Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
File: AO-zr_90_WIfS42RFpt6HEOzlBc.mft (raw, json)
Hash identifier: I5C7O2ysgX70gZt6P60nRDfyKyqZFS/VIxmv/GO9QPo=
Subject key identifier: 12:9F:7B:F5:07:BA:44:80:1E:BB:42:86:E5:14:8F:71:31:38:37:F7
Authority key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17
Certificate issuer: /CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417
Certificate serial: 013B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
Manifest number: 0133
Signing time: Thu 17 Apr 2025 03:31:18 +0000
Manifest this update: Thu 17 Apr 2025 03:31:17 +0000
Manifest next update: Thu 24 Apr 2025 03:31:17 +0000
Files and hashes: 1: AO-zr_90_WIfS42RFpt6HEOzlBc.crl (hash: iTgLVgybvItd6Dna+U2Txq3SMOMmzCoZex6deT/hQ2A=)
2: A80498FABAAB11EEBA024655C4F9AE02.roa (hash: g6wCJDrtHyuCox1Dak/0D/0mdLei/24CwRHwHNh/Oi8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl
rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 24 Apr 2025 03:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 315 (0x13b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912C8FA, serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417
Validity
Not Before: Apr 17 03:31:17 2025 GMT
Not After : Apr 24 03:31:17 2025 GMT
Subject: CN=68007606-fde5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d3:89:b3:28:86:5d:e0:70:3a:36:b2:86:f5:
36:83:91:fb:e7:18:ae:85:4f:d1:0e:8f:55:38:00:
0c:3e:64:c0:ee:f4:52:d0:34:11:38:a7:c4:23:f3:
ee:85:8e:79:0e:ed:83:c2:b9:f8:05:66:68:9d:1f:
5b:f7:13:42:58:3c:17:88:dd:42:da:e4:02:5a:1f:
89:52:33:c1:54:dc:fa:fc:be:58:dd:7a:26:31:3a:
57:80:61:cb:50:72:ea:03:03:e4:d6:06:d3:de:5e:
27:a3:16:64:6a:a1:11:59:2b:96:68:32:cb:37:7c:
3d:09:49:be:07:db:66:35:d1:61:f0:fb:60:ed:30:
08:fa:62:a1:a6:f2:eb:13:c3:b6:3b:8a:57:d4:7e:
38:01:d5:b0:04:c6:d5:c3:c6:c2:e0:74:f6:b0:15:
cb:5f:a4:cb:7d:81:24:d0:90:06:a0:19:75:d2:1e:
4b:ea:b6:4d:73:9d:2f:30:12:94:17:22:af:89:a6:
dc:6e:1a:a3:13:aa:15:39:d5:0d:96:b1:e9:1c:71:
86:16:40:e3:6c:e7:ce:a4:70:8b:a3:15:00:01:c2:
3a:94:bb:fe:e2:c2:73:ff:29:fd:9a:3d:b4:95:db:
c8:47:06:1f:55:5f:27:cd:32:3a:82:bf:bc:02:a4:
b5:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:9F:7B:F5:07:BA:44:80:1E:BB:42:86:E5:14:8F:71:31:38:37:F7
X509v3 Authority Key Identifier:
keyid:00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
72:fe:23:bb:b3:2e:55:03:66:4c:d3:e5:91:b4:72:61:62:d3:
81:1c:11:cb:bc:6d:fc:1a:d1:f2:9c:b0:a7:bf:a8:b0:2e:ce:
29:72:0f:d7:08:22:7a:08:3d:5f:26:0f:d7:d5:dd:46:42:57:
43:9d:bf:2d:e1:3c:68:6f:ce:01:ef:40:9b:a4:61:a5:31:40:
07:81:7f:a3:b2:22:f3:ca:fd:2c:49:0e:4e:fe:63:07:43:0f:
34:33:2a:43:92:22:64:cb:af:a0:b9:36:75:ec:4e:54:6d:3a:
da:aa:96:6d:99:14:f3:e0:93:df:a4:c4:9e:a3:43:d8:c7:b8:
d3:c4:96:0c:7d:92:ac:13:36:7a:e3:e1:d4:dd:42:d1:75:26:
df:73:36:32:9e:83:9d:00:84:8a:db:d7:48:9b:68:ec:c8:1a:
32:69:92:ed:c6:de:40:dd:50:96:cd:b6:fb:cb:d9:1f:a8:c1:
8c:82:5f:45:12:33:b9:b7:f2:18:60:ad:46:a8:a2:39:3f:68:
d8:37:7d:b2:8e:19:b9:c7:6d:99:7d:d3:b0:6c:6c:88:b5:87:
f9:3b:52:e1:c8:16:9b:99:8e:65:f7:63:46:12:36:a6:c7:03:
0e:f4:b1:e4:69:ff:63:cf:e6:25:3a:c3:48:e4:ee:37:9d:79:
6c:a6:00:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 14:46:27 2025 by rpki-client