Manifest

$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File:                     NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier:          d4itd+d/xIw0MXhw0f7auMHgRUntOjw8+LjWqrK1wCI=
Subject key identifier:   A7:4F:D9:5D:4A:CD:DD:01:9E:BB:58:43:E7:93:32:3B:A2:40:D4:9A
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer:       /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial:       42DC
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access:      rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number:          423B
Signing time:             Sat 22 Jun 2024 14:50:11 +0000
Manifest this update:     Sat 22 Jun 2024 14:50:10 +0000
Manifest next update:     Sat 29 Jun 2024 14:50:10 +0000
Files and hashes:         1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: Nmm+n8JGgC89acp/t5CCDA9xFQe0vQ9VMMCyq7BkXJY=)
                          2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: NfJ53EghURDMb4YUUQ2khLIOYv3z+PllwEEllV4RSvY=)
                          3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: I57g7UURifl1rN5HCmANeVZX/RZ1zm10FgQBzo4Ieak=)
                          4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: nH4HcxvHCks4lwSYOfj8uqEK1Tlggt8L6lAOWOozK/U=)
                          5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: /UW3JtgCtF5fWiYKRezlOOrOjrKDeAy672BjlI2Yvc4=)
                          6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: szEprYu4wi6Cg+c7jnvZyVGVK4glrb/TFfOLJ8yLGZE=)
                          7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: wPpie+ThAR/1TthkCM7hgEd/wJa4M0QWrfReez52vcc=)
                          8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: okjzU3E4UBevhxAwJ+/GBUGWv9CrjBdiXIkVX/kNLUw=)
                          9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: yeZNkJNHC+qtIscVm8AAik64XQjEl1j01cQ1Y6MWxhE=)

Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 29 Jun 2024 14:50:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 17116 (0x42dc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
        Validity
            Not Before: Jun 22 14:50:10 2024 GMT
            Not After : Jun 29 14:50:10 2024 GMT
        Subject: CN=6676e4a3-bb25
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:63:cd:57:f2:03:58:24:f1:61:ff:d7:4d:8a:
                    6b:13:66:78:ba:1e:49:c3:c1:16:ef:3f:57:15:49:
                    f0:82:e4:ea:20:7c:1b:bb:e4:6a:57:31:da:aa:36:
                    81:8f:f3:6e:7c:10:b3:3c:92:98:97:a9:18:f8:dd:
                    a4:53:6a:5c:98:c5:b4:e5:68:43:e3:54:08:42:df:
                    c9:5a:48:87:9b:98:5a:4b:29:e2:92:bc:62:06:cc:
                    ae:58:3a:68:37:fb:25:df:7c:5a:6c:b7:8c:a5:2b:
                    e0:33:a1:e4:22:8f:3e:ef:9d:5d:46:4d:64:0f:c5:
                    8e:14:c1:f3:9d:fc:7d:6b:74:70:2a:6f:ab:46:e9:
                    26:12:5e:ef:03:43:53:42:a4:c4:07:18:5d:be:9c:
                    f1:c1:db:1b:06:0f:9f:2b:13:8b:1f:8a:dc:84:eb:
                    a6:fc:aa:05:3e:a7:cb:92:4a:ec:74:30:a3:1f:84:
                    a3:44:be:8a:e7:c3:ac:c5:ab:c2:7e:d6:ec:97:04:
                    95:eb:45:0e:04:8e:a3:09:87:0e:90:d8:21:15:fa:
                    36:48:47:84:75:66:76:a2:5b:e3:0d:48:9d:f7:d7:
                    d9:7b:b5:64:c8:e2:19:8d:b1:01:91:08:ae:c0:1d:
                    f4:0a:b1:5f:87:53:d0:50:35:ee:a1:fb:8b:d6:da:
                    a7:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A7:4F:D9:5D:4A:CD:DD:01:9E:BB:58:43:E7:93:32:3B:A2:40:D4:9A
            X509v3 Authority Key Identifier:
                keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         95:61:de:de:c4:3c:17:6e:6a:ff:c9:ee:f2:4c:8f:6f:63:43:
         b2:bb:96:5b:e5:26:92:08:cb:0a:a1:c8:30:cb:77:2f:25:b1:
         3e:cf:1f:39:dc:92:38:e6:0d:9a:74:ae:b8:10:dc:8c:09:2c:
         ef:d0:ad:04:4e:96:ce:3c:7a:79:1b:24:7d:60:fc:ed:cf:7d:
         ab:82:a5:8a:67:b5:e5:a9:1d:c9:7f:46:02:0d:2c:a1:ee:a8:
         17:74:51:b4:fe:48:62:d7:94:04:16:d8:7e:cd:db:00:a7:55:
         dc:b9:83:74:94:21:50:5b:68:60:56:fa:da:b3:fd:34:c1:45:
         55:65:e6:bd:cb:3f:8f:70:15:34:2a:f1:83:70:8e:97:0d:32:
         67:49:43:cf:f9:41:e2:5f:9a:c6:01:16:f5:6e:1e:4e:ab:15:
         9b:40:2a:86:b5:7b:64:bf:c9:11:35:08:fc:1a:9d:94:d4:85:
         24:d8:de:03:32:76:6b:71:ac:27:24:ad:71:10:af:5b:9f:0b:
         14:23:ae:5d:bb:a1:7a:e1:40:bd:c7:09:59:12:b7:5b:a8:e1:
         ac:7f:10:d5:02:ca:2a:79:b3:02:d9:77:16:92:ea:54:21:c5:
         d2:d6:bc:a6:1f:c3:0d:6a:f6:b8:8d:58:74:c7:23:b0:4e:d1:
         53:8b:63:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 15:37:33 2024 by rpki-client on console-ams.rpki-client.org