Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft
File: ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json)
Hash identifier: 9cfh9GodPTm/73dBksVzlUtRQxi7tnUMsw8kZUJ2oSY=
Subject key identifier: 7C:DE:66:EB:40:E0:FD:A7:C2:5B:04:B4:EF:C1:07:4A:20:9F:4F:1C
Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1
Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1
Certificate serial: 04EE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft
Manifest number: 04E7
Signing time: Wed 16 Apr 2025 23:24:22 +0000
Manifest this update: Wed 16 Apr 2025 23:24:22 +0000
Manifest next update: Wed 23 Apr 2025 23:24:22 +0000
Files and hashes: 1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: B5rOTjxFEjFzzQ8jq3Hk+fY6H3GWEMVPMUo7agx9DUc=)
2: AC7FAD34756D11EF8E0AC450C4F9AE02.roa (hash: Zm4qbPETvWslp8RznHoUL+bcAgC3x8SPRlNir3l6sYs=)
3: DA0AD156799211EFADCD2257C4F9AE02.roa (hash: IKJkF5tTVOAg9Gcj+RMqJavUI1QmsLflBy8eIb93AAQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl
rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 23 Apr 2025 23:24:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1262 (0x4ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912D9BE, serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1
Validity
Not Before: Apr 16 23:24:22 2025 GMT
Not After : Apr 23 23:24:22 2025 GMT
Subject: CN=68003c26-447d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:96:e7:75:7b:fe:26:01:1d:6d:f0:a0:e0:24:
b9:50:e7:27:59:ee:41:d5:6f:b2:a9:80:20:be:6f:
8c:34:cf:66:3c:7a:09:f1:13:b4:f0:0c:aa:84:d7:
2f:79:c4:18:83:14:8a:d6:6e:53:1c:7e:cd:a0:03:
08:8b:38:a2:71:03:5a:6b:04:dd:cc:86:27:5d:e3:
7e:b0:f5:d2:aa:6b:2d:7a:73:27:69:78:e9:54:ea:
94:9a:cf:7a:6b:67:55:a9:8f:8b:b8:6b:f5:e7:8e:
49:79:7d:8c:77:4b:a9:ef:48:a3:fa:a6:ce:d1:92:
bd:b7:54:4a:42:d7:e1:07:44:8a:42:be:de:04:0c:
62:8e:a1:44:cb:20:a9:4d:f4:e4:5c:8a:3f:d5:5e:
66:a5:99:1b:a0:14:bd:ec:cf:56:9c:90:df:9f:87:
26:ae:20:22:52:c1:97:d1:64:c4:32:1d:7e:89:2b:
d3:44:1a:25:7a:29:e0:40:9f:ae:dd:e2:8e:b5:34:
2c:3c:73:78:c0:f6:2d:65:4c:d3:71:43:0e:47:2c:
64:5f:a8:69:db:a6:e8:59:4f:0a:d5:bd:50:0b:a1:
04:e0:89:47:c1:1d:87:3b:99:3e:ce:4a:23:97:f1:
77:7c:d9:1e:63:3a:ea:99:55:60:eb:ac:15:1c:8f:
ae:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:DE:66:EB:40:E0:FD:A7:C2:5B:04:B4:EF:C1:07:4A:20:9F:4F:1C
X509v3 Authority Key Identifier:
keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
95:1b:46:80:aa:ef:dd:81:8e:28:f1:6e:f7:87:ff:bd:24:bf:
f2:d8:54:74:0b:48:3d:fc:46:3b:c8:f1:fc:3a:30:33:cd:c4:
d5:6f:ec:d8:51:4d:64:3a:24:a5:3e:f1:8f:5a:bc:78:8d:be:
d0:be:5e:69:c9:c8:03:27:e0:85:62:9c:9b:22:4a:f8:37:1a:
6c:02:0b:b0:07:bc:b1:d8:5d:ce:bb:10:f9:fd:fa:9e:38:d9:
f9:72:d0:51:73:22:98:0d:56:65:7b:a3:05:22:c3:a1:63:f9:
97:2f:a0:8f:b7:a6:00:85:f6:d7:f7:94:c7:94:20:45:fc:e7:
c7:3f:af:33:ae:fe:cb:ea:3d:ad:fe:9d:36:68:53:05:8e:4b:
57:35:73:6c:7f:cd:d6:d8:8e:9e:4d:db:78:ca:74:3e:e3:e5:
98:26:64:50:5d:b2:03:d1:8f:f2:00:11:8b:0e:48:47:33:a6:
0b:5f:87:e2:c9:2f:a3:f0:20:4c:22:ac:06:2f:bd:eb:77:93:
1d:d3:bc:9d:41:27:33:f7:91:86:63:99:04:52:5c:74:08:89:
4e:cf:47:e7:1e:bc:16:d7:c9:d2:21:2e:c7:65:05:30:8c:6a:
c6:55:bc:ca:82:0e:6a:17:c9:bb:ab:90:2b:33:74:a3:58:18:
10:26:fb:96
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5
QTUzOUFDRTEwHhcNMjUwNDE2MjMyNDIyWhcNMjUwNDIzMjMyNDIyWjAYMRYwFAYD
VQQDEw02ODAwM2MyNi00NDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnZbndXv+JgEdbfCg4CS5UOcnWe5B1W+yqYAgvm+MNM9mPHoJ8RO08AyqhNcv
ecQYgxSK1m5THH7NoAMIiziicQNaawTdzIYnXeN+sPXSqmstenMnaXjpVOqUms96
a2dVqY+LuGv1545JeX2Md0up70ij+qbO0ZK9t1RKQtfhB0SKQr7eBAxijqFEyyCp
TfTkXIo/1V5mpZkboBS97M9WnJDfn4cmriAiUsGX0WTEMh1+iSvTRBoleingQJ+u
3eKOtTQsPHN4wPYtZUzTcUMORyxkX6hp26boWU8K1b1QC6EE4IlHwR2HO5k+zkoj
l/F3fNkeYzrqmVVg66wVHI+uFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzeZutA
4P2nwlsEtO/BB0ogn08cMB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx
N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy
T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
RDlCRS9CMDlDM0NFMjExN0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9I
QWh2ZlNzaEJpdzJhVTVyT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCVG0aAqu/dgY4o8W73h/+9JL/y2FR0C0g9/EY7yPH8OjAzzcTVb+zY
UU1kOiSlPvGPWrx4jb7Qvl5pycgDJ+CFYpybIkr4NxpsAguwB7yx2F3OuxD5/fqe
ONn5ctBRcyKYDVZle6MFIsOhY/mXL6CPt6YAhfbX95THlCBF/OfHP68zrv7L6j2t
/p02aFMFjktXNXNsf83W2I6eTdt4ynQ+4+WYJmRQXbID0Y/yABGLDkhHM6YLX4fi
yS+j8CBMIqwGL73rd5Md07ydQScz95GGY5kEUlx0CIlOz0fnHrwW18nSIS7HZQUw
jGrGVbzKgg5qF8m7q5ArM3SjWBgQJvuW
-----END CERTIFICATE-----
Generated at Thu Apr 17 11:11:10 2025 by rpki-client