Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft
File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json)
Hash identifier: ombEKVJpSBkPjnp9VJmWWaHU/92Wqp5YdX1jb8ynjQg=
Subject key identifier: 5C:E8:61:68:F7:2C:17:B9:A2:07:A6:1A:D2:C1:51:56:C0:BB:54:C8
Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34
Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34
Certificate serial: CA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft
Manifest number: C7
Signing time: Wed 09 Apr 2025 04:41:00 +0000
Manifest this update: Wed 09 Apr 2025 04:40:59 +0000
Manifest next update: Wed 16 Apr 2025 04:40:59 +0000
Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: dHpZ1z5t6oQ49ufkYr1Xp/dRu1GdkTAPcbD0WSsoCr0=)
2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: RDRsbI0QCe3WCyYIAxbPkTT+7Ici1TKwxRZtpP0NFiU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl
rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 04:40:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202 (0xca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91629AA
Validity
Not Before: Apr 9 04:40:59 2025 GMT
Not After : Apr 16 04:40:59 2025 GMT
Subject: CN=67f5fa5b-400d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:da:0e:33:8f:a6:42:3b:7f:2d:a0:77:2a:f7:
02:30:f5:bc:b9:a3:da:d0:58:25:77:c0:55:1a:d7:
7d:f5:8e:52:64:fd:06:3c:79:64:13:a0:8f:dd:19:
cd:ac:e4:d8:12:94:3e:d9:75:90:1b:f3:00:87:f2:
cb:aa:92:16:31:e9:47:fa:ed:1c:ba:98:a2:92:11:
80:9e:75:5d:ef:b0:1c:b3:30:fa:ab:82:f6:dc:83:
d8:d0:89:72:17:95:c9:e6:7a:e2:ae:fb:d8:b9:1b:
40:dd:c8:87:da:62:19:2f:ca:72:0b:08:d7:26:71:
13:1d:55:3b:e2:cd:1b:3f:15:88:e9:63:93:e6:a4:
92:99:cf:1b:cd:d3:7b:36:8c:19:28:d6:7e:c4:6d:
16:26:db:89:77:8c:7e:09:4a:b9:6f:bd:c0:a3:fe:
3f:c2:1c:ab:05:05:ed:da:d8:7b:08:9e:71:a5:f2:
54:29:ac:b4:81:19:d9:fd:80:ac:c3:fd:26:e6:93:
d0:8b:b9:61:01:64:e5:a0:39:30:a7:00:2b:7e:13:
bc:50:4f:3f:bc:f0:0f:9d:00:8a:4d:28:7b:93:58:
ef:c1:be:e2:d3:07:08:b6:5a:35:49:ea:13:85:12:
53:00:50:ef:3f:50:27:36:b3:0e:5b:34:db:a2:48:
3f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:E8:61:68:F7:2C:17:B9:A2:07:A6:1A:D2:C1:51:56:C0:BB:54:C8
X509v3 Authority Key Identifier:
keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4e:af:dd:d3:71:62:31:ec:ff:92:96:db:85:02:b2:aa:cc:fe:
e2:ca:a4:03:f2:48:7f:79:b2:c4:0c:da:0e:85:c9:86:b1:f2:
15:f7:0d:0e:b5:6c:92:c5:56:56:90:0a:0e:2d:b3:a2:e6:f1:
a0:ab:62:7c:a3:15:af:57:49:c4:b8:04:73:8c:54:83:b1:bf:
08:37:51:2a:02:b7:90:06:b5:e4:73:bb:7a:91:a8:da:f9:79:
11:82:91:2a:01:c8:5e:55:40:bc:bb:f0:50:45:a8:7b:14:ae:
13:7d:d5:1b:46:83:50:9d:e9:47:2c:87:f5:1c:67:db:ad:7e:
4d:a8:88:52:17:b1:ef:a5:97:9b:02:67:c8:7a:c4:b4:a3:c6:
01:0a:52:f7:31:86:65:31:87:35:63:ea:fe:59:43:94:05:2d:
dc:b3:a9:ab:4c:81:ec:bb:0c:82:cd:0b:0f:81:4c:c7:15:e0:
c2:50:b5:d3:34:6e:b6:18:2f:82:60:21:0a:b9:f7:bb:a3:da:
a9:51:a1:ae:02:e4:4c:ec:70:67:61:c7:45:16:d0:12:3e:34:
3c:a0:91:2a:e3:ff:ee:31:58:65:45:2c:65:6c:60:d9:f8:b9:
2a:ec:ef:b6:4e:44:df:63:9b:24:7a:a4:fe:f0:a5:0a:e3:e5:
77:6d:10:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 12:17:23 2025 by rpki-client