Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft
File: KiZlwxQeS_P9LwBKrimlmHETod8.mft (raw, json)
Hash identifier: /bI13LJidhBsDln0d2Q7u5cDLhNa6YSznaoDsbFByTg=
Subject key identifier: E8:FC:7D:37:23:0B:8A:89:E1:04:76:13:23:4F:C5:5C:12:A8:C4:15
Authority key identifier: 2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF
Certificate issuer: /CN=A911972D/serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF
Certificate serial: 036E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft
Manifest number: 0369
Signing time: Sun 13 Apr 2025 00:35:23 +0000
Manifest this update: Sun 13 Apr 2025 00:35:22 +0000
Manifest next update: Sun 20 Apr 2025 00:35:22 +0000
Files and hashes: 1: KiZlwxQeS_P9LwBKrimlmHETod8.crl (hash: WZO6u+vICOBx/MDzDV31+vxhSuZJsJxWHgheXi4NlYk=)
2: B067CCDCA8C511EC8F560C42C4F9AE02.roa (hash: xmdlJLhBfyeauv2Ft4ug73ckVk3r1dVH2Fa5m4Eb/po=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl
rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 00:35:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 878 (0x36e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911972D, serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF
Validity
Not Before: Apr 13 00:35:22 2025 GMT
Not After : Apr 20 00:35:22 2025 GMT
Subject: CN=67fb06cb-8634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:db:05:2e:b0:c4:1e:59:7f:b6:f5:fa:73:d7:
bd:39:f0:67:9f:85:88:07:5c:58:d1:f2:20:8e:90:
cc:80:8b:e1:ab:a0:dd:8f:8f:b5:49:93:e0:45:cb:
8f:d4:f4:0c:ff:3e:92:f9:e5:ae:0e:d1:71:27:35:
1e:56:76:e5:3e:11:19:3e:62:8b:df:c1:ff:4c:24:
ed:be:46:13:56:05:7f:57:84:e4:b6:28:94:33:0b:
6a:82:0a:fe:42:c6:8b:df:0b:84:99:87:eb:4e:b4:
6b:b7:d4:1e:41:e1:88:8e:8b:4f:25:31:db:ad:d9:
12:57:d4:d2:cc:1f:8e:23:7b:8e:36:d5:7e:59:2d:
6d:ab:70:1f:d9:33:2d:be:fa:00:24:c2:b9:12:03:
b3:43:d2:96:62:d4:e8:39:b9:a1:af:78:e3:92:ea:
ed:04:d8:e2:56:6a:b5:2e:17:d5:db:bd:de:fd:cc:
df:61:dd:4c:cd:5c:ee:b2:c4:b8:aa:fd:00:b0:56:
70:03:4e:6f:be:a4:aa:0a:40:03:1c:63:5d:6d:25:
df:83:5c:9a:28:43:df:aa:04:e7:26:40:60:46:c6:
c5:9b:fb:cc:0d:22:f2:0c:4a:d9:4d:4e:51:c2:c4:
59:22:37:85:1c:4b:68:bc:6d:4a:31:1c:c4:2d:c1:
73:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:FC:7D:37:23:0B:8A:89:E1:04:76:13:23:4F:C5:5C:12:A8:C4:15
X509v3 Authority Key Identifier:
keyid:2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
85:38:aa:9e:8d:2f:3e:25:3b:fb:5c:07:58:e8:20:b8:7d:ec:
a0:61:3d:58:65:71:4d:49:79:ea:0f:c8:9d:6f:75:25:d4:d2:
38:5e:4e:a4:72:1e:75:80:40:e0:5c:61:bc:df:c5:b0:2f:1b:
5b:ca:67:ec:15:6c:fd:0a:0c:62:25:b7:3a:e0:ec:48:62:66:
5f:03:87:6c:9d:b9:53:60:fe:8b:b4:8d:d7:cc:a4:d1:a1:12:
bf:ab:7d:40:55:be:cd:5d:dd:6a:60:11:1b:e1:83:3c:b3:c0:
66:28:aa:55:8c:7d:dc:f4:d5:3f:fa:11:6f:f9:fc:8d:26:7d:
62:dc:04:97:72:e3:5e:91:e8:43:51:1e:de:9a:91:88:fc:02:
0b:75:6b:ba:72:d3:dd:8f:27:4c:42:44:3e:e6:7e:ab:ee:40:
e8:14:69:99:51:5e:bc:ed:e0:b2:c6:27:1d:cf:9b:0a:93:c6:
a0:1a:56:69:50:6b:da:4d:ee:86:6e:36:94:4c:6f:8c:8f:13:
40:fe:df:8b:23:6f:d4:92:40:fc:0f:ae:6a:19:cc:b3:7b:89:
f6:8f:2b:4b:22:4e:0e:6a:59:f6:1f:bd:98:e7:4b:b7:be:b4:
17:88:9d:8c:44:cb:26:0b:53:a7:84:1f:33:85:8d:5c:39:85:
cf:5f:09:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 08:59:26 2025 by rpki-client