Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft
File: QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft (raw, json)
Hash identifier: 9J+jTJvMv1NofHD3BualMFrRNwmZCBenSKkkbTFuIH4=
Subject key identifier: EF:73:F3:20:6E:0A:E5:CE:49:46:3F:09:8D:47:25:0E:B1:C5:58:72
Authority key identifier: 40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79
Certificate issuer: /CN=A9157D7A/serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379
Certificate serial: 0735
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft
Manifest number: 06BD
Signing time: Sat 12 Apr 2025 22:28:11 +0000
Manifest this update: Sat 12 Apr 2025 22:28:11 +0000
Manifest next update: Sat 19 Apr 2025 22:28:11 +0000
Files and hashes: 1: QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl (hash: T7ha0A78cpEFFwBgDhKTr16UCysG3R0blbQmmCt0opE=)
2: 2E96A63A690A11EF9525E980C4F9AE02.roa (hash: E8TJXB5p3Bk6Mywr/JoQzqnkHpychLbxDlvay8pE/5g=)
3: BF070AB6C1BC11EEBAB7F25EC4F9AE02.roa (hash: gHO3ucDCMpaAi01yTk9v+DmdcMeSIsp2IE197EC8p+s=)
4: C186DD80331A11EC8F33C209C4F9AE02.roa (hash: XtqW7baviXAU6XqPk4n9ZbDubsg33KGDVEvxGrKpGog=)
5: 03BA8B36824411EF94479387C4F9AE02.roa (hash: Zg67mtsRPmH+mIuPO6H9TG0Bz8V1VI6Op+1VjZiZR1s=)
6: 5FD09C68393C11EFB8A9065BC4F9AE02.roa (hash: L3oo3WwbXDM/suf25S9ZfGKmbEMta5yJxrHpRj7RBoA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl
rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 22:28:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1845 (0x735)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9157D7A, serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379
Validity
Not Before: Apr 12 22:28:11 2025 GMT
Not After : Apr 19 22:28:11 2025 GMT
Subject: CN=67fae8fb-393d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:29:84:28:a0:b4:d7:9d:1a:ee:69:5a:54:b9:
92:4e:6d:c6:d1:0d:ea:6b:4e:6f:be:6e:d0:4c:e8:
b3:76:1e:ed:0e:05:46:f7:e0:43:3d:b1:ed:d3:e3:
7d:25:50:19:b6:e8:e1:0a:fc:77:12:ad:13:95:e5:
61:d4:95:9b:21:c6:fe:ac:ff:6f:b4:29:33:c7:e1:
e6:68:7f:15:83:ba:4d:2a:5b:48:10:6b:c9:a3:6d:
b2:1b:de:e8:04:30:d0:51:97:57:da:03:84:b7:fb:
fe:47:11:33:55:ff:7c:73:34:8f:2e:58:bf:52:61:
a7:3d:cb:da:4d:a1:15:95:a7:ab:ad:35:e7:f1:37:
d4:22:e5:63:4f:67:3c:bf:0e:d5:7d:51:b6:4f:26:
5d:ab:8e:60:c5:7b:02:4b:80:67:eb:87:ad:6c:ad:
92:86:51:3f:6b:8c:48:b9:ae:f0:47:5b:22:45:6d:
f7:4d:13:45:ef:18:ed:3f:65:5e:c0:fe:14:79:88:
78:01:52:9a:47:b1:f3:99:a9:c8:8c:28:0e:65:ba:
ea:b8:5a:91:d5:c0:89:7c:f2:33:1f:44:d1:9b:b3:
ba:72:ae:f6:58:75:38:80:56:8d:c7:a0:49:bf:3d:
c9:2d:f8:ec:37:1c:61:5e:70:b4:4d:7d:90:b6:ac:
