Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft
File: PKzc_ifokI3EfzPvkUrjxQi6R7M.mft (raw, json)
Hash identifier: skRGK0lkDBsgMwhAUx25EIUxSgTbbkuKtOagXuWSL84=
Subject key identifier: D6:86:BB:B5:C2:2E:A4:6A:61:E9:D4:36:2A:9D:60:64:93:44:0A:96
Authority key identifier: 3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3
Certificate issuer: /CN=A9133B40/serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3
Certificate serial: 0152
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft
Manifest number: 014F
Signing time: Sun 13 Apr 2025 03:05:25 +0000
Manifest this update: Sun 13 Apr 2025 03:05:24 +0000
Manifest next update: Sun 20 Apr 2025 03:05:24 +0000
Files and hashes: 1: PKzc_ifokI3EfzPvkUrjxQi6R7M.crl (hash: /WY3I7eZbb1WGklEu7znzihrnACRE74S5drw4lJDcKA=)
2: B5CBEADC5A9911EEBACCD06BC4F9AE02.roa (hash: F4cU+r0RsJavKuaSoPZVVD+mCZCLwysM3Ho83jeaeN0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl
rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 03:05:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 338 (0x152)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9133B40, serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3
Validity
Not Before: Apr 13 03:05:24 2025 GMT
Not After : Apr 20 03:05:24 2025 GMT
Subject: CN=67fb29f5-e432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:60:c6:c0:3f:13:56:47:3e:ff:df:4f:ca:3c:
b0:93:0f:8f:6f:71:ad:3e:b2:26:48:60:55:6c:dc:
69:2f:14:ba:19:4b:98:aa:07:68:89:6c:a2:ec:d8:
2b:26:a1:31:12:b5:60:04:8e:76:f2:d8:44:56:d0:
43:88:08:32:71:ff:9e:04:bf:84:ad:c9:06:52:4d:
1c:84:1e:14:ce:d3:ad:34:f4:9b:73:bd:03:2a:64:
8e:f1:4d:a4:87:06:29:19:84:65:6f:00:01:43:6d:
c4:c6:3b:76:6f:f8:a5:51:5f:b3:db:0f:29:a9:75:
76:c7:2e:a3:0d:a9:93:e5:60:d3:ae:45:dc:5b:83:
54:a3:e7:7c:04:7e:65:f7:25:ab:d0:60:4d:cd:03:
75:95:1d:6f:c3:80:1d:e5:ca:de:58:eb:ec:ca:1e:
19:f7:1c:fd:4e:ef:b9:18:31:8b:00:11:3e:5c:b9:
ad:dc:03:13:f8:bc:29:47:eb:58:b1:ad:41:a0:64:
00:b9:66:7c:86:9f:c4:6d:11:2f:d0:f4:60:b3:2b:
12:51:57:13:d6:1b:d1:4f:67:51:77:55:fd:30:96:
29:b3:21:e9:82:f5:07:53:ca:02:2e:22:e5:49:a4:
30:76:dd:14:5e:46:e7:da:68:44:13:e3:62:62:d8:
c9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:86:BB:B5:C2:2E:A4:6A:61:E9:D4:36:2A:9D:60:64:93:44:0A:96
X509v3 Authority Key Identifier:
keyid:3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2c:f6:33:9e:60:b2:82:dc:67:72:c7:98:70:0a:5c:77:7d:fc:
d9:8f:0f:a4:ca:d7:ab:6b:c0:5f:7a:07:99:71:5c:26:3b:d2:
c3:30:f5:0e:4a:59:a4:0f:7b:70:98:1c:cb:07:e1:63:40:71:
7c:ab:57:bf:11:fb:00:bd:9d:6b:f7:dc:48:17:dc:e9:d9:33:
3d:94:77:10:70:03:3f:bc:fa:0d:2e:89:f1:26:de:32:75:1e:
7c:58:0c:fd:0c:9d:61:47:54:f3:14:44:2f:4d:56:c1:b5:71:
6b:47:df:cc:9c:d7:e4:2c:ca:48:4f:1e:02:ae:44:78:5f:02:
47:11:f2:7b:00:05:63:07:49:f1:22:0a:69:68:d8:a9:dc:9a:
10:7d:ba:ac:b8:07:64:b5:d2:73:77:76:4f:c8:69:b3:05:59:
ec:b0:13:2e:76:6f:d2:a9:d5:ad:54:c2:07:84:3a:13:6c:5b:
2d:a7:dd:0f:f8:73:23:66:f9:9a:73:4e:0a:cd:44:23:a0:a3:
f1:87:ab:6a:92:63:fe:84:1b:d2:3e:ed:e3:33:bf:88:a4:97:
5b:e4:d8:02:2e:45:70:7d:60:98:e9:7b:f4:70:05:73:be:7e:
72:c9:fb:e4:4a:2d:87:a1:98:e2:d1:c7:3d:24:24:9f:5e:5d:
b0:78:97:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 15:38:46 2025 by rpki-client