Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft
File: 4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft (raw, json)
Hash identifier: zXD7srckKM+4dFmLi6CPGaG4U0MZfeh/Gp7fjwjBYdY=
Subject key identifier: E3:B3:54:72:42:A5:24:96:73:2A:54:2D:AE:7E:2A:AA:26:AD:11:5D
Authority key identifier: E1:C1:C7:2B:67:93:A9:03:BA:3D:E0:31:02:75:19:B4:30:21:75:6A
Certificate issuer: /CN=A91493FC/serialNumber=E1C1C72B6793A903BA3DE031027519B43021756A
Certificate serial: 01A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cHHK2eTqQO6PeAxAnUZtDAhdWo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft
Manifest number: 019E
Signing time: Wed 09 Apr 2025 02:22:18 +0000
Manifest this update: Wed 09 Apr 2025 02:22:18 +0000
Manifest next update: Wed 16 Apr 2025 02:22:18 +0000
Files and hashes: 1: 4cHHK2eTqQO6PeAxAnUZtDAhdWo.crl (hash: 7CaLIIrI0AEM06fk4j3h7UXRriUlrA5q2HWXq725qeA=)
2: 38702E769AF611ED8D41985BC4F9AE02.roa (hash: ZhWBxmhvIB+43KRBVHlsXZ7qRlNDQ90SpnXAY8rEx0A=)
3: D076B1A49F2911ED937CF05AC4F9AE02.roa (hash: DMBYC+/NRUlRPJuHXxC2cxoOT1tZHI2lI1sjea+2JhA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.crl
rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cHHK2eTqQO6PeAxAnUZtDAhdWo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 02:22:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 421 (0x1a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91493FC
Validity
Not Before: Apr 9 02:22:18 2025 GMT
Not After : Apr 16 02:22:18 2025 GMT
Subject: CN=67f5d9da-8381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:5c:3f:88:ff:71:a1:b6:27:06:83:cc:6b:1c:
a7:32:8d:c9:57:25:ce:9d:cf:b8:a4:e3:4f:2f:ec:
3f:67:88:44:c9:30:ca:13:5d:53:4e:0b:31:d7:80:
e3:ba:5d:40:12:13:75:18:8e:8c:71:e9:19:73:86:
ba:2d:1f:32:54:5d:62:a9:4c:d2:b1:78:3a:51:91:
68:07:2c:5c:a8:6b:9c:e1:20:8f:9b:c4:b1:d0:ef:
24:bd:f0:43:a2:8f:61:69:a5:5e:93:db:1b:37:a1:
e0:72:9b:f1:54:50:6d:4b:ca:f9:18:a6:97:a4:76:
0f:4c:4c:d2:43:40:63:52:2d:cd:8b:f7:d6:74:16:
23:1f:13:c8:04:ba:31:ca:83:05:8f:5d:d6:15:89:
0b:5a:e4:71:35:5e:86:34:7b:c6:04:e8:da:57:13:
b0:6b:fc:64:a8:51:36:e8:65:25:b7:a4:d1:c5:df:
55:c1:8d:17:21:08:fc:ba:fb:59:88:79:19:ea:04:
45:88:82:29:81:ce:b2:78:1b:62:dd:72:61:2e:cd:
1e:ab:38:2e:2d:2f:fa:9a:1d:35:a0:17:27:20:97:
a8:24:73:27:40:80:a1:f3:ca:04:2d:0e:c3:ce:29:
7b:75:f4:e3:55:06:b2:c1:4b:be:63:91:07:94:0b:
39:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B3:54:72:42:A5:24:96:73:2A:54:2D:AE:7E:2A:AA:26:AD:11:5D
X509v3 Authority Key Identifier:
keyid:E1:C1:C7:2B:67:93:A9:03:BA:3D:E0:31:02:75:19:B4:30:21:75:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cHHK2eTqQO6PeAxAnUZtDAhdWo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
43:cc:5c:c5:bf:3b:df:5c:35:a3:75:f8:97:25:1f:bc:d2:b6:
79:98:81:15:75:8b:2b:48:1b:a0:1a:80:83:5c:ee:e4:30:51:
b9:5f:b2:98:f8:7d:3a:4e:d4:1f:98:98:e0:4f:1f:d3:d8:5f:
15:f5:d9:ed:af:fc:f0:82:90:b1:89:32:23:3f:0d:24:e0:0e:
c3:57:54:48:22:c0:8c:e4:75:6d:d3:c6:c3:f8:32:82:ea:6e:
b0:b0:3f:b4:9a:1c:0e:15:e2:f4:08:aa:fc:9c:f4:46:a8:ef:
27:e0:69:0c:7c:ed:82:96:29:8b:d4:15:82:b1:b3:db:66:0f:
0e:b9:fc:87:92:b3:54:c2:91:05:aa:16:5e:ff:4e:ae:9a:98:
f5:d6:38:11:c6:0a:43:57:40:fe:36:68:40:ca:86:cc:cd:23:
c5:76:f0:6d:78:f0:06:c2:bb:46:1d:04:c9:a3:ba:db:bc:40:
9a:59:95:88:c7:be:ab:1c:20:f0:95:54:f7:e2:b0:5b:74:15:
5a:40:03:2d:a9:35:97:7e:c9:27:8b:7b:e4:16:33:84:48:f5:
60:85:2a:53:4f:03:6a:27:17:99:b0:b5:a4:ee:eb:7d:f7:7f:
32:75:d3:c1:a3:25:5f:a0:66:9c:35:e5:4a:2b:0c:04:de:b1:
1d:8f:09:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 09:54:40 2025 by rpki-client