Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft
File: TbOy41mbZG6fMK90pYxmePrx0rc.mft (raw, json)
Hash identifier: F7+qJ401jDznCrkJLyzYxo32XDcqJf04xfHzRBPYAOg=
Subject key identifier: 27:71:49:6E:D0:64:3D:F5:DD:09:A2:E4:7A:57:A1:7B:0B:20:7D:43
Authority key identifier: 4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7
Certificate issuer: /CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7
Certificate serial: A8
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft
Manifest number: A5
Signing time: Fri 11 Apr 2025 05:23:51 +0000
Manifest this update: Fri 11 Apr 2025 05:23:50 +0000
Manifest next update: Fri 18 Apr 2025 05:23:50 +0000
Files and hashes: 1: TbOy41mbZG6fMK90pYxmePrx0rc.crl (hash: Fchsil+Xro0hfn+YMsI9J5YyeFEtjkn/OyIpJAGFfic=)
2: 206DB948214F11EFAB245D49C4F9AE02.roa (hash: gxFq4TGudmApxCmCB48V39AuCdBYRdeV/qO3X4yaetA=)
3: F2A90F6A86AE11EF999DAD2FC4F9AE02.roa (hash: ophTAyTavYYvv+S2dKtdeyoYjEN6drMlrbOrhmzxr1Y=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl
rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 18 Apr 2025 05:23:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168 (0xa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91698EC, serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7
Validity
Not Before: Apr 11 05:23:50 2025 GMT
Not After : Apr 18 05:23:50 2025 GMT
Subject: CN=67f8a767-8258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3b:03:c7:f4:ef:94:9e:b2:5b:5c:fc:20:01:
e9:68:1e:19:8e:6b:e8:90:3a:4d:83:5e:0e:6a:b1:
a4:6b:d3:88:5a:4b:bd:3e:32:a0:d2:d3:9a:95:54:
a9:33:9b:13:8c:1e:7f:6e:f3:7a:4b:34:68:a0:4d:
14:12:92:ba:2e:e1:3f:63:f4:12:7b:8a:47:ac:55:
80:2d:11:79:35:f1:c2:e2:47:d4:a1:f1:16:14:f4:
97:3c:75:3c:6e:17:08:51:81:e8:6e:d6:e1:d2:95:
be:83:10:fd:62:02:7d:98:46:0a:f7:bf:54:8d:19:
46:29:df:53:7b:41:ad:b0:fb:de:1d:c8:06:d3:9a:
29:51:f4:b9:71:77:7b:85:b7:7b:0e:65:55:4e:24:
28:d1:76:72:b3:a0:fc:85:84:89:07:16:15:45:79:
8a:24:6e:43:ab:94:b0:0d:ce:97:98:02:1c:b7:6d:
df:1f:41:73:fe:ff:98:52:4d:68:cd:ac:28:d7:aa:
47:27:24:8f:44:0b:2e:c0:8d:09:27:1c:e5:a5:bc:
17:f7:62:f5:35:e6:53:79:b9:c1:f5:f0:95:56:aa:
62:db:a1:36:23:b8:02:d0:b3:44:fc:5e:82:9c:88:
c1:2c:ab:c1:69:e2:fc:7d:69:44:fb:09:c6:1f:64:
f8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:71:49:6E:D0:64:3D:F5:DD:09:A2:E4:7A:57:A1:7B:0B:20:7D:43
X509v3 Authority Key Identifier:
keyid:4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
12:6b:41:22:2c:14:44:50:af:a7:08:65:5a:0c:0a:b5:0f:5f:
10:d6:1a:db:1e:8e:bc:5b:57:78:34:74:ab:3a:94:1e:01:ff:
9c:83:c7:4b:cf:1b:8e:08:a9:ba:77:be:ef:81:77:c4:d9:a8:
93:a0:b2:76:19:71:23:9c:71:ff:ec:1a:f1:42:3c:35:57:9c:
4d:64:0c:34:bb:19:38:d0:82:8d:e0:cb:28:83:44:fb:87:a7:
9c:fd:dd:37:5f:17:25:b8:cc:5f:58:a2:6d:82:d1:5a:6d:e7:
b3:e2:2e:94:c0:cc:7e:2e:03:4c:10:92:ae:dc:75:8b:ac:ae:
34:0c:fb:d8:16:07:05:bd:12:f2:ba:58:ef:84:ba:c0:33:55:
52:d1:e7:9d:e2:c5:ec:9b:d9:16:ab:11:52:a5:25:87:4e:cc:
55:11:ad:d8:d8:c0:42:dd:0b:e7:54:80:5f:72:d7:7c:8a:af:
01:60:2f:eb:0a:6b:a5:43:b4:51:67:d0:fe:85:d4:01:58:f2:
21:da:5e:53:e7:4c:3a:71:62:49:2d:9d:26:4b:a2:4d:88:59:
df:dd:23:81:cb:4a:77:a0:bb:6b:fa:5d:85:84:36:e9:60:84:
55:49:6d:16:a9:d9:d4:76:0a:52:01:72:9f:b0:e1:8e:1a:58:
28:4b:91:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 21:40:38 2025 by rpki-client