Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft
File: JhOQ197eXRxAsfPigPOKCNqv3N4.mft (raw, json)
Hash identifier: HTbhtpi2ZDZ9BQaXWU5L3ZnYeOEly0q0xwz8hcvMeIc=
Subject key identifier: BE:F5:69:09:D2:6B:28:A7:66:99:BC:9A:02:7D:1A:97:28:2C:E0:C8
Authority key identifier: 26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE
Certificate issuer: /CN=A912E367/serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE
Certificate serial: 0199
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft
Manifest number: 0196
Signing time: Thu 17 Apr 2025 02:25:42 +0000
Manifest this update: Thu 17 Apr 2025 02:25:42 +0000
Manifest next update: Thu 24 Apr 2025 02:25:42 +0000
Files and hashes: 1: JhOQ197eXRxAsfPigPOKCNqv3N4.crl (hash: +PjcjXvsQbOEhZTBVQSPwpTGTSzmUCigvbt4Rg3sYpA=)
2: 738195EEB11811ED997EA457C4F9AE02.roa (hash: Y3uWvVWc5h8AjMOh0rbq998afPQd3Tj5ztFh5AezKOE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl
rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 24 Apr 2025 02:25:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 409 (0x199)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912E367, serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE
Validity
Not Before: Apr 17 02:25:42 2025 GMT
Not After : Apr 24 02:25:42 2025 GMT
Subject: CN=680066a6-9b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6f:99:b4:d5:d7:fb:64:b0:33:05:b6:61:ac:
71:8b:72:b5:82:e5:7f:08:a2:b3:79:d1:84:79:e5:
84:0f:f8:13:f9:e8:ab:e7:2e:87:a6:ae:db:56:c7:
c7:ea:bc:45:d6:41:06:a9:9c:2f:ec:08:8f:f9:90:
06:0a:7a:b6:5c:53:81:28:e0:ec:e3:aa:c8:ee:fc:
2a:fa:fd:d1:d3:f0:32:90:63:16:69:52:e7:fb:4b:
5a:5f:23:20:60:30:5e:43:7b:b8:80:88:0c:9b:79:
54:f6:db:37:3d:c5:f5:75:b4:54:36:85:8c:45:fd:
ae:2e:df:38:59:4d:4f:3d:af:6c:ea:12:af:57:24:
27:90:0b:29:71:49:ab:fa:93:20:7c:2a:67:5f:14:
37:be:55:5a:ba:97:9a:77:ea:64:ad:1e:6e:0d:5d:
96:96:11:64:b9:72:b2:49:b5:d3:2f:ca:1b:35:15:
0a:68:38:ca:9c:54:51:5d:d1:93:ab:e4:f5:b6:b7:
eb:ed:d0:bd:55:20:ae:6f:be:b9:7d:47:98:e9:38:
3a:4a:cc:76:ee:4d:4f:80:79:48:1c:aa:a4:4f:ed:
bb:63:18:f3:4c:ae:22:54:45:12:67:e1:6b:2c:49:
c4:80:08:28:d0:88:a0:38:b7:28:41:c5:e6:82:4f:
31:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F5:69:09:D2:6B:28:A7:66:99:BC:9A:02:7D:1A:97:28:2C:E0:C8
X509v3 Authority Key Identifier:
keyid:26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5c:be:1b:b0:97:4f:7c:4f:e7:47:4b:32:d9:f5:c1:6d:08:d3:
00:65:93:6f:1e:4e:d6:d2:65:9a:d3:51:d3:1b:49:d0:60:dd:
94:cf:20:b7:7a:59:77:cf:6e:9d:72:41:80:d8:75:f4:e9:d6:
73:5f:fe:b1:e2:d4:05:53:06:be:09:cf:02:2f:ad:87:c1:d4:
ce:62:9e:f6:4a:51:61:e0:53:6c:6a:21:37:f5:58:6a:1e:24:
08:6b:41:96:c6:72:1f:7f:c9:66:6b:3d:fe:ba:5f:29:64:dc:
de:4a:66:a3:73:76:2b:e2:39:89:85:6e:05:6e:54:79:a0:6f:
10:50:e7:db:b1:a0:68:96:36:67:51:ed:01:5e:4c:52:02:4d:
b7:43:e7:93:75:75:db:4d:8d:ec:9c:cc:42:3c:09:a7:e1:90:
61:91:79:3c:93:94:83:e4:3d:bb:ce:e8:6e:3d:a9:d5:b2:0d:
fa:6d:be:21:40:30:25:7b:2b:4c:bb:6a:c1:57:53:86:70:bc:
4f:e3:d4:1c:f7:9c:88:df:69:8b:ac:64:bf:de:b7:7a:5d:b5:
62:b2:fa:31:83:7c:ad:ad:10:bf:d7:d6:15:2f:ee:10:af:83:
02:7d:f8:d0:e9:72:6d:7c:d9:d2:a8:49:03:2b:fe:e6:62:6e:
9c:ac:fc:27
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MkUzNjcxMTAvBgNVBAUTKDI2MTM5MEQ3REVERTVEMUM0MEIxRjNFMjgwRjM4QTA4
REFBRkRDREUwHhcNMjUwNDE3MDIyNTQyWhcNMjUwNDI0MDIyNTQyWjAYMRYwFAYD
VQQDEw02ODAwNjZhNi05YjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsm+ZtNXX+2SwMwW2Yaxxi3K1guV/CKKzedGEeeWED/gT+eir5y6Hpq7bVsfH
6rxF1kEGqZwv7AiP+ZAGCnq2XFOBKODs46rI7vwq+v3R0/AykGMWaVLn+0taXyMg
YDBeQ3u4gIgMm3lU9ts3PcX1dbRUNoWMRf2uLt84WU1PPa9s6hKvVyQnkAspcUmr
+pMgfCpnXxQ3vlVaupead+pkrR5uDV2WlhFkuXKySbXTL8obNRUKaDjKnFRRXdGT
q+T1trfr7dC9VSCub765fUeY6Tg6Ssx27k1PgHlIHKqkT+27YxjzTK4iVEUSZ+Fr
LEnEgAgo0IigOLcoQcXmgk8xNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL71aQnS
ayinZpm8mgJ9GpcoLODIMB8GA1UdIwQYMBaAFCYTkNfe3l0cQLHz4oDzigjar9ze
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTM2Ny82QkNFQ0UwQUFE
RjAxMUVEOTVEMkI5NzhDNEY5QUUwMi9KaE9RMTk3ZVhSeEFzZlBpZ1BPS0NOcXYz
TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0poT1ExOTdlWFJ4QXNmUGlnUE9LQ05xdjNONC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
RTM2Ny82QkNFQ0UwQUFERjAxMUVEOTVEMkI5NzhDNEY5QUUwMi9KaE9RMTk3ZVhS
eEFzZlBpZ1BPS0NOcXYzTjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBcvhuwl098T+dHSzLZ9cFtCNMAZZNvHk7W0mWa01HTG0nQYN2UzyC3
ell3z26dckGA2HX06dZzX/6x4tQFUwa+Cc8CL62HwdTOYp72SlFh4FNsaiE39Vhq
HiQIa0GWxnIff8lmaz3+ul8pZNzeSmajc3Yr4jmJhW4FblR5oG8QUOfbsaBoljZn
Ue0BXkxSAk23Q+eTdXXbTY3snMxCPAmn4ZBhkXk8k5SD5D27zuhuPanVsg36bb4h
QDAleytMu2rBV1OGcLxP49Qc95yI32mLrGS/3rd6XbVisvoxg3ytrRC/19YVL+4Q
r4MCffjQ6XJtfNnSqEkDK/7mYm6crPwn
-----END CERTIFICATE-----
Generated at Thu Apr 17 12:59:40 2025 by rpki-client