Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9140917/A5AF8E68F56311EF9FABCB41C4F9AE02/9y6IAGvoiFtvNKZ9b1uEIJrZlsg.mft
File: 9y6IAGvoiFtvNKZ9b1uEIJrZlsg.mft (raw, json)
Hash identifier: 8CYhRWpMbe3Mdx2JirhvD2x5JsHeZYOZYzm76yTLoao=
Subject key identifier: F2:5B:BD:34:69:29:C7:BC:24:E3:2D:B6:EE:CB:07:64:A3:29:BF:F6
Authority key identifier: F7:2E:88:00:6B:E8:88:5B:6F:34:A6:7D:6F:5B:84:20:9A:D9:96:C8
Certificate issuer: /CN=A9140917/serialNumber=F72E88006BE8885B6F34A67D6F5B84209AD996C8
Certificate serial: 22
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y6IAGvoiFtvNKZ9b1uEIJrZlsg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9140917/A5AF8E68F56311EF9FABCB41C4F9AE02/9y6IAGvoiFtvNKZ9b1uEIJrZlsg.mft
Manifest number: 1F
Signing time: Sun 13 Apr 2025 06:41:04 +0000
Manifest this update: Sun 13 Apr 2025 06:41:04 +0000
Manifest next update: Sun 20 Apr 2025 06:41:04 +0000
Files and hashes: 1: 9y6IAGvoiFtvNKZ9b1uEIJrZlsg.crl (hash: X+oHZ5kXES/ZnjaUGS/+SYBcg+6m7WCoGTkxne3X+aQ=)
2: 54438BB2150A11F08FAB4D29C4F9AE02.roa (hash: r8SLoRG8SXGaAZWU9T2J59auaPISPmv3ENFtshrZJ94=)
3: 5CA081FEF58211EF893AAF50C4F9AE02.roa (hash: axDWul/tr1rqISMXD7rxm+ttdt95FtrZ0GJ1AnTUYP0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9140917/A5AF8E68F56311EF9FABCB41C4F9AE02/9y6IAGvoiFtvNKZ9b1uEIJrZlsg.crl
rsync://rpki.apnic.net/member_repository/A9140917/A5AF8E68F56311EF9FABCB41C4F9AE02/9y6IAGvoiFtvNKZ9b1uEIJrZlsg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y6IAGvoiFtvNKZ9b1uEIJrZlsg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 06:41:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34 (0x22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9140917, serialNumber=F72E88006BE8885B6F34A67D6F5B84209AD996C8
Validity
Not Before: Apr 13 06:41:04 2025 GMT
Not After : Apr 20 06:41:04 2025 GMT
Subject: CN=67fb5c80-762c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d5:93:7d:bd:c1:9f:e3:d7:8d:ea:fa:4d:54:
7c:60:33:69:68:94:39:6a:fb:11:b9:96:1d:4d:4d:
e9:c5:85:e9:6e:2b:da:e2:14:64:eb:0b:14:46:ac:
f7:0b:20:02:99:ac:61:32:e9:ce:0d:83:65:31:40:
f5:51:31:d1:1f:58:13:18:12:4e:14:03:87:ea:df:
2a:64:e9:33:ae:d6:bd:1d:c1:c1:56:27:34:b6:e1:
dc:97:64:8f:71:d4:21:ca:1a:69:1c:f1:a2:da:88:
59:27:fe:e8:b1:a9:a3:50:e1:10:29:91:ed:78:c0:
8a:e0:22:6a:0f:a4:5e:5c:90:19:bb:bd:31:09:98:
04:b3:55:b8:b7:ad:29:ad:33:55:0c:1d:3e:a3:93:
6e:3b:97:9f:20:bd:dc:41:7a:33:68:b2:96:5a:2f:
c9:1d:7e:9e:8a:da:dc:fa:cd:84:4d:69:75:1c:61:
0a:58:8d:47:28:ff:92:7a:f3:46:2e:a0:70:c3:b9:
df:c3:ae:2f:f8:c2:cd:cc:b7:bb:2c:1e:98:7d:4a:
34:00:ac:d6:0a:28:08:65:a9:ff:34:e6:d8:1e:08:
b9:81:83:06:c8:42:a1:ff:92:c2:61:ea:6d:d4:16:
df:e6:68:a2:cf:c9:99:a2:32:39:68:90:e9:1d:57:
ce:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:5B:BD:34:69:29:C7:BC:24:E3:2D:B6:EE:CB:07:64:A3:29:BF:F6
X509v3 Authority Key Identifier:
