Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.mft
File: 5iRBKkJ5WJuewvqzIiurBibTElo.mft (raw, json)
Hash identifier: iq+IrvrTe7782JK0YHOndfy5bjquSVIX3ehJtI3fszs=
Subject key identifier: 88:7F:E9:80:CB:2C:ED:53:0A:EC:C8:71:2D:F9:22:D5:3E:9C:ED:F1
Authority key identifier: E6:24:41:2A:42:79:58:9B:9E:C2:FA:B3:22:2B:AB:06:26:D3:12:5A
Certificate issuer: /CN=A9168336/serialNumber=E624412A4279589B9EC2FAB3222BAB0626D3125A
Certificate serial: 0C5F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iRBKkJ5WJuewvqzIiurBibTElo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.mft
Manifest number: 0C50
Signing time: Sat 12 Apr 2025 18:14:43 +0000
Manifest this update: Sat 12 Apr 2025 18:14:43 +0000
Manifest next update: Sat 19 Apr 2025 18:14:43 +0000
Files and hashes: 1: 5iRBKkJ5WJuewvqzIiurBibTElo.crl (hash: rFsvYAqH73dLkibYRgl3g3ZLCgkU9PkWp7S8Ae+U1aA=)
2: BE4852941C2E11EE9A9A9940C4F9AE02.roa (hash: DnLi7rEERWA5qhTcgS0GPWRyD6exAMMBjfted7mhPy4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.crl
rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iRBKkJ5WJuewvqzIiurBibTElo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 18:14:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3167 (0xc5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9168336, serialNumber=E624412A4279589B9EC2FAB3222BAB0626D3125A
Validity
Not Before: Apr 12 18:14:43 2025 GMT
Not After : Apr 19 18:14:43 2025 GMT
Subject: CN=67faad93-01be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:be:47:a2:f1:24:b7:56:8d:df:49:0f:dc:04:
03:e8:f5:63:6e:6f:91:e1:24:1c:38:55:12:83:1c:
6d:43:f6:fb:e7:45:b0:13:74:c9:5a:b0:af:54:98:
cb:15:93:8e:ba:16:4f:e1:42:a0:d0:f1:59:89:99:
a5:55:f8:ec:8e:07:c9:50:b4:9b:63:db:1a:be:2e:
97:b9:40:f2:40:7d:79:b8:b0:7f:10:6b:f5:2f:9d:
c6:c0:bb:05:2d:14:4c:12:9c:19:9f:b0:72:31:b4:
ee:20:44:d8:66:61:4d:cf:85:2c:9b:a4:3d:bd:ef:
4d:4f:cf:d3:0f:11:28:40:95:78:6a:66:16:57:79:
39:ff:45:3b:3c:a4:c8:4d:98:aa:3c:3c:df:c3:8f:
58:94:35:70:45:a5:a9:66:d0:e9:fb:6b:06:a6:78:
ed:7a:1a:db:c8:25:ed:94:18:86:80:1d:40:da:ef:
75:dd:af:72:82:14:43:85:6f:9b:c7:69:84:00:e7:
16:61:2f:2a:2e:57:7b:6d:0c:41:e4:3e:60:59:7c:
4e:10:d4:af:33:cd:f2:9e:84:04:93:e5:ff:78:a1:
91:a3:f4:d2:de:45:61:70:30:2b:5f:0a:3d:1a:a9:
b3:26:99:3f:1c:42:1b:3f:a9:dc:97:39:0a:90:2f:
35:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:7F:E9:80:CB:2C:ED:53:0A:EC:C8:71:2D:F9:22:D5:3E:9C:ED:F1
X509v3 Authority Key Identifier:
keyid:E6:24:41:2A:42:79:58:9B:9E:C2:FA:B3:22:2B:AB:06:26:D3:12:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iRBKkJ5WJuewvqzIiurBibTElo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5a:ce:ab:2e:84:52:3a:d4:6f:76:c1:ef:d7:49:dc:96:55:27:
fe:73:e5:9b:3b:bc:09:27:c2:73:05:dc:41:07:b9:4d:47:84:
2c:ed:08:81:a0:0c:4d:10:32:09:da:aa:f8:e2:8e:65:fe:f0:
c8:97:b1:12:1e:9a:1a:ca:15:46:b1:d0:47:47:53:c2:42:45:
df:bd:e2:7e:7d:a0:72:ec:b5:83:ba:c4:20:d2:27:5f:f5:1c:
cb:31:92:cc:7c:4e:c2:c2:4f:e5:49:81:dd:35:d5:53:69:54:
bf:d6:f5:0c:5a:6f:f6:3d:10:6c:7c:38:ba:43:33:f0:cc:d0:
8e:1f:3c:3b:15:3f:51:c7:23:d5:a8:f5:f0:1e:22:9c:06:77:
d2:9c:ce:d9:d4:28:fc:86:75:a7:85:e1:0c:7f:36:0e:d4:69:
44:e0:fa:ec:8b:58:b0:be:68:de:de:54:f5:8e:6e:dd:68:3d:
d9:87:0c:a6:65:96:f2:d0:c6:d0:7b:fe:da:28:74:7d:a0:10:
e0:d7:cd:6f:b7:34:a9:2a:8f:09:81:61:94:5f:cc:5d:a6:81:
c9:81:69:1d:b4:f5:07:fb:bf:84:65:ff:f0:07:37:62:17:36:
e8:be:29:62:ac:4f:9c:0f:04:5a:a3:fe:bc:1c:52:62:02:af:
77:a3:2c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 21:31:13 2025 by rpki-client