Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft
File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json)
Hash identifier: JL1kxr6otBhaRL3V07KocTeZCwU6ZE/aoGA2AXxwZq0=
Subject key identifier: 79:77:E2:2C:68:86:75:81:7F:D2:6A:2E:86:DD:F9:79:D1:75:06:B3
Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0
Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0
Certificate serial: 1372
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft
Manifest number: 135F
Signing time: Wed 16 Apr 2025 16:59:14 +0000
Manifest this update: Wed 16 Apr 2025 16:59:14 +0000
Manifest next update: Wed 23 Apr 2025 16:59:14 +0000
Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: Ymqk4D61U0qMGEHs1lyNCLdYr3RfI1teOJrQQTwmq1w=)
2: 7DB1A01E769511EBBF193769C4F9AE02.roa (hash: 5XbFDEbqdzdfK6bXl6kTUlRCISf9y8xCl7Mg0GE6eCE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl
rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 23 Apr 2025 16:59:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4978 (0x1372)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0
Validity
Not Before: Apr 16 16:59:14 2025 GMT
Not After : Apr 23 16:59:14 2025 GMT
Subject: CN=67ffe1e2-04cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:31:d1:64:65:d4:ca:11:4c:85:ff:60:8b:49:
4b:bd:f3:27:ea:f7:07:f8:48:31:4c:ba:5b:87:42:
2e:3f:ba:d2:43:43:15:7a:7e:92:e0:a1:17:c5:dc:
ae:7f:84:cd:60:63:4d:58:d4:e5:c2:67:57:62:d0:
45:6e:d5:38:35:98:4b:12:c6:83:a9:46:34:bb:97:
54:c7:66:64:32:c9:6e:29:cf:7a:3e:a7:a4:ed:5e:
20:5b:11:4a:e2:11:e4:f7:55:d0:ed:97:eb:67:d2:
92:4f:b8:18:05:58:a4:55:6f:10:4c:e9:e5:92:b5:
e0:dd:fd:10:ec:db:30:c8:92:d5:38:a6:62:61:90:
b5:c3:4e:a1:75:a5:f4:cc:7e:d5:74:6c:4e:db:38:
11:05:f8:eb:23:15:c4:98:a7:c4:9c:82:79:23:6b:
19:9d:93:28:47:17:1e:fc:39:e3:d1:79:4b:92:3b:
c4:cf:89:b6:36:11:10:20:c7:13:72:0e:10:99:14:
4a:6a:44:a1:a4:78:78:cb:9b:ba:2a:b4:06:d6:22:
ea:58:98:c9:b7:cb:06:f0:c4:10:1f:ee:f3:0e:c6:
cc:4f:bc:74:54:e2:7f:3d:37:43:0f:d6:c4:f2:8a:
b2:b7:26:aa:60:2c:a8:c8:b9:31:4b:29:e2:37:93:
bc:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:77:E2:2C:68:86:75:81:7F:D2:6A:2E:86:DD:F9:79:D1:75:06:B3
X509v3 Authority Key Identifier:
keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
85:4d:85:83:2e:fa:78:df:2e:b7:99:2f:1c:2e:3b:26:08:38:
2c:c8:88:59:d4:95:1f:20:fb:80:83:2b:92:cd:1f:df:8d:89:
07:53:ee:c2:61:96:19:a6:3b:4a:c1:f0:5c:fb:1e:57:ad:50:
24:e6:40:10:03:2b:b4:51:a0:f7:8f:9e:46:af:f4:d4:29:19:
37:96:45:11:ec:67:b6:4f:fd:84:15:22:37:ab:ec:2b:ed:7a:
71:17:7a:93:ce:9a:68:cf:53:26:fd:1b:76:67:e3:ae:44:91:
67:3d:62:24:06:ea:a3:56:53:51:9a:ae:dc:e7:b4:90:91:4d:
d6:ff:90:70:f9:25:bd:5c:60:fd:4b:0d:78:c4:4c:7f:22:8a:
a6:3c:54:75:11:7f:3c:cf:1f:dc:fe:67:ec:fd:6f:79:cf:af:
74:05:36:f7:3b:0a:d4:32:64:26:4d:e6:83:98:0d:56:17:17:
9d:ba:de:e2:ef:3e:e3:e5:e2:6f:5d:3e:05:79:b9:ba:a1:16:
ef:a1:14:50:b4:cd:a0:d2:bd:81:51:7d:b3:39:98:34:c5:23:
3c:be:ea:7d:94:09:06:07:2a:27:15:c2:19:52:d9:92:27:96:
80:9f:1e:9b:25:56:b1:04:4e:3e:f5:cd:01:a1:e2:fd:eb:00:
f1:38:f9:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 12:43:34 2025 by rpki-client