Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft
File: g2LSOGrBMH7vi7_YdPc45tqjVXI.mft (raw, json)
Hash identifier: uElRuKoPU+tXFdZYBgJeM5H/qIff1g2plbfdwoM1FSE=
Subject key identifier: A7:2B:50:14:5C:5B:D4:B3:33:3F:FC:49:97:1E:F8:03:96:D4:E1:31
Authority key identifier: 83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72
Certificate issuer: /CN=A917C0F5/serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572
Certificate serial: 0D05
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft
Manifest number: 0CFF
Signing time: Wed 16 Apr 2025 18:00:08 +0000
Manifest this update: Wed 16 Apr 2025 18:00:08 +0000
Manifest next update: Wed 23 Apr 2025 18:00:08 +0000
Files and hashes: 1: g2LSOGrBMH7vi7_YdPc45tqjVXI.crl (hash: fZz+M+FduHIruvAKylEet8p72xauGvGjGg20wlpb1EQ=)
2: D11C8B12DB7111E981104A54C4F9AE02.roa (hash: he3bY6Is5h9acipgiTdJz3mt+8HdFzcITDRaeiCVzu8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl
rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 23 Apr 2025 18:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3333 (0xd05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C0F5, serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572
Validity
Not Before: Apr 16 18:00:08 2025 GMT
Not After : Apr 23 18:00:08 2025 GMT
Subject: CN=67fff028-bd4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a0:c0:46:25:b9:e6:8d:2a:ac:3d:74:30:c5:
c9:f7:8c:60:4e:8d:31:10:52:a0:06:50:19:02:b1:
70:b9:03:79:4e:70:53:65:1d:48:49:f6:8d:66:18:
f3:15:ab:83:30:02:e1:41:55:fa:a9:6c:06:d3:2c:
82:de:41:11:93:69:93:7e:8d:45:fd:83:51:f3:2a:
10:ec:59:29:4d:b8:91:9b:01:81:dc:a7:0e:40:a5:
16:c5:f5:a4:1d:4a:77:f3:06:2c:74:33:c5:54:9f:
4e:f8:a3:79:e8:e9:f9:90:8d:79:1e:52:f3:2d:03:
09:95:4a:35:73:0d:88:63:7a:8e:e5:5a:40:13:90:
db:13:00:f9:12:c7:05:67:c7:96:f7:e8:fd:d3:8e:
fa:9f:be:d5:33:43:cc:18:e4:94:83:c3:80:e7:12:
df:ce:29:bf:d1:63:69:b7:67:cd:92:dd:ba:94:c8:
1f:f1:54:eb:25:f5:bb:d5:78:d0:a3:21:88:f0:eb:
a6:77:ce:f4:a4:81:52:0e:f5:92:86:b9:2d:41:a9:
d3:3a:6b:ae:c0:a9:99:17:bc:23:e7:28:a4:60:c0:
34:ba:f0:58:23:e9:16:f0:5e:86:57:65:fc:dc:80:
f1:04:bd:6b:53:1f:c5:27:5b:85:73:33:70:a0:7f:
75:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2B:50:14:5C:5B:D4:B3:33:3F:FC:49:97:1E:F8:03:96:D4:E1:31
X509v3 Authority Key Identifier:
keyid:83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
80:83:e7:d9:80:e3:dd:d2:80:a0:b4:03:70:e0:4f:fd:06:38:
cc:7a:be:10:0d:98:d4:5a:3e:1b:17:e0:8d:08:d2:c1:17:03:
d3:82:cf:76:df:19:3d:f5:03:72:ce:1a:0f:8e:5b:b9:66:09:
ce:da:7a:bc:30:90:cb:32:7a:59:a9:f7:c9:9d:4a:88:76:73:
0f:0f:0a:6b:00:17:bf:bb:75:60:8d:80:dd:c6:ff:3c:6b:0d:
93:cc:32:72:52:22:d8:82:5b:57:00:01:27:49:6c:03:35:f5:
62:ee:c3:b8:75:64:b4:0b:3a:a9:b5:93:2b:b6:d8:0d:9e:02:
09:f5:92:4c:2f:42:5d:e6:0f:17:22:02:9b:a4:d4:5b:1b:80:
f4:5f:03:a3:c5:c5:11:f9:86:54:88:20:39:1f:1a:44:47:cc:
79:dc:71:50:0b:b4:b1:e0:16:49:bc:0e:a2:52:83:fe:f8:0a:
3e:e2:64:5a:b4:1f:46:d0:b3:2a:ed:7c:ce:ad:88:32:75:25:
22:18:95:03:a3:4c:d3:8a:52:c2:78:b3:b3:b1:af:0c:e6:bc:
55:1f:9f:47:95:69:9b:b7:2d:27:64:1d:ec:7a:b0:1f:17:70:
fe:b6:b5:19:41:7f:24:74:d6:7d:ea:89:21:93:36:1b:f6:b1:
c0:f5:67:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 07:01:08 2025 by rpki-client