ee:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:73:F3:20:6E:0A:E5:CE:49:46:3F:09:8D:47:25:0E:B1:C5:58:72
X509v3 Authority Key Identifier:
keyid:40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1a:8b:48:84:33:c3:fb:72:50:0d:74:08:fb:56:c3:0f:26:57:
00:1d:31:07:1a:d3:c1:e6:c7:e9:e5:4b:18:76:5c:12:54:fe:
5c:21:b9:ea:8a:d9:e0:1e:f4:54:f8:4b:fd:91:a2:f9:60:26:
79:eb:6a:c2:fa:a3:03:a5:1b:52:00:86:45:70:25:c1:8e:3a:
3f:12:02:78:ef:aa:a6:a6:cd:cb:99:6f:78:67:b3:c4:96:d7:
59:f2:f1:d1:b7:fb:14:50:9b:6b:92:02:24:45:48:eb:8a:cd:
ec:54:b4:5a:dc:5d:f5:25:b3:a2:01:39:bc:67:3d:68:2b:f0:
b8:ff:73:7c:f4:6b:80:2f:15:70:be:44:ea:86:70:4f:ad:29:
60:c1:77:a8:48:12:26:b6:0d:e0:bf:09:e9:5e:0b:8d:17:1c:
f4:e1:6e:db:e0:c6:43:50:62:ba:59:67:38:98:5f:32:9b:09:
91:1c:16:5b:3a:ad:6a:89:54:4a:b6:ba:ea:c2:08:95:ac:3f:
80:fc:03:6b:d3:47:91:b5:6a:44:12:b7:da:f5:ac:92:4a:77:
63:6b:a6:63:33:8b:5e:c0:f6:24:fb:97:ae:08:ec:5f:a7:e9:
f1:a2:d4:36:12:64:73:9f:05:54:c5:14:eb:d6:d6:d9:d2:51:
0c:11:12:14
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTdEN0ExMTAvBgNVBAUTKDQwMUI0Mjk5MDZDOTBFQTAzRUNGQzYxQjE1QkE0RUYx
MjM5MDMzNzkwHhcNMjUwNDEyMjIyODExWhcNMjUwNDE5MjIyODExWjAYMRYwFAYD
VQQDEw02N2ZhZThmYi0zOTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0SmEKKC0150a7mlaVLmSTm3G0Q3qa05vvm7QTOizdh7tDgVG9+BDPbHt0+N9
JVAZtujhCvx3Eq0TleVh1JWbIcb+rP9vtCkzx+HmaH8Vg7pNKltIEGvJo22yG97o
BDDQUZdX2gOEt/v+RxEzVf98czSPLli/UmGnPcvaTaEVlaerrTXn8TfUIuVjT2c8
vw7VfVG2TyZdq45gxXsCS4Bn64etbK2ShlE/a4xIua7wR1siRW33TRNF7xjtP2Ve
wP4UeYh4AVKaR7HzmanIjCgOZbrquFqR1cCJfPIzH0TRm7O6cq72WHU4gFaNx6BJ
vz3JLfjsNxxhXnC0TX2Qtqzu2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO9z8yBu
CuXOSUY/CY1HJQ6xxVhyMB8GA1UdIwQYMBaAFEAbQpkGyQ6gPs/GGxW6TvEjkDN5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q3QS81RERDQ0NDNjk5
MTUxMUVCOTY3MjcyNDNDNEY5QUUwMi9RQnRDbVFiSkRxQS16OFliRmJwTzhTT1FN
M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1FCdENtUWJKRHFBLXo4WWJGYnBPOFNPUU0zay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
N0Q3QS81RERDQ0NDNjk5MTUxMUVCOTY3MjcyNDNDNEY5QUUwMi9RQnRDbVFiSkRx
QS16OFliRmJwTzhTT1FNM2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAai0iEM8P7clANdAj7VsMPJlcAHTEHGtPB5sfp5UsYdlwSVP5cIbnq
itngHvRU+Ev9kaL5YCZ562rC+qMDpRtSAIZFcCXBjjo/EgJ476qmps3LmW94Z7PE
ltdZ8vHRt/sUUJtrkgIkRUjris3sVLRa3F31JbOiATm8Zz1oK/C4/3N89GuALxVw
vkTqhnBPrSlgwXeoSBImtg3gvwnpXguNFxz04W7b4MZDUGK6WWc4mF8ymwmRHBZb
Oq1qiVRKtrrqwgiVrD+A/ANr00eRtWpEErfa9aySSndja6ZjM4tewPYk+5euCOxf
p+nxotQ2EmRznwVUxRTr1tbZ0lEMERIU
-----END CERTIFICATE-----
Generated at Sun Apr 13 15:25:09 2025 by rpki-client