Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EB0/E32C87CC50D511ECB3F8D529C4F9AE02/4bkQuccxDJ9lWU_G6JifyVOzblE.mft
File: 4bkQuccxDJ9lWU_G6JifyVOzblE.mft (raw, json)
Hash identifier: cz5f+GHwOi8KdHNdJa559Gxx+VgjAmHTsgIkee8ApKA=
Subject key identifier: CD:A5:74:17:AA:96:31:D4:F4:A8:FF:29:D2:B5:0F:80:7A:BF:E8:FE
Authority key identifier: E1:B9:10:B9:C7:31:0C:9F:65:59:4F:C6:E8:98:9F:C9:53:B3:6E:51
Certificate issuer: /CN=A9178EB0/serialNumber=E1B910B9C7310C9F65594FC6E8989FC953B36E51
Certificate serial: 0453
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4bkQuccxDJ9lWU_G6JifyVOzblE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9178EB0/E32C87CC50D511ECB3F8D529C4F9AE02/4bkQuccxDJ9lWU_G6JifyVOzblE.mft
Manifest number: 0449
Signing time: Wed 16 Apr 2025 20:39:31 +0000
Manifest this update: Wed 16 Apr 2025 20:39:30 +0000
Manifest next update: Wed 23 Apr 2025 20:39:30 +0000
Files and hashes: 1: 4bkQuccxDJ9lWU_G6JifyVOzblE.crl (hash: tm8UeZNNdY3cTVasNjvPznKFvoiMJRYIEknKWz8d1Lo=)
2: 4B1D585250EA11EC8FF55B24C4F9AE02.roa (hash: lWr4ljnX2/yEjyiQoz0OgG+PVsyj+yPc7sx1n1rIGWY=)
3: B38D932050EF11EC8583962BC4F9AE02.roa (hash: vGjVKyfhGouNwPbyNw8ueo4siItyyWgs22PxyDfp4xs=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9178EB0/E32C87CC50D511ECB3F8D529C4F9AE02/4bkQuccxDJ9lWU_G6JifyVOzblE.crl
rsync://rpki.apnic.net/member_repository/A9178EB0/E32C87CC50D511ECB3F8D529C4F9AE02/4bkQuccxDJ9lWU_G6JifyVOzblE.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4bkQuccxDJ9lWU_G6JifyVOzblE.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 23 Apr 2025 20:39:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1107 (0x453)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9178EB0, serialNumber=E1B910B9C7310C9F65594FC6E8989FC953B36E51
Validity
Not Before: Apr 16 20:39:30 2025 GMT
Not After : Apr 23 20:39:30 2025 GMT
Subject: CN=68001583-767e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:95:8e:f2:ad:3d:aa:bc:66:5a:f4:9f:93:11:
a8:e4:ab:e0:73:ca:b1:f3:7e:a2:25:d8:8b:ee:7f:
64:4a:30:ab:2b:52:24:20:55:5d:81:5d:83:75:68:
d7:68:61:ba:67:1e:f1:40:08:82:31:78:23:d4:c2:
d5:47:d0:fa:cb:47:a8:50:03:db:7b:14:78:4a:4e:
4f:1b:b1:b4:4d:e0:d6:b5:46:ca:08:82:27:9d:80:
71:bc:dc:c7:3a:50:be:a4:15:bd:4b:68:56:ac:e3:
8f:72:2d:e9:5f:ce:06:06:1d:cb:b3:20:51:84:64:
37:be:04:31:c7:e2:9a:37:fc:46:1e:d6:a0:ea:3b:
b9:b3:39:12:ef:e1:22:42:9a:86:d6:53:59:69:95:
39:4e:2d:ad:1a:c1:92:c5:6c:db:29:09:dc:f2:f3:
b3:a2:cd:5d:96:bc:a3:de:7e:91:95:58:39:52:05:
f1:a6:de:01:c7:5a:ba:fd:2a:3b:e1:a0:99:98:63:
7a:ba:16:c0:ee:ac:c9:29:d1:53:bf:1c:45:bd:87:
93:84:3e:a0:47:e5:97:c5:58:54:8a:07:06:a8:d1:
cb:13:aa:ef:7b:0b:10:a2:e9:a0:39:c6:e0:2a:ed:
b5:2a:6a:4d:f6:98:d2:60:82:a3:cb:be:95:b3:85:
8c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:A5:74:17:AA:96:31:D4:F4:A8:FF:29:D2:B5:0F:80:7A:BF:E8:FE
X509v3 Authority Key Identifier:
keyid:E1:B9:10:B9:C7:31:0C:9F:65:59:4F:C6:E8:98:9F:C9:53:B3:6E:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9178EB0/E32C87CC50D511ECB3F8D529C4F9AE02/4bkQuccxDJ9lWU_G6JifyVOzblE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4bkQuccxDJ9lWU_G6JifyVOzblE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EB0/E32C87CC50D511ECB3F8D529C4F9AE02/4bkQuccxDJ9lWU_G6JifyVOzblE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4b:bd:7f:55:83:da:37:b1:d9:b4:70:b7:aa:cb:7d:18:57:a1:
26:26:fc:98:f7:2b:ac:78:f1:b4:18:a2:8d:36:47:b5:07:1e:
66:c5:fc:82:eb:97:d2:35:07:a2:f3:4a:7e:c5:59:e7:e0:f0:
f3:f0:31:48:cf:87:0b:47:86:25:b8:54:10:b9:cb:62:f7:e7:
1f:1f:ff:5f:cd:f4:a6:6a:f5:f5:98:68:2b:ba:71:20:ec:53:
44:6f:d0:ee:b6:b0:4b:5c:c5:19:20:bd:5b:7a:20:ee:32:95:
31:b6:d4:ca:7b:f2:33:b8:e3:1a:df:e0:b2:79:50:30:57:f2:
c6:ba:12:59:95:9f:f2:8b:35:de:e7:e9:94:d7:5a:52:14:f7:
8e:2f:90:d9:ee:17:a4:00:04:53:b4:68:c6:dc:75:b4:db:bc:
39:86:3e:0b:25:d0:fe:e4:02:02:a8:5b:af:c7:f8:cc:0f:3b:
87:d7:7c:57:00:c8:a2:d2:06:b5:1b:55:04:85:33:e6:0a:aa:
f8:f3:83:32:fc:5d:9e:e2:ee:26:aa:07:59:4a:2c:33:53:bd:
c5:f5:88:0b:ea:fa:29:d5:76:8d:23:a5:0b:a7:0e:3d:b4:f8:
36:18:48:c5:9d:8c:f2:61:ee:84:5c:44:4b:d0:5e:b9:94:66:
e1:cc:8f:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 07:18:14 2025 by rpki-client