keyid:F7:2E:88:00:6B:E8:88:5B:6F:34:A6:7D:6F:5B:84:20:9A:D9:96:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9140917/A5AF8E68F56311EF9FABCB41C4F9AE02/9y6IAGvoiFtvNKZ9b1uEIJrZlsg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y6IAGvoiFtvNKZ9b1uEIJrZlsg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140917/A5AF8E68F56311EF9FABCB41C4F9AE02/9y6IAGvoiFtvNKZ9b1uEIJrZlsg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8a:d6:b7:2f:3d:bd:19:3f:6b:6a:08:50:3f:40:2a:4b:45:c1:
ee:d8:f1:d3:06:94:8b:85:a1:3a:30:24:29:0c:4d:63:6f:cf:
d4:7e:e0:0b:7e:26:1a:93:83:85:98:c6:06:72:97:66:1f:df:
ff:59:12:13:bc:75:50:2d:84:93:c8:af:76:e5:66:88:5b:99:
3f:33:e0:91:ed:53:ec:98:ce:e8:77:a8:37:d5:7c:18:cb:4a:
62:2f:25:f4:fc:6b:7e:35:3c:1b:c9:90:5c:05:63:7d:24:c0:
51:3e:af:0f:f4:ee:8b:a0:f9:8a:40:ba:4b:ee:8c:ae:69:2c:
03:d7:f3:91:55:c0:84:0c:e0:6e:a4:98:e6:db:14:61:e5:77:
1e:10:c9:ce:d5:03:14:9c:ae:df:80:ce:72:7d:7b:17:98:ef:
1c:57:a0:33:34:14:ad:d7:bc:ff:37:a6:db:00:24:d0:41:cc:
19:24:f7:a0:4c:6e:cd:cc:b9:0c:49:ff:25:21:f5:5a:62:4a:
21:7d:e9:aa:4c:3e:64:29:aa:b5:80:50:b2:d9:3a:48:66:6e:
b3:ae:18:65:b1:4d:3a:54:4a:49:2b:3b:f6:df:8b:c5:ed:48:
9c:40:e1:a9:a2:9f:4f:85:d6:b7:58:64:20:0c:4d:92:21:91:
2c:23:cd:99
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0
MDkxNzExMC8GA1UEBRMoRjcyRTg4MDA2QkU4ODg1QjZGMzRBNjdENkY1Qjg0MjA5
QUQ5OTZDODAeFw0yNTA0MTMwNjQxMDRaFw0yNTA0MjAwNjQxMDRaMBgxFjAUBgNV
BAMTDTY3ZmI1YzgwLTc2MmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC11ZN9vcGf49eN6vpNVHxgM2lolDlq+xG5lh1NTenFheluK9riFGTrCxRGrPcL
IAKZrGEy6c4Ng2UxQPVRMdEfWBMYEk4UA4fq3ypk6TOu1r0dwcFWJzS24dyXZI9x
1CHKGmkc8aLaiFkn/uixqaNQ4RApke14wIrgImoPpF5ckBm7vTEJmASzVbi3rSmt
M1UMHT6jk247l58gvdxBejNospZaL8kdfp6K2tz6zYRNaXUcYQpYjUco/5J680Yu
oHDDud/Dri/4ws3Mt7ssHph9SjQArNYKKAhlqf805tgeCLmBgwbIQqH/ksJh6m3U
Ft/maKLPyZmiMjlokOkdV84xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8lu9NGkp
x7wk4y227ssHZKMpv/YwHwYDVR0jBBgwFoAU9y6IAGvoiFtvNKZ9b1uEIJrZlsgw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQwOTE3L0E1QUY4RTY4RjU2
MzExRUY5RkFCQ0I0MUM0RjlBRTAyLzl5NklBR3ZvaUZ0dk5LWjliMXVFSUpyWmxz
Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvOXk2SUFHdm9pRnR2TktaOWIxdUVJSnJabHNnLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQw
OTE3L0E1QUY4RTY4RjU2MzExRUY5RkFCQ0I0MUM0RjlBRTAyLzl5NklBR3ZvaUZ0
dk5LWjliMXVFSUpyWmxzZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAIrWty89vRk/a2oIUD9AKktFwe7Y8dMGlIuFoTowJCkMTWNvz9R+4At+
JhqTg4WYxgZyl2Yf3/9ZEhO8dVAthJPIr3blZohbmT8z4JHtU+yYzuh3qDfVfBjL
SmIvJfT8a341PBvJkFwFY30kwFE+rw/07oug+YpAukvujK5pLAPX85FVwIQM4G6k
mObbFGHldx4Qyc7VAxScrt+AznJ9exeY7xxXoDM0FK3XvP83ptsAJNBBzBkk96BM
bs3MuQxJ/yUh9VpiSiF96apMPmQpqrWAULLZOkhmbrOuGGWxTTpUSkkrO/bfi8Xt
SJxA4amin0+F1rdYZCAMTZIhkSwjzZk=
-----END CERTIFICATE-----
Generated at Mon Apr 14 12:04:06 2025 by rpki-client