Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft
File: sDQcND_hUl92ySmWEMoOeOk-h8M.mft (raw, json)
Hash identifier: 48ChKhh4EtKwV1EB4+djpGiu+xxafl8SHX8rQy/0Vkw=
Subject key identifier: 76:6B:FD:89:07:16:D4:38:6F:41:57:47:B0:41:64:92:86:14:A8:12
Authority key identifier: B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3
Certificate issuer: /CN=A9167FBA/serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3
Certificate serial: 0F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft
Manifest number: 0E
Signing time: Wed 09 Apr 2025 06:55:18 +0000
Manifest this update: Wed 09 Apr 2025 06:55:18 +0000
Manifest next update: Wed 16 Apr 2025 06:55:18 +0000
Files and hashes: 1: sDQcND_hUl92ySmWEMoOeOk-h8M.crl (hash: oRe5Lpg6GjWinLVBfm0dNDwBHvtLkGn5ZOdur/iC+WE=)
2: F4B92E1C05A111F082D17325C4F9AE02.roa (hash: kGx1CJpE3cHBsf4M7cgjGHBrxKAD0rzUUv2UM3HRfTY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl
rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 06:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15 (0xf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9167FBA
Validity
Not Before: Apr 9 06:55:18 2025 GMT
Not After : Apr 16 06:55:18 2025 GMT
Subject: CN=67f619d6-c32e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:05:60:82:15:8c:b9:04:e8:32:38:69:eb:0e:
ad:67:97:61:3c:70:e4:b4:59:ea:83:2b:35:7e:fb:
50:f6:e8:9e:3c:eb:f2:e0:fa:79:ef:02:31:c5:a4:
be:a7:4e:1e:92:33:c4:ca:da:98:4e:1d:97:91:51:
b5:b6:21:33:59:f6:fb:30:e6:22:19:3d:ca:d7:d3:
6b:9e:2e:d8:0f:49:61:d4:0d:c3:d1:55:fe:32:e1:
b9:a3:6d:2c:3d:f3:c0:44:9b:4a:bd:58:4a:86:dc:
5a:21:19:8d:d7:c4:37:55:da:fb:89:6f:c3:87:e8:
2a:93:98:55:15:1f:e9:a9:e4:e5:3e:7b:6c:b2:79:
3c:df:a1:88:fa:64:34:55:71:d1:35:db:be:e8:3b:
f2:20:7d:7b:7c:cb:dd:6b:2e:e3:60:91:bb:46:8b:
82:66:64:14:f3:49:70:08:27:ce:e3:f3:c8:fa:0b:
53:32:c5:4d:28:8b:70:7d:ce:75:87:bf:a3:42:f5:
ce:4d:b3:d6:7a:8a:67:07:37:89:b9:bd:80:ea:34:
b7:c7:d0:75:30:26:b5:97:43:a6:2d:f2:1d:8e:d6:
1b:84:a1:88:d9:0c:9e:20:35:6b:46:4f:88:85:4d:
cb:c6:69:b9:a1:40:7d:84:d4:71:0d:78:e1:61:0d:
22:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:6B:FD:89:07:16:D4:38:6F:41:57:47:B0:41:64:92:86:14:A8:12
X509v3 Authority Key Identifier:
keyid:B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1f:77:ca:ca:2f:f1:b1:2e:ad:dc:13:60:1c:13:fe:9e:c9:0d:
46:97:cd:b5:2a:4d:2f:b4:e7:b5:8c:26:3d:c9:02:4e:ee:11:
d6:5f:20:7d:c9:9b:82:f7:fe:c9:d8:8b:4f:34:20:df:7f:41:
fa:73:c2:b5:d5:bd:2f:37:62:29:4e:7f:dc:db:a4:0a:1e:9a:
d5:24:42:2f:c1:4b:95:3a:7f:9c:b8:2f:c5:91:bf:b8:20:1f:
5a:34:8b:6b:5f:cb:5a:f9:57:59:fd:df:8c:6b:32:4d:4e:72:
15:af:b0:b3:16:a0:49:a5:46:6e:1c:4b:14:2f:78:c5:10:0a:
2d:52:b6:d4:b8:13:42:8e:e1:fb:54:a1:1f:d0:48:00:88:8e:
0b:87:63:ec:c3:9b:bf:71:2c:0b:34:e7:ba:88:ad:0f:2b:74:
66:af:c3:22:6a:63:df:85:25:29:b9:60:12:a0:6b:da:01:5c:
3f:82:03:07:bc:7d:56:76:4f:cd:94:b2:cc:1d:1b:d8:56:e8:
db:52:18:53:25:eb:78:c4:e0:4b:73:35:d4:d8:f7:89:39:ea:
d0:04:e5:c3:88:7b:7e:f8:93:29:05:5e:97:a2:27:ac:af:31:
c9:a4:c8:a6:b2:0f:1d:d6:5c:d2:a2:59:ea:4a:c5:57:a5:76:
83:49:41:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 10:27:27 2025 by rpki-client