Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9114B57/838C8916835811EBB6F0723CC4F9AE02/JbYXi6T4b_C18lUXgJvfINlGjmk.mft
File: JbYXi6T4b_C18lUXgJvfINlGjmk.mft (raw, json)
Hash identifier: XV9GPGxu6WjooGohOljUYtip8Ja1m1zLy93TMDqMecI=
Subject key identifier: 1A:21:76:97:22:21:1B:46:1E:19:55:9F:D7:53:D5:C4:2D:22:B3:1C
Authority key identifier: 25:B6:17:8B:A4:F8:6F:F0:B5:F2:55:17:80:9B:DF:20:D9:46:8E:69
Certificate issuer: /CN=A9114B57/serialNumber=25B6178BA4F86FF0B5F25517809BDF20D9468E69
Certificate serial: 0647
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbYXi6T4b_C18lUXgJvfINlGjmk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9114B57/838C8916835811EBB6F0723CC4F9AE02/JbYXi6T4b_C18lUXgJvfINlGjmk.mft
Manifest number: 0643
Signing time: Sat 12 Apr 2025 22:11:52 +0000
Manifest this update: Sat 12 Apr 2025 22:11:51 +0000
Manifest next update: Sat 19 Apr 2025 22:11:51 +0000
Files and hashes: 1: JbYXi6T4b_C18lUXgJvfINlGjmk.crl (hash: uRWaa1JzRByH9vPqU1/MjqP71jbAZ6Efu8p+os3OlM0=)
2: A74155FC835911EBBAB4A13CC4F9AE02.roa (hash: FHqmc6lqj/CZVq6IBqaEeOALwRu+Ckxhxr3QSAxwIwQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9114B57/838C8916835811EBB6F0723CC4F9AE02/JbYXi6T4b_C18lUXgJvfINlGjmk.crl
rsync://rpki.apnic.net/member_repository/A9114B57/838C8916835811EBB6F0723CC4F9AE02/JbYXi6T4b_C18lUXgJvfINlGjmk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbYXi6T4b_C18lUXgJvfINlGjmk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 22:11:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1607 (0x647)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9114B57, serialNumber=25B6178BA4F86FF0B5F25517809BDF20D9468E69
Validity
Not Before: Apr 12 22:11:51 2025 GMT
Not After : Apr 19 22:11:51 2025 GMT
Subject: CN=67fae528-0dde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:01:26:67:07:fd:0b:d0:c6:46:23:83:61:26:
b9:1b:b5:c4:2f:39:7d:01:0a:c9:f9:44:3c:84:95:
98:47:21:85:71:53:33:f2:ef:7c:84:16:ac:7c:0b:
53:8d:b6:06:1b:cc:13:9f:37:9e:41:47:09:4e:c7:
c8:20:8b:cb:f1:6e:c1:b7:45:69:17:94:22:c3:b4:
37:20:40:ef:c0:ab:b5:b4:c2:73:8d:a6:60:ad:a3:
3d:d9:b6:5d:91:1e:89:bf:04:d5:80:68:45:a1:c2:
9f:e4:94:72:1b:50:2e:c2:ea:1b:f4:c6:70:b4:42:
2e:2e:b5:69:cc:fe:91:a7:a6:2f:aa:ba:37:35:a4:
fd:8e:d0:71:2a:04:ab:68:07:a3:04:ff:3a:44:60:
da:92:69:70:6d:58:7c:f1:7e:a7:e2:75:e6:a1:fe:
b2:bd:52:d4:33:9c:47:64:10:4b:0e:1c:03:22:82:
60:2f:8d:9b:f4:97:88:09:4e:52:55:9a:4b:95:53:
a3:eb:37:3a:98:88:1c:38:6b:8d:1d:a8:82:51:86:
95:66:12:9c:25:d6:2b:93:96:e7:0e:74:da:29:54:
76:b1:6d:75:0a:d4:e7:57:3a:87:42:47:64:2a:f3:
16:05:7c:48:31:d8:ce:cd:6f:e4:59:52:60:89:42:
2e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:21:76:97:22:21:1B:46:1E:19:55:9F:D7:53:D5:C4:2D:22:B3:1C
X509v3 Authority Key Identifier:
keyid:25:B6:17:8B:A4:F8:6F:F0:B5:F2:55:17:80:9B:DF:20:D9:46:8E:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9114B57/838C8916835811EBB6F0723CC4F9AE02/JbYXi6T4b_C18lUXgJvfINlGjmk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbYXi6T4b_C18lUXgJvfINlGjmk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114B57/838C8916835811EBB6F0723CC4F9AE02/JbYXi6T4b_C18lUXgJvfINlGjmk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
05:21:eb:ec:e4:74:ae:e2:f9:e1:a2:58:e5:7f:12:71:d1:94:
fb:64:a1:a7:3a:46:4f:80:cb:80:4d:ba:08:90:ed:43:c7:5f:
97:ab:1d:18:e0:e4:75:47:38:d5:5b:b4:3f:a2:c8:e8:1e:16:
bd:2b:a1:6b:1d:bf:8c:bc:bb:fa:0b:50:ce:35:1c:41:0f:cd:
3c:62:a4:d1:e4:4b:84:67:15:fc:93:05:4e:8c:78:57:3b:bb:
f7:2f:d7:f7:3e:33:de:cb:eb:f7:49:c8:91:83:84:8c:97:ea:
f2:57:88:63:55:f7:8c:c2:18:1f:a7:5f:d5:c4:fe:1c:35:47:
19:d6:86:53:38:60:74:15:bb:81:b0:68:de:23:ca:3f:73:4e:
d4:dc:96:71:fb:3b:1b:fe:61:8c:da:14:29:1b:d4:3c:a4:3c:
ef:de:36:8e:71:4b:a5:17:d3:fd:64:2a:96:fd:82:d9:5d:5a:
58:4e:30:02:0e:9a:3e:d2:ca:2a:ff:b5:e6:ca:d7:04:e4:90:
1b:5e:a0:a7:e5:4f:92:bf:b4:88:fb:2b:23:48:3f:1b:f0:b8:
96:fb:d1:47:a7:97:b8:d2:9d:d8:45:8c:a6:ed:f2:f6:4e:b3:
d5:91:fc:2e:8a:16:1f:e2:60:ae:18:22:20:13:f7:7a:e4:c9:
e8:a7:1c:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 04:46:02 2025 by rpki-client