Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft
File: LOCE4B2sa01jSTjXbOraWWNVvVM.mft (raw, json)
Hash identifier: amZdatW7B338xtOcT7KWZlEBtjIXCP8xcFcZkSiM4JE=
Subject key identifier: B7:4F:0F:78:94:02:B1:31:A2:B2:F9:C5:D5:8C:DD:6B:8A:76:87:3E
Authority key identifier: 2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53
Certificate issuer: /CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53
Certificate serial: 0229
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft
Manifest number: 0226
Signing time: Tue 15 Apr 2025 01:36:51 +0000
Manifest this update: Tue 15 Apr 2025 01:36:51 +0000
Manifest next update: Tue 22 Apr 2025 01:36:51 +0000
Files and hashes: 1: LOCE4B2sa01jSTjXbOraWWNVvVM.crl (hash: ir8wldSJROQkfT+/GpCfKrEP5rETb5EvkuO7YzuVoqE=)
2: 028640A8242B11ED9547B486C4F9AE02.roa (hash: DITeel3omkt/jAmQ2Y46ZSrzxcvWz4LWzu2U9pUQbEA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl
rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 22 Apr 2025 01:36:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 553 (0x229)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915EA8F, serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53
Validity
Not Before: Apr 15 01:36:51 2025 GMT
Not After : Apr 22 01:36:51 2025 GMT
Subject: CN=67fdb833-6ba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1e:ba:dd:50:9e:78:27:e1:f9:08:5b:b7:d2:
a1:50:43:96:af:15:07:dc:4b:ae:67:07:66:dd:23:
bb:9a:92:9e:12:ba:85:50:b0:12:dc:c3:8f:fe:26:
44:35:ab:f6:66:75:83:b2:c6:c1:2b:f6:83:d9:91:
8b:e5:8e:48:b4:91:b4:8f:7c:8a:61:9c:81:2a:79:
35:44:4a:24:c9:9f:b0:84:5f:c2:bb:e3:87:1f:65:
8a:c7:3b:b3:ed:f9:67:46:4b:8d:e2:3e:91:06:67:
45:06:db:91:01:57:a2:20:41:60:b5:4b:54:78:a0:
33:a8:62:6b:3b:a6:55:15:b8:c6:0d:55:d1:23:61:
a4:56:8e:95:2e:48:af:e0:bb:4b:8f:d8:95:40:2e:
c2:c6:97:39:ad:df:94:a4:41:7c:9b:72:34:d2:9e:
30:f0:cf:84:6f:42:ed:37:d1:f9:39:9d:72:7e:db:
a2:2e:0f:78:da:7c:17:37:54:54:b7:88:5f:50:86:
45:a9:4c:93:64:fd:91:62:be:f4:1b:e5:39:e0:29:
f1:6c:54:9f:ee:23:41:52:79:0a:23:be:9f:3f:74:
55:3f:cc:83:ab:b7:63:64:00:c3:75:1c:b0:30:77:
be:02:2a:3a:8f:91:fe:0b:58:f1:ea:e6:67:5d:5c:
5d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:4F:0F:78:94:02:B1:31:A2:B2:F9:C5:D5:8C:DD:6B:8A:76:87:3E
X509v3 Authority Key Identifier:
keyid:2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5f:24:cc:62:0e:1e:ef:ad:6d:ae:0d:3e:c9:04:5c:61:64:f5:
df:67:38:8c:82:46:42:ae:76:b4:b7:5f:2c:1a:77:10:bf:79:
d2:6e:71:9e:8a:18:f1:db:0a:eb:24:f2:cf:6e:6d:e8:2e:b3:
32:70:c4:e8:6f:3b:43:f6:85:79:6d:ba:01:9b:53:6c:34:cd:
1c:9c:79:59:9e:d7:dc:42:53:30:ba:ef:f6:ad:7e:fe:34:23:
03:c4:e6:56:07:90:8f:6e:11:50:35:ee:4a:ba:5b:75:2f:e0:
6c:22:31:f4:09:4e:c4:14:90:27:84:80:a2:79:3f:09:4d:6a:
64:de:6b:09:b3:7c:45:56:4c:ce:58:5c:58:87:51:aa:a9:de:
b6:e9:27:e3:02:e3:06:3e:e6:de:87:1b:a4:6a:fa:3f:81:50:
f9:61:d7:35:45:c0:48:ba:55:5e:f1:9c:39:96:07:3e:88:78:
02:4e:40:54:52:35:8d:da:d1:32:a8:ec:b7:26:7f:ba:0b:db:
0d:77:a6:4c:3a:c9:52:1b:13:65:1b:06:43:ba:66:a1:1e:2d:
a3:78:44:55:cd:61:d7:a4:a3:88:24:40:92:dc:df:39:51:1b:
78:fa:e4:c3:54:2e:a7:65:ad:9d:e5:55:c1:32:e7:dd:d6:09:
73:2f:1e:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 21:50:47 2025 by rpki-client