Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft
File: iUNmPc-DCfonSkZS-oOr0m2EJk8.mft (raw, json)
Hash identifier: H7CC6y6KFPya/yT7kacKuei3Fm7TdFcL1iH4Kmu4y44=
Subject key identifier: 1D:58:4E:D0:3C:75:D2:27:99:B1:71:BF:33:41:E9:9B:E0:E9:BB:B9
Authority key identifier: 89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F
Certificate issuer: /CN=A913097A/serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F
Certificate serial: 047E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft
Manifest number: 047A
Signing time: Sat 12 Apr 2025 23:43:13 +0000
Manifest this update: Sat 12 Apr 2025 23:43:12 +0000
Manifest next update: Sat 19 Apr 2025 23:43:12 +0000
Files and hashes: 1: iUNmPc-DCfonSkZS-oOr0m2EJk8.crl (hash: ojfUVETvKHekZvlxOtI18AjiN+qCQV7Tn9Ny7zYxoDI=)
2: F9343F063B0911EC82AE0828C4F9AE02.roa (hash: pIsS/aAz3NlTfiRznLCHJWwJfZnRVJbtBleuPSnoEO4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl
rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 23:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1150 (0x47e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913097A, serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F
Validity
Not Before: Apr 12 23:43:12 2025 GMT
Not After : Apr 19 23:43:12 2025 GMT
Subject: CN=67fafa90-16b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:68:69:9b:d2:6d:35:59:14:41:05:31:55:90:
a6:52:9a:1f:46:13:2d:e4:05:2b:1d:55:48:45:10:
09:98:e0:2c:83:29:2c:4d:cb:ba:a2:b3:e8:43:6f:
1f:b8:69:6d:63:ea:1b:2b:ca:b1:dd:48:5c:5e:af:
36:f9:2e:6f:36:2a:75:9a:6c:54:52:df:34:20:92:
38:91:b0:6e:31:65:d5:43:c4:1f:5b:ed:c6:45:88:
f1:39:0c:bf:48:de:38:36:69:98:78:94:a9:17:f8:
c9:9b:fa:76:3a:20:13:e7:b4:8a:06:48:02:2e:ee:
23:a5:f3:86:5c:d3:2f:bf:4a:d2:b1:25:44:60:a3:
24:04:0c:45:e5:da:60:a1:85:31:b3:8e:48:2d:6f:
72:1a:94:ff:1a:05:c2:9c:0d:6a:f2:91:12:3e:9f:
e8:3a:e1:4d:e5:c0:dc:77:1c:58:54:0c:87:6d:c9:
d1:72:eb:40:20:9e:f1:62:6f:75:06:2a:0b:e2:ca:
c7:45:70:86:62:76:c9:11:e6:93:64:51:88:4f:15:
13:4e:88:44:c3:bc:27:93:b9:fa:aa:14:9a:f2:da:
4f:f5:f1:4a:5c:a4:ab:ee:ed:f3:64:56:39:e1:ef:
21:e0:70:3e:24:9d:56:71:42:13:1c:da:b4:8a:07:
ac:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:58:4E:D0:3C:75:D2:27:99:B1:71:BF:33:41:E9:9B:E0:E9:BB:B9
X509v3 Authority Key Identifier:
keyid:89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1e:a2:e4:02:10:f4:82:94:77:1d:72:ae:df:f3:cb:33:1a:30:
c8:8c:8e:a7:b2:c6:a2:fb:14:1d:24:6b:03:23:49:95:b1:c7:
9a:66:6e:c3:4d:1e:4d:dd:a2:c3:b2:8b:8e:e8:11:d7:15:45:
ce:23:29:f8:60:d2:46:b7:13:b3:53:80:76:59:d2:0d:73:a5:
73:25:01:ea:da:50:b0:82:29:a2:fc:b4:ca:8f:97:5b:24:84:
a3:4e:7f:7a:b7:9f:61:7b:ca:87:3b:91:be:b6:e7:93:c7:26:
5f:b4:9f:4b:36:aa:d0:ac:59:c7:89:ff:91:55:61:96:1e:9a:
25:4c:2d:d7:32:bd:ec:02:5f:dd:b1:c2:dc:37:c8:3b:bb:cf:
d5:c2:45:4a:96:2d:81:ad:e6:21:ae:ec:d6:59:5a:01:87:af:
ae:6e:8b:7a:7e:10:dc:d0:a8:cf:31:14:8c:ef:bd:5d:9b:10:
91:e2:76:95:59:3d:bb:9b:2a:30:32:22:ee:29:57:7f:17:27:
a8:2f:06:0d:c6:a1:bb:ac:23:d2:14:b0:af:4c:97:9d:25:28:
2a:99:03:a5:7f:27:00:c8:49:a8:90:a7:65:35:87:0b:37:e0:
44:88:b1:29:0a:60:69:a4:6f:68:c8:1b:3f:35:ec:c3:9c:9c:
d9:c7:02:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 15:25:14 2025 by rpki-client