Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.mft
File: s-AwGXTWpAg9ufSdWtbloVd5KgY.mft (raw, json)
Hash identifier: euFr0eOvlOibyUpvz5EqxRi7IrpsiceVxzE6c4IgKvo=
Subject key identifier: 03:D2:A1:35:52:D7:41:BE:FD:D1:05:03:A7:7A:99:6D:FE:80:80:88
Authority key identifier: B3:E0:30:19:74:D6:A4:08:3D:B9:F4:9D:5A:D6:E5:A1:57:79:2A:06
Certificate issuer: /CN=A9116B43/serialNumber=B3E0301974D6A4083DB9F49D5AD6E5A157792A06
Certificate serial: 063E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.mft
Manifest number: 063A
Signing time: Sat 12 Apr 2025 14:50:32 +0000
Manifest this update: Sat 12 Apr 2025 14:50:32 +0000
Manifest next update: Sat 19 Apr 2025 14:50:32 +0000
Files and hashes: 1: s-AwGXTWpAg9ufSdWtbloVd5KgY.crl (hash: 2OfITJJ0X2uv+4kmA+urtqffgyA2YfydSRBdsg6U6L0=)
2: 3A77AE12CB9C11EC9230F70BC4F9AE02.roa (hash: TwjuoGTydiIvsI8500O496Q/mOvNfgRtaZ3KwMAE5xE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.crl
rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 14:50:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1598 (0x63e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9116B43, serialNumber=B3E0301974D6A4083DB9F49D5AD6E5A157792A06
Validity
Not Before: Apr 12 14:50:32 2025 GMT
Not After : Apr 19 14:50:32 2025 GMT
Subject: CN=67fa7db8-3fb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:44:5e:b5:cb:fe:72:78:b3:26:6c:8c:af:a9:
e1:5d:a3:18:d0:b4:93:9c:58:f5:78:6a:21:8b:96:
15:6e:84:cb:1a:c8:ad:75:cb:36:5c:aa:85:fa:e8:
f8:f6:a8:52:32:33:f8:46:99:68:42:01:6b:a6:df:
86:51:ec:6d:ef:0f:ee:7e:73:7e:7a:db:9c:9d:c5:
e1:a3:a5:8f:42:dc:9d:81:c2:fb:16:ac:2c:36:a3:
40:d4:50:26:de:0b:a3:e8:14:5e:18:a5:03:3c:d8:
6b:3b:f9:0d:a1:ce:51:9b:c5:cf:09:87:a5:df:24:
4a:e7:8f:07:0b:3f:03:36:d4:62:1d:3b:8d:98:cd:
a9:6f:b4:4f:d6:37:88:a5:71:14:f5:89:c7:cb:8e:
34:5a:43:dc:50:55:bf:6e:03:40:74:f3:6c:48:5f:
c2:85:f9:53:0f:0c:b1:ca:f6:b0:49:00:23:4e:5c:
49:de:7b:5c:60:fe:75:b0:63:0c:06:e3:99:db:15:
e6:f3:b8:b9:7b:b9:74:37:5a:78:1d:b6:95:b5:35:
37:5f:f9:62:2f:4a:66:0a:6e:ac:d3:0a:db:24:48:
3c:78:2a:f1:68:50:76:da:b6:39:60:cc:e9:3f:00:
a8:b4:74:5d:3c:c6:bb:0b:b4:7b:f2:28:32:47:82:
53:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:D2:A1:35:52:D7:41:BE:FD:D1:05:03:A7:7A:99:6D:FE:80:80:88
X509v3 Authority Key Identifier:
keyid:B3:E0:30:19:74:D6:A4:08:3D:B9:F4:9D:5A:D6:E5:A1:57:79:2A:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a5:9f:ce:fc:b2:f1:03:9c:ed:ac:7c:57:89:02:0b:31:7b:b2:
92:6b:a5:21:95:bd:e3:49:15:44:8a:9d:fd:bd:5d:04:c8:89:
00:25:3b:fc:6d:a9:d1:97:71:a2:ad:d7:4d:bd:36:9d:35:7d:
85:00:30:2a:2c:74:c8:6b:8e:4b:36:6f:80:07:95:d2:1e:b8:
fc:8a:d5:9a:9f:49:13:a6:a0:10:14:f5:a1:07:cb:56:f4:25:
9a:9f:16:ac:b5:e0:5b:71:e5:44:99:2d:92:c0:b4:03:8d:d9:
fe:e6:98:6e:c7:f8:06:95:d0:f3:38:59:9e:58:99:d0:09:3e:
61:ea:d6:9b:9d:ba:32:72:77:6f:93:b4:79:68:9f:fc:36:2e:
9d:2e:20:ef:83:e8:08:fa:02:f6:67:f6:12:f5:b8:2c:ed:97:
c5:90:ce:8c:ed:47:2c:dd:fe:c1:43:97:3c:4c:33:ba:a3:44:
2d:18:e2:80:73:73:90:a1:a7:fc:83:75:16:ca:e6:69:50:10:
af:96:d8:51:16:2b:e6:37:a8:a4:3e:f2:3c:0d:80:b3:47:7a:
2a:85:3c:5b:09:6e:b0:59:59:48:a3:42:16:d0:03:45:ee:95:
11:7d:6d:c1:b0:1e:10:2f:d6:e1:a3:b8:59:8f:aa:87:9c:e6:
71:5b:88:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 22:38:24 2025 by rpki-client