Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft
File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json)
Hash identifier: N8952d58tXGVnkg2lIEqkfpURY3Z8Yb1GKvvZ5nwfhk=
Subject key identifier: 0A:A2:05:00:F6:B2:CC:98:8D:35:04:AF:48:65:A8:D9:82:37:07:D7
Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D
Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D
Certificate serial: 06D2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft
Manifest number: 06C9
Signing time: Sat 12 Apr 2025 21:44:36 +0000
Manifest this update: Sat 12 Apr 2025 21:44:35 +0000
Manifest next update: Sat 19 Apr 2025 21:44:35 +0000
Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: jeooyJ3M1puTIQQCRYb3sO+1URa1QUZoqm/XVMyOVhI=)
2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl
rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 21:44:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1746 (0x6d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D
Validity
Not Before: Apr 12 21:44:35 2025 GMT
Not After : Apr 19 21:44:35 2025 GMT
Subject: CN=67fadec3-ebb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:77:62:87:5a:5c:91:32:c0:ea:18:86:76:4e:
01:4c:84:72:f4:31:ca:bf:69:67:5f:9b:ce:bd:a4:
fe:af:62:2d:96:24:8a:c9:c2:56:cc:0c:f4:a0:ed:
01:11:d3:30:5b:5c:c8:f6:98:f1:3e:33:5e:ce:71:
ca:9c:e4:51:4a:6e:87:a2:e8:fa:56:a4:08:52:29:
70:36:6f:53:95:c2:d4:4b:6e:b0:a9:76:32:e1:16:
b2:ff:ed:d9:97:52:69:82:a5:13:c2:53:5c:28:e0:
11:2c:bc:b1:29:6b:46:6b:b0:23:86:2f:b5:79:1e:
f1:3f:ff:95:e2:46:88:9d:4d:b5:ae:3a:f1:ce:61:
ac:cb:51:a9:27:7a:e2:d2:f5:cd:1e:95:ef:d6:92:
65:2d:8b:99:6a:50:be:d6:c3:37:ae:70:bd:a9:a5:
46:3c:33:b4:6e:dc:e9:87:c4:6c:1b:6c:33:61:ee:
4a:64:5c:cb:ac:df:10:92:c3:1c:44:c3:1c:fd:0e:
a7:7d:b1:90:c1:5b:7a:9b:b0:03:f2:19:59:74:ec:
a3:36:93:fb:04:9f:ba:8a:45:be:9b:06:77:f4:4a:
d9:89:33:0d:30:e2:17:94:91:40:f1:a4:f4:0d:e0:
ee:d5:23:89:e6:d5:54:12:c0:ea:c6:57:bb:e0:84:
01:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:A2:05:00:F6:B2:CC:98:8D:35:04:AF:48:65:A8:D9:82:37:07:D7
X509v3 Authority Key Identifier:
keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2a:d7:36:f5:7e:57:ef:52:99:f0:df:41:f7:66:cd:80:be:f3:
e9:70:b7:26:0d:10:7a:c9:73:ca:53:4e:60:19:9e:3f:6c:c9:
09:74:be:16:d0:6b:68:1e:73:2c:9a:a1:4c:ce:fb:10:61:6d:
bf:03:be:a0:85:4b:a8:fb:3f:c8:7f:28:02:bc:d9:da:6e:96:
4e:fc:21:95:37:59:b9:e3:0e:60:60:9b:e4:fe:b6:de:9d:89:
c2:5b:48:da:fe:61:ef:52:28:2e:ed:8d:bd:c1:af:70:45:2c:
11:8c:cb:a2:42:b1:ba:7d:f7:a4:41:3b:e7:7e:e7:be:c7:40:
0f:d4:c4:73:ef:d0:6e:30:a5:d4:fa:61:4a:bd:ea:b8:1a:fe:
ed:dc:2a:6f:ca:97:14:fd:f1:32:8d:1b:e3:62:8a:ab:25:e4:
f3:28:6e:a8:83:2e:95:90:fa:f6:09:ff:d9:70:21:e1:3d:2c:
a5:1b:b3:fc:0e:9f:37:5e:d1:4b:bf:dd:78:89:f5:26:1e:f5:
5e:a0:50:d8:cf:c7:01:c8:90:00:a4:e9:d8:18:ca:60:b6:75:
df:fa:79:31:5b:86:dd:a7:1a:d8:61:13:75:ff:62:fb:7a:a3:
a0:b5:25:7f:f8:6d:98:9f:79:d0:3e:82:e5:a7:17:ff:80:4d:
eb:11:2a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 16:43:40 2025 by rpki-client