Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft
File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json)
Hash identifier: IM7Mrbp0zDLSgK1o++8dWKdguVDnBUmx/3aJE25c6t8=
Subject key identifier: F8:BA:E3:E1:BF:D0:CA:EF:75:4D:BA:3A:4F:05:85:02:19:1D:0D:96
Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B
Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B
Certificate serial: 0E30
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft
Manifest number: 0E23
Signing time: Sat 12 Apr 2025 17:42:59 +0000
Manifest this update: Sat 12 Apr 2025 17:42:58 +0000
Manifest next update: Sat 19 Apr 2025 17:42:58 +0000
Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: NVNNmuydKIKJvg12wQy43gG0MTn/DV2k32K8WHAIEFY=)
2: 06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa (hash: fNpUJmaY/58+uPHYwxaUVKQVkJ1Z1JQOjKMefzdFE80=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl
rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 17:42:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3632 (0xe30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917047F, serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B
Validity
Not Before: Apr 12 17:42:58 2025 GMT
Not After : Apr 19 17:42:58 2025 GMT
Subject: CN=67faa623-17c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6e:b6:99:d8:d3:1a:b3:d2:2d:51:07:44:24:
44:c3:62:a4:34:58:40:ed:18:d2:51:02:de:f7:f0:
f8:4f:63:72:39:21:74:b4:cd:7c:2c:d2:19:c9:44:
be:51:fb:52:b8:dc:1b:b0:00:19:36:40:c6:ce:a8:
99:22:0e:e1:b6:42:85:8f:0d:4d:87:25:1a:a3:e2:
61:72:f8:f2:95:b8:9a:bb:dd:7d:2c:af:da:de:0d:
0b:06:bb:c3:5e:56:6e:57:11:05:76:69:1a:2b:4d:
d3:66:e6:ac:b5:58:7d:52:a5:ab:07:eb:21:85:b5:
95:72:5b:52:3d:f8:7b:a0:cd:ee:22:a6:bf:f6:ae:
04:04:ab:75:1d:a0:83:b6:4a:31:54:36:84:8e:e9:
42:97:a9:b0:72:fe:94:ab:2e:32:a1:04:78:f6:6d:
48:40:29:fb:29:52:86:9f:06:ff:9c:22:e0:60:7b:
7e:b6:fa:e4:3c:12:cc:d0:d9:1b:3b:2f:42:45:a1:
c6:6f:28:16:41:26:9e:20:ba:96:55:d1:34:ab:1f:
08:01:84:b6:48:82:09:c8:9a:bb:4e:ce:f0:02:cb:
97:3d:b9:d0:1b:f2:2e:49:73:70:20:39:c3:8b:c3:
6a:db:b1:d5:de:ab:ab:83:5c:71:20:be:a5:59:18:
8c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:BA:E3:E1:BF:D0:CA:EF:75:4D:BA:3A:4F:05:85:02:19:1D:0D:96
X509v3 Authority Key Identifier:
keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
d1:d2:3d:0e:82:28:d8:4b:b9:a3:87:23:de:e8:80:b7:55:05:
14:70:e6:b3:ba:d8:d5:50:34:b4:a3:82:a4:4c:0d:e9:87:28:
b3:35:a2:67:5f:e3:96:c8:70:69:c0:89:9c:12:84:6d:8c:92:
56:7a:0f:38:79:c4:30:24:89:4b:1b:8a:f6:18:94:d2:a5:43:
9e:e4:cc:38:ef:70:69:49:86:73:a3:8e:88:5c:bd:88:ed:c4:
8c:d3:dc:85:67:5f:56:73:77:92:ae:10:7d:0a:54:15:51:26:
ab:74:e9:25:51:3d:16:f1:6b:6f:97:3b:09:df:e0:02:fb:35:
65:02:2d:0f:2d:03:e9:2d:b6:bd:34:1c:48:8e:a9:c8:8e:0e:
c8:66:6c:21:bb:b6:e7:19:58:77:c8:32:77:42:75:f4:14:09:
69:bf:2c:ce:8d:ca:fe:0a:98:25:6a:ff:26:46:f0:5f:8f:1b:
d2:6e:58:92:ed:ec:2a:82:a8:95:85:38:18:6d:a3:cd:39:48:
c0:c7:82:c8:05:0a:d8:b9:e4:c9:5f:fb:8e:cb:a9:8e:5b:51:
7c:2c:9e:8b:07:d7:f9:60:a2:b3:64:d6:86:84:a6:cc:27:ea:
29:97:1e:80:99:85:97:4c:47:00:20:51:b4:21:88:37:48:6e:
4a:d1:0b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 17:08:26 2025 by rpki-client