Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft
File: PzsvWzuuUqa1aSyvkqJVSwbahj0.mft (raw, json)
Hash identifier: zZBw6YA6ZQZFpjs8ExqdiU7y6a6lctn0f3DWft4jlWQ=
Subject key identifier: 00:12:7C:97:A8:BE:85:F6:AF:65:BC:75:B8:63:49:E8:8F:D0:2E:8B
Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D
Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D
Certificate serial: 050F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft
Manifest number: 050A
Signing time: Tue 08 Apr 2025 23:20:43 +0000
Manifest this update: Tue 08 Apr 2025 23:20:43 +0000
Manifest next update: Tue 15 Apr 2025 23:20:43 +0000
Files and hashes: 1: PzsvWzuuUqa1aSyvkqJVSwbahj0.crl (hash: o09bnGfL1dxY58TUBPN7ZeR8LHSlktWSAI0CZ6sNk/Q=)
2: 1953EB90FF1B11EBA5CEF970C4F9AE02.roa (hash: GyNWMA5uS2CM++CZD9BiRxHkePo3mscOl1IpeulPgT0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl
rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 23:20:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1295 (0x50f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C81C
Validity
Not Before: Apr 8 23:20:43 2025 GMT
Not After : Apr 15 23:20:43 2025 GMT
Subject: CN=67f5af4b-5da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:13:79:0c:b9:67:b8:a5:40:39:87:38:6f:05:
51:ce:09:01:ee:7f:e9:92:4a:b8:29:ab:0a:36:80:
ad:92:77:07:65:7c:c9:06:74:58:e7:78:97:4a:c1:
67:ab:3a:69:3f:5a:e6:79:f9:e3:7c:1a:56:8f:03:
4c:2f:1d:91:07:a1:04:d2:60:93:e4:c2:f7:d5:49:
84:8f:ce:bd:c6:4d:af:3f:81:2e:55:69:ab:df:58:
80:c4:37:99:33:20:7f:b6:56:86:28:6b:69:d7:ae:
de:ee:8c:97:47:b7:1e:31:f0:c7:ee:0d:d9:91:f7:
d4:35:8c:ae:26:41:7a:51:3a:00:b7:a7:a7:7d:88:
b5:cf:6d:59:40:46:23:10:85:d2:57:39:19:a2:cb:
eb:dd:be:0c:1e:ad:1e:c1:74:bc:3f:38:ab:45:72:
50:11:ab:c6:1f:cb:61:ad:19:57:2a:5d:20:37:72:
50:53:d3:8b:e7:ad:70:d0:65:ee:94:90:d6:4c:7a:
cb:29:32:cb:3d:01:4e:5d:7f:30:6a:df:cf:94:64:
17:d8:9b:c1:e5:1f:21:60:4e:c5:0b:f3:85:c2:0a:
42:5e:aa:b5:1b:90:59:2e:5b:a5:7a:38:d2:8d:3b:
a1:87:36:ee:13:0d:ca:34:56:c1:37:57:eb:2b:93:
e4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:12:7C:97:A8:BE:85:F6:AF:65:BC:75:B8:63:49:E8:8F:D0:2E:8B
X509v3 Authority Key Identifier:
keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8d:0b:3b:d0:2c:11:7b:f0:80:a6:89:b4:52:7b:a7:02:04:2a:
23:3b:2a:c9:b2:73:5a:3f:84:0e:c4:40:76:68:c5:f2:48:c8:
0e:31:85:07:c6:12:9f:62:3c:52:3b:76:3e:7a:f2:f1:65:f4:
30:3e:1a:98:91:cd:2c:a8:56:eb:ec:fd:a3:e4:e3:27:4e:10:
50:16:77:d4:36:7c:11:c0:9d:0c:22:9f:b2:af:a8:40:99:a1:
21:98:50:ac:e0:31:ad:a0:81:42:c6:de:98:49:a6:42:6e:2a:
39:8f:f5:98:3f:a4:c1:d5:35:66:8c:0b:0f:9a:9e:35:3f:3f:
17:4a:65:e4:6d:41:e6:76:66:19:9c:26:37:46:e4:ce:6e:10:
6f:71:e1:ff:1a:e2:3f:01:e4:b1:58:4f:61:64:3e:37:a2:0f:
30:35:94:0f:ce:2e:7d:89:a7:45:29:d0:e5:f3:74:db:83:a4:
c9:28:78:57:cc:d0:ce:03:7e:4b:6f:26:40:92:c9:c5:0d:5c:
d0:1d:82:44:8c:98:ab:cd:3c:9f:a2:06:22:ac:66:fd:f0:40:
e1:74:76:89:f9:91:c2:cc:a1:07:73:1d:df:4b:4f:ab:a8:17:
32:76:ec:fb:4a:d2:d5:0b:f0:ed:54:e9:a8:28:6d:ab:27:10:
5c:da:fa:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 15:49:21 2025 by rpki-client