Manifest

$ rpki-client -vvf rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
File:                     C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft (raw, json)
Hash identifier:          zOm2Ix/Dyn2l9moKY17+yTkpF2ugQyqKpfCab51yfSU=
Subject key identifier:   ED:13:C9:B3:10:C9:75:AF:B6:FB:CF:98:21:59:A2:CE:AA:8E:8E:20
Authority key identifier: 0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2
Certificate issuer:       /CN=apnic-rpki-root-iana-origin
Certificate serial:       DC
Authority info access:    rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Subject info access:      rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
Manifest number:          AE
Signing time:             Mon 08 May 2023 23:30:47 +0000
Manifest this update:     Mon 08 May 2023 23:30:47 +0000
Manifest next update:     Thu 15 Jun 2023 23:30:46 +0000
Files and hashes:         1: C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl (hash: fHUxEAjvggD24lHFh0NYGu2EwTRi4gt/VwyguoEyqtQ=)
                          2: mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer (hash: 8m9lQm6/3rY/Lpkt8gs/eKQshQxj9H8qy1+uGY6UY1A=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 15 Jun 2023 23:30:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 220 (0xdc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=apnic-rpki-root-iana-origin
        Validity
            Not Before: May  8 23:30:47 2023 GMT
            Not After : Jun 15 23:30:46 2023 GMT
        Subject: CN=64598627-ae0c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:3e:81:78:3a:f9:18:70:93:d3:b8:56:e4:15:
                    19:5b:f6:e6:d1:a1:4a:aa:2a:f6:68:d7:d8:7a:02:
                    d2:2b:fa:38:5d:71:26:15:df:01:47:f0:f0:12:29:
                    c5:d8:de:94:51:14:c7:64:f2:d3:d4:f4:23:cf:24:
                    f6:74:70:52:fa:60:9d:36:b0:e6:61:ed:3a:93:b4:
                    55:0b:0a:fe:f7:e5:27:1f:dc:68:dd:60:40:c6:b4:
                    25:2e:a7:07:b9:3c:c0:ea:e1:ed:ba:8b:69:83:7f:
                    f6:7a:6c:dd:95:59:4f:c6:3a:85:27:1a:60:aa:46:
                    5a:5d:21:fa:b0:65:6c:b9:b0:9b:6b:30:0d:5b:9c:
                    1b:bd:2b:f5:b7:a2:59:64:07:54:14:f4:3e:26:1e:
                    f6:d5:11:f2:69:86:f3:dd:45:8f:b4:74:3b:c1:e4:
                    3d:6a:44:96:9d:b0:ba:08:20:66:b6:ac:1c:8f:ff:
                    47:3d:4d:76:37:19:c6:47:2e:6b:2f:41:b0:a0:c1:
                    9e:a5:b4:3a:64:ca:0b:d0:e8:5c:a9:b0:e1:74:38:
                    68:f0:a1:6b:25:fa:00:a8:ac:68:e8:24:77:05:18:
                    ca:df:21:3e:40:53:b5:45:d2:3b:35:1f:8e:8f:63:
                    81:20:c9:89:7f:c8:a6:cf:cd:f9:70:ad:f2:b5:d6:
                    d6:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                ED:13:C9:B3:10:C9:75:AF:B6:FB:CF:98:21:59:A2:CE:AA:8E:8E:20
            X509v3 Authority Key Identifier: 
                keyid:0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:5d:69:9e:22:5c:7d:72:71:c1:c9:89:9d:6c:c3:d3:7d:92:
         19:9d:3d:63:b7:5b:d3:c0:bd:79:e5:2e:4e:e3:de:8a:e2:46:
         d4:26:57:70:b5:36:38:bd:56:88:cc:2e:7a:5f:f2:89:53:ec:
         a4:b5:9f:ba:d4:53:52:54:87:e5:14:3d:95:95:3c:ba:6f:c8:
         9f:6c:a1:b2:9d:aa:e8:a2:78:77:c9:5d:de:33:a8:86:ed:4b:
         6a:46:ca:5f:0b:f3:9e:48:86:73:91:86:f1:42:09:4e:e4:74:
         62:d9:b1:f4:7e:3f:f8:74:06:a3:36:e9:e3:d0:8d:e8:5f:54:
         42:ab:52:61:a2:24:6c:05:5a:07:20:4f:65:7e:96:f8:86:d8:
         dd:21:d8:ab:c8:6b:5e:17:3d:9c:17:c7:8c:03:f6:60:46:cd:
         40:ea:0d:35:0a:3e:43:6d:9b:8f:9f:4c:cf:8b:c4:c6:50:50:
         ff:90:4f:e1:0a:a3:1f:4f:34:8c:a9:5a:c5:61:2e:c7:5f:26:
         da:c6:aa:76:85:6a:93:9a:6b:ea:ba:28:b9:67:c1:c4:68:a2:
         26:57:df:14:b6:a5:42:47:31:88:0f:99:ae:d7:41:3e:35:76:
         92:35:1e:f1:33:05:f2:7c:0c:9b:f7:6a:69:4d:af:35:55:a5:
         6b:75:de:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 9 01:52:53 2023 by rpki-client on console-fra.rpki-client.org