Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.mft
File: -bj5HSkovqo1HMNFxHNpMv2GOfE.mft (raw, json)
Hash identifier: XMUee7jPJzAAOdCrstI6NE/nHNabTtIx7YKUj8l8GnM=
Subject key identifier: AE:90:B7:B0:EB:2F:21:69:EF:5C:76:99:0D:0E:C9:40:18:7F:36:D8
Authority key identifier: F9:B8:F9:1D:29:28:BE:AA:35:1C:C3:45:C4:73:69:32:FD:86:39:F1
Certificate issuer: /CN=A917C2CC/serialNumber=F9B8F91D2928BEAA351CC345C4736932FD8639F1
Certificate serial: 0EFD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bj5HSkovqo1HMNFxHNpMv2GOfE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.mft
Manifest number: 0EF4
Signing time: Sat 12 Apr 2025 17:34:17 +0000
Manifest this update: Sat 12 Apr 2025 17:34:16 +0000
Manifest next update: Sat 19 Apr 2025 17:34:16 +0000
Files and hashes: 1: -bj5HSkovqo1HMNFxHNpMv2GOfE.crl (hash: BBabCtGVfKwtbtISkMZlhs4Wh1ccS3SlF7/8lAoQ5Zw=)
2: 39275D0C232511EC925DF318C4F9AE02.roa (hash: IUxOhh5i3F8AXkiEHRy2ZFcsd2EB0EPXzUnc2RHCPV4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.crl
rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bj5HSkovqo1HMNFxHNpMv2GOfE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 17:34:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3837 (0xefd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C2CC, serialNumber=F9B8F91D2928BEAA351CC345C4736932FD8639F1
Validity
Not Before: Apr 12 17:34:16 2025 GMT
Not After : Apr 19 17:34:16 2025 GMT
Subject: CN=67faa419-0d6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:70:46:84:87:e5:f8:62:17:23:09:df:92:9b:
98:48:74:eb:01:8d:ed:4c:ee:8f:03:97:02:e9:b9:
a5:c1:84:a7:cc:77:63:9d:b0:5c:72:36:5a:71:c3:
b6:2d:b3:0b:c3:d0:d2:b3:3f:39:53:a2:b7:55:72:
b7:1c:1f:4b:96:34:65:63:a1:74:b5:7f:bb:f1:d8:
21:39:e4:e4:d3:d8:6e:5c:88:77:41:d9:02:3b:6a:
c5:40:9e:a3:5a:0b:84:c8:5f:e6:25:73:31:ba:fb:
60:d7:d5:b1:46:c8:d7:b7:ff:3e:f8:ed:87:0c:b8:
25:27:b6:b0:13:b8:2e:e2:47:39:42:1b:21:94:3e:
69:dd:06:4f:69:2b:86:35:13:5d:60:77:c0:b3:ad:
fe:a3:fa:dd:d6:aa:d1:87:ef:b4:0f:bc:e4:56:79:
cd:67:4b:24:ba:eb:3b:c5:be:9d:2f:c9:00:54:8a:
85:57:f0:d0:2c:a3:05:27:a1:48:c6:70:80:0d:6a:
8f:d2:9b:7c:ac:37:98:53:58:73:47:32:53:ca:ee:
96:3b:4a:59:e8:b6:e5:4c:09:3d:95:35:da:dd:c6:
a1:13:b6:08:61:89:66:18:bb:68:eb:7e:ff:b2:78:
32:d4:45:a7:d0:16:f5:cf:45:8b:8f:58:d8:15:fb:
2d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:90:B7:B0:EB:2F:21:69:EF:5C:76:99:0D:0E:C9:40:18:7F:36:D8
X509v3 Authority Key Identifier:
keyid:F9:B8:F9:1D:29:28:BE:AA:35:1C:C3:45:C4:73:69:32:FD:86:39:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bj5HSkovqo1HMNFxHNpMv2GOfE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
74:8a:d5:b6:30:57:c2:cb:bb:b6:5d:4a:79:46:a7:31:b8:a8:
86:08:83:c5:2a:79:4f:a6:8a:ef:64:0f:2e:71:d7:64:d2:9a:
71:5e:fb:1a:20:e0:0e:d7:63:55:d7:c4:3a:16:34:42:e7:87:
c8:4d:3c:fb:10:93:8d:88:e9:9d:88:86:46:10:3a:b2:61:58:
1a:3d:d4:70:f4:69:da:ba:57:77:af:24:c0:9f:ee:93:4b:07:
1b:9f:37:72:98:e7:49:6a:02:e7:d6:dc:d8:79:39:18:3d:86:
e3:a9:2b:8e:dc:f7:1f:43:cb:ef:c8:b9:a9:83:68:71:74:4e:
67:6b:8a:fe:89:1f:9d:a4:d7:b1:e2:3a:3f:ca:66:f1:f4:6b:
9c:a7:50:dd:81:22:89:f0:9f:9a:da:a6:ae:43:58:bb:80:52:
04:4c:60:a7:1b:74:a4:a1:16:4e:23:15:d9:d4:6c:9b:bc:e2:
0d:4b:d5:f6:97:c9:a7:82:2b:63:8c:a6:c9:ad:a4:57:0b:aa:
6c:84:50:cd:5d:23:aa:db:95:d6:f4:d8:d5:4f:c8:37:72:60:
ae:b5:5a:bb:6a:e6:28:eb:76:06:5b:42:0a:f6:33:f4:76:d8:
ee:d9:38:41:89:48:93:a3:fd:85:ac:e3:1c:a0:d9:c9:7e:6d:
4b:86:21:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 23:17:10 2025 by rpki-client