Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft
File: 34Jss7t6i7KhHuS64uCH6sOnIdI.mft (raw, json)
Hash identifier: H6+4yjlZ0GLWn42Ngx1YpTCuc43YNUwswzCb4G/l6lA=
Subject key identifier: CE:69:B1:D8:01:6F:B3:94:5B:3D:30:62:C5:5F:AC:4B:DB:F1:1C:5D
Authority key identifier: DF:82:6C:B3:BB:7A:8B:B2:A1:1E:E4:BA:E2:E0:87:EA:C3:A7:21:D2
Certificate issuer: /CN=A91162DE/serialNumber=DF826CB3BB7A8BB2A11EE4BAE2E087EAC3A721D2
Certificate serial: 025E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34Jss7t6i7KhHuS64uCH6sOnIdI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft
Manifest number: 0255
Signing time: Sun 13 Apr 2025 01:28:14 +0000
Manifest this update: Sun 13 Apr 2025 01:28:13 +0000
Manifest next update: Sun 20 Apr 2025 01:28:13 +0000
Files and hashes: 1: 34Jss7t6i7KhHuS64uCH6sOnIdI.crl (hash: M4X8OF++HXx/hZhtgLoG5d+UszxDFhHhCFqXtRwQf/4=)
2: 7C754058415411ED8133414DC4F9AE02.roa (hash: l47Gy8uLHHO9oyMWzHntqbTvL69ppWBGcq5K8U2N6Ws=)
3: C303879E415111EDBC3A1D19C4F9AE02.roa (hash: S+ycEkxlExSiIAk8iubLwdKE1ijDKJmAZke+yPsWDEw=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.crl
rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34Jss7t6i7KhHuS64uCH6sOnIdI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 01:28:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 606 (0x25e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91162DE, serialNumber=DF826CB3BB7A8BB2A11EE4BAE2E087EAC3A721D2
Validity
Not Before: Apr 13 01:28:13 2025 GMT
Not After : Apr 20 01:28:13 2025 GMT
Subject: CN=67fb132d-3dfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a2:bb:29:13:73:fd:d3:d1:22:2f:ae:e9:4c:
49:b0:48:2f:11:a7:4d:d2:1d:cd:34:14:1c:b1:ae:
ca:c6:8d:08:49:1d:c6:5e:ab:b8:ed:e8:8b:bb:92:
0d:4c:d7:42:1c:25:de:e5:98:22:1a:ab:02:d6:89:
79:a9:a0:15:c0:ef:69:74:dd:52:b8:54:02:da:6e:
6e:09:0a:17:76:aa:4a:87:bb:7b:fd:23:38:48:72:
cc:95:94:ed:0e:8c:34:bb:95:8b:f5:e7:b1:95:4e:
da:18:dc:57:c0:b7:0b:7d:32:67:fa:4e:8b:ec:db:
75:88:8f:11:65:f8:f6:c4:9f:b9:cc:30:58:67:36:
93:7d:d4:48:52:c0:f6:eb:7d:70:5d:f4:75:29:cd:
0c:45:1e:8e:2c:b0:41:02:6c:05:93:25:c1:cb:d6:
6e:e3:a3:42:cd:b5:f9:bc:73:bb:9e:22:3c:e6:f6:
e5:f2:4a:22:1b:6a:0a:81:47:8a:d2:8a:f1:1b:41:
d3:ba:5f:80:3d:63:55:b6:92:b5:e5:70:d9:5f:e2:
78:14:7c:60:83:b8:c7:3f:01:af:92:13:11:74:3a:
06:b2:79:0d:58:91:7d:1b:81:4e:1a:08:33:e9:ad:
03:dd:84:49:6e:4e:05:b3:d2:87:76:39:d7:f0:22:
e2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:69:B1:D8:01:6F:B3:94:5B:3D:30:62:C5:5F:AC:4B:DB:F1:1C:5D
X509v3 Authority Key Identifier:
keyid:DF:82:6C:B3:BB:7A:8B:B2:A1:1E:E4:BA:E2:E0:87:EA:C3:A7:21:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34Jss7t6i7KhHuS64uCH6sOnIdI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7a:3b:d2:fd:c4:8c:bf:75:09:4a:33:e0:10:e3:d1:77:ad:01:
34:cf:78:70:f1:0f:69:31:c1:a5:6e:4a:d2:95:9b:59:92:29:
e3:b9:95:a1:3f:7f:d4:6d:3a:c7:01:35:36:97:85:87:db:68:
61:5f:5b:cf:ec:e4:69:60:ea:50:ee:1c:80:47:f7:38:19:ee:
d7:99:b1:f1:e2:2b:c9:c9:20:d8:5b:6f:e9:93:f1:2e:76:ac:
db:17:d3:8e:21:05:8c:45:66:9f:6f:11:ff:77:82:63:f8:24:
bd:ab:f0:28:11:86:65:0f:7c:ab:60:1f:c5:5d:46:53:37:31:
30:12:e0:98:77:e2:1a:a8:44:72:b2:5c:7c:ec:62:27:91:f7:
72:bf:ce:e8:6c:54:0e:ec:6a:55:39:13:ec:bc:cc:17:4e:65:
39:45:72:ec:1e:d3:19:fa:73:20:ef:e2:8a:a4:d1:23:d5:8b:
75:5b:af:24:2e:c2:22:6c:fa:e2:6e:04:b9:81:fe:3b:50:a3:
f4:fa:11:89:d8:35:f7:30:d2:b9:de:68:4a:47:8a:db:fa:e8:
dd:94:b1:93:19:70:a1:4f:6a:97:57:b4:7b:22:2e:59:c9:62:
68:51:8b:01:41:20:20:9f:6e:6d:e1:4b:0f:10:e9:20:35:76:
e1:61:94:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 17:56:53 2025 by rpki-client