Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft
File: A2aKIfDwHwaydP2IzJ4KboPVX4U.mft (raw, json)
Hash identifier: XUdW6qQ8bEpnDD3f8Ka/F4aWdH9y5TB62XFmPkRHe0E=
Subject key identifier: 24:6C:D0:6F:8B:D9:15:93:82:7C:77:65:4E:57:93:36:3F:37:E2:7C
Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85
Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85
Certificate serial: 0734
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft
Manifest number: 072F
Signing time: Sat 12 Apr 2025 21:26:20 +0000
Manifest this update: Sat 12 Apr 2025 21:26:19 +0000
Manifest next update: Sat 19 Apr 2025 21:26:19 +0000
Files and hashes: 1: A2aKIfDwHwaydP2IzJ4KboPVX4U.crl (hash: umL9dxCTHEmDySEIpCZYDPiYVWFKnfLy8oCBINksQMA=)
2: 5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa (hash: SJfatYjVkNsGa5A40/Z5VuaU5eA8HwIwMiF3CgmDhpI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl
rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 21:26:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1844 (0x734)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9141620, serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85
Validity
Not Before: Apr 12 21:26:19 2025 GMT
Not After : Apr 19 21:26:19 2025 GMT
Subject: CN=67fada7c-1347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c7:49:89:fe:18:b2:14:b6:6e:c7:12:dd:db:
e2:d8:e4:0f:f0:44:48:00:1a:c6:1c:a6:55:cc:44:
de:37:a8:2b:3f:c6:05:3c:bf:39:86:78:4c:dc:39:
bd:56:b0:11:e6:e6:f9:ad:99:56:3a:41:b1:3b:ae:
ab:7d:f5:cf:3d:18:ff:f3:c7:3c:25:7a:cb:1b:c1:
c2:f4:f3:10:58:c8:56:9b:cc:80:d1:88:e7:3e:5c:
79:87:39:4c:f3:4a:c4:0e:93:ce:b5:f3:03:19:b5:
3d:25:e8:48:a0:3b:e0:5e:b6:00:9a:ee:88:b1:83:
90:b8:c4:03:8b:77:49:24:b3:2f:15:b7:a9:14:0e:
12:06:f7:e3:53:8d:c0:e8:db:46:72:ee:74:52:16:
7d:39:c2:46:e5:d0:72:45:4f:b1:38:3f:ab:9c:02:
5a:7e:f8:fe:43:84:c7:ae:4c:92:95:49:1c:d4:aa:
92:ff:f2:f2:fb:10:91:81:81:3f:12:c4:f5:52:21:
89:22:62:f6:c6:67:b4:21:43:9b:dd:02:cb:b1:5c:
48:1d:a4:76:d8:d0:c2:a1:55:7f:69:01:18:3b:57:
c9:cd:ca:97:35:97:df:b5:b9:eb:6e:dc:d9:3a:a5:
74:94:5d:7d:ec:df:81:26:26:3f:e2:ad:d3:e1:48:
06:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:6C:D0:6F:8B:D9:15:93:82:7C:77:65:4E:57:93:36:3F:37:E2:7C
X509v3 Authority Key Identifier:
keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0b:7f:38:8a:eb:72:4d:b0:f8:3b:d2:35:5a:6d:38:28:e1:c7:
0d:f4:d3:7b:a6:50:96:41:25:60:7e:5e:3a:8e:96:c0:8e:98:
33:78:ca:fa:2b:73:80:cd:4f:c6:47:cd:75:87:ba:fb:91:c4:
52:cd:a5:9f:4f:51:16:44:8f:69:38:7c:0e:5e:8f:2d:85:90:
ff:44:2b:92:fd:b6:c7:4c:47:86:25:2a:37:b3:6f:4a:80:33:
43:0b:d3:b2:f5:d3:70:03:ee:d2:a8:a9:c1:f4:06:78:5b:cf:
a4:77:c2:72:db:22:e2:45:f1:d0:b7:df:e4:27:bf:a1:95:f5:
a9:18:ed:ec:00:9c:8e:88:8a:3f:21:9f:40:ab:a1:78:48:4f:
b6:8a:32:16:b5:0b:bc:04:e8:72:b0:09:11:38:4b:85:d7:92:
1b:04:3e:86:c6:22:ed:1f:d7:3d:c4:d1:1c:54:ca:11:c5:8d:
62:f9:8b:b8:76:09:3a:10:7e:ef:9d:64:e3:cd:7a:4e:2f:0d:
3f:dc:63:e5:78:81:ab:de:10:ee:9c:04:b8:2a:9f:42:56:a1:
f3:b3:99:76:74:ef:1b:b8:0c:76:60:2c:33:2a:89:cc:71:33:
14:1b:af:a4:8c:a1:a1:3a:66:aa:cc:53:17:09:eb:29:7a:84:
20:93:7e:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 19:12:55 2025 by rpki-client