:5f:e4:99:
         69:2f:97:17:ca:98:30:07:49:d3:4c:04:b6:44:6e:6f:14:d0:
         9a:ae:86:59:c0:20:62:8c:c0:35:c5:52:d1:30:77:7b:63:c4:
         c7:78:15:87:37:8e:c4:62:5d:23:c6:69:5f:9b:e3:a8:1d:5e:
         c7:3f:8a:7b:08:83:cf:02:12:ed:91:8d:9d:75:4e:63:98:5d:
         31:38:a3:4d:09:29:f3:b3:c3:0f:b5:e1:64:e3:93:17:dc:c5:
         01:59:e5:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 06:50:51 2024 by rpki-client on console-fra.rpki-client.org