Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft
File: 2leiQgcEcAjXOmXWgiSke5oD2qo.mft (raw, json)
Hash identifier: vdajWJGEc1NjOXLVy0vNOGbkVej0gSp2y7H8M7Yk83M=
Subject key identifier: 28:B8:62:56:40:B1:B1:48:09:21:6D:BD:DA:28:19:27:0C:C2:23:51
Authority key identifier: DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA
Certificate issuer: /CN=A914573E/serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA
Certificate serial: 05FA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft
Manifest number: 05F4
Signing time: Mon 14 Apr 2025 22:39:20 +0000
Manifest this update: Mon 14 Apr 2025 22:39:20 +0000
Manifest next update: Mon 21 Apr 2025 22:39:20 +0000
Files and hashes: 1: 2leiQgcEcAjXOmXWgiSke5oD2qo.crl (hash: iTML3LoxUHmCeGODpBmsMLru+hcfgJIB5/oLwL9+IiM=)
2: B67E0BB4A5A511EB94C0DE0FC4F9AE02.roa (hash: MqGrC8fwQYux13oeFuDih9vENr78iZJwaYG2VwbNU/Y=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl
rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 21 Apr 2025 22:39:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1530 (0x5fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914573E, serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA
Validity
Not Before: Apr 14 22:39:20 2025 GMT
Not After : Apr 21 22:39:20 2025 GMT
Subject: CN=67fd8e98-e0c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:30:35:b6:d3:9e:59:05:7a:6b:52:79:63:9e:
3d:b8:6c:21:f6:17:aa:c9:6f:59:c2:c9:2d:0d:4b:
da:be:95:e2:80:c9:20:61:99:48:56:fb:fe:3b:da:
e3:8a:f3:78:f5:20:82:b7:cd:2b:dc:a2:1a:4e:69:
e3:81:25:87:ed:18:4b:bd:73:41:e8:8c:4a:3f:a8:
b0:11:53:07:90:4e:57:c3:3d:6a:73:6e:6b:6a:c3:
4d:27:26:24:d9:20:e0:02:6e:dd:44:cf:b0:5c:b5:
f5:c1:57:a7:7e:b2:65:ef:fd:4f:b7:8c:f7:ac:a5:
8c:9f:10:6a:75:f5:51:8f:fa:79:68:ac:6b:c6:bc:
e5:c9:65:fd:4e:68:25:94:98:08:38:1c:f4:ef:14:
b1:06:7d:e2:09:ce:1e:5c:b9:ed:73:05:a7:1a:87:
00:65:5e:8f:e3:43:b4:43:d1:18:12:3d:c6:30:4c:
75:84:de:6a:7e:9e:b4:f3:1e:7b:cf:ab:91:02:76:
aa:f1:72:df:22:99:5e:50:f4:32:1b:99:c2:45:d7:
42:66:fb:cd:79:af:dc:f7:94:95:54:c0:41:b0:e6:
47:96:4b:34:f3:6a:ab:f0:47:70:b1:f8:82:1b:67:
c1:3c:38:39:a1:ce:02:3d:e2:bd:4d:58:73:10:01:
72:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B8:62:56:40:B1:B1:48:09:21:6D:BD:DA:28:19:27:0C:C2:23:51
X509v3 Authority Key Identifier:
keyid:DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
25:a0:51:64:11:75:9e:7c:5c:87:c0:16:91:c4:00:cc:ea:8a:
87:a1:4e:71:9a:65:5e:f0:0a:cd:bf:81:8a:45:a7:b5:96:b4:
fd:cf:6e:bb:bf:5d:7e:42:70:5c:aa:54:25:73:5e:1d:ee:c5:
7d:a7:cf:bc:af:ed:47:33:3c:82:0c:20:15:6b:58:65:85:df:
34:e7:0d:f8:c9:4b:88:30:2e:fe:9a:ce:4e:91:3e:b2:54:c6:
9b:63:14:11:a1:5e:1c:6b:6e:9b:41:f5:bf:fc:30:96:95:f1:
ce:9f:06:28:ae:77:9e:15:61:96:99:a7:6b:b9:0a:06:5f:25:
4d:82:a4:13:84:f6:9d:aa:a4:94:e3:c1:5c:d1:89:b0:ef:65:
9a:3d:37:20:e0:24:9e:5f:a3:2a:ee:60:52:47:57:11:c5:9b:
34:6c:50:b9:d0:ac:78:2e:8a:e0:93:f3:de:03:f5:69:f5:6a:
05:45:c6:de:89:ee:f0:b7:49:7a:a3:ca:61:69:13:42:e5:76:
cd:c4:18:8d:dd:72:60:d8:1e:6d:27:da:6d:16:c3:ca:c6:2b:
68:02:12:e0:77:cc:ce:8e:c1:2b:14:f5:8d:bd:95:38:30:ff:
f5:4e:23:35:a6:79:82:7f:fa:9d:76:34:60:96:6b:1e:cb:64:
f3:90:9c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:23:49 2025 by rpki-client