Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft
File:                     nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft (raw, json)
Hash identifier:          l37kfDhJ0+7KlLAXwtSpeqs08hSd/TeltrmQTl8DMak=
Subject key identifier:   1C:10:DD:50:70:23:93:1B:10:C9:1C:03:4D:55:97:F1:35:19:68:CD
Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5
Certificate issuer:       /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5
Certificate serial:       077D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft
Manifest number:          0778
Signing time:             Wed 20 Nov 2024 20:53:44 +0000
Manifest this update:     Wed 20 Nov 2024 20:53:43 +0000
Manifest next update:     Wed 27 Nov 2024 20:53:43 +0000
Files and hashes:         1: nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl (hash: hGXnC/IQ5QYXxKelPdS6J3LLVK0qDTD/pbujYoMHFoo=)
                          2: 149009E6EE8111EAABC5C05CC4F9AE02.roa (hash: AGcGZOH2g6bV+K3FrKli6KkriXvPqSvE3RitkoEmp4w=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl
                          rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 27 Nov 2024 20:33:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1917 (0x77d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5
        Validity
            Not Before: Nov 20 20:53:43 2024 GMT
            Not After : Nov 27 20:53:43 2024 GMT
        Subject: CN=673e4c57-9fbf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:c3:96:9c:1b:d7:8f:73:f8:8a:4e:99:a3:ad:
                    41:8e:6e:fd:d5:82:e2:02:89:a8:62:14:78:06:85:
                    39:92:83:c4:78:d9:6e:98:03:be:25:0b:0c:98:f7:
                    01:db:8c:b4:b4:f9:51:74:38:6d:fc:94:60:30:3b:
                    23:19:cf:ac:33:4b:9a:34:6f:57:9c:e0:c1:22:5a:
                    4f:95:fa:4d:77:8e:27:60:c7:11:ae:8b:bd:bb:ea:
                    ed:6f:e6:8b:76:9d:e0:12:72:28:e3:f6:47:7c:97:
                    1f:88:1d:1b:cb:66:44:69:fc:96:a8:6a:d1:d2:6f:
                    56:c7:8e:7f:32:10:66:03:05:2e:b5:f2:c2:69:98:
                    d8:f2:12:ed:67:ed:49:fd:08:87:ba:e4:16:f1:0d:
                    4e:ec:37:be:32:73:61:89:1e:66:2b:4e:cd:29:11:
                    e0:2a:c6:92:a0:2c:35:7c:84:48:52:81:a6:98:79:
                    2c:07:e7:d9:21:e4:3f:07:42:3c:6b:ea:90:30:12:
                    02:71:c5:d2:cc:70:12:98:52:07:9c:15:c8:4a:89:
                    74:ee:99:93:aa:9e:5c:7e:2c:22:71:16:b4:5a:32:
                    1d:97:f8:0f:d1:b0:08:22:24:ac:3d:d8:22:0e:fb:
                    43:46:09:79:63:87:66:79:b0:ab:66:01:20:4c:51:
                    9d:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:10:DD:50:70:23:93:1B:10:C9:1C:03:4D:55:97:F1:35:19:68:CD
            X509v3 Authority Key Identifier:
                keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:6f:42:08:07:83:2a:fa:06:35:be:b6:3d:fa:1a:54:26:7a:
         93:92:4b:af:3b:1d:ff:3e:94:7e:4a:72:94:ef:f2:bc:d7:56:
         c4:b7:10:7d:e3:3b:9f:0e:d8:90:01:99:65:b3:bd:72:23:4e:
         ed:ec:8c:29:72:32:2c:04:dc:0b:41:7a:b3:e2:7a:81:58:57:
         0f:a3:37:fb:44:c9:71:52:03:c2:16:19:31:15:3c:be:18:9c:
         5b:65:a4:b0:c6:4d:57:7a:fd:b2:56:1c:5e:af:15:9b:82:0a:
         f8:c3:95:7a:bd:a1:c8:91:64:ed:05:c7:35:ca:44:4f:50:35:
         94:af:4a:4f:e2:35:28:28:47:0f:9a:95:cc:db:7b:d5:b3:46:
         73:ad:ea:c9:c5:90:5a:42:76:f5:32:26:bf:fe:a1:45:12:71:
         25:79:91:37:9c:13:39:c5:72:61:e8:88:f9:58:b7:33:32:a9:
         7e:5b:f8:0d:00:4f:36:fe:9d:85:07:e4:d2:6e:0d:34:fb:17:
         45:4b:e5:3c:51:58:73:76:1a:10:e7:a2:31:ad:78:09:71:80:
         16:cc:01:92:f1:1a:bd:f9:8f:32:51:6e:06:f7:97:b7:21:15:
         ba:1b:65:2a:bf:3e:f3:14:3c:c2:7a:f7:8d:c2:e2:ae:7f:c8:
         91:6d:76:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 21:52:47 2024 by rpki-client on console-fra.rpki-client.org