Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9188593/1D155986FA6611EFBB2D4A76C4F9AE02/Y2_RQNCeyk0Y7yy3Ou2xJHn9zJk.mft
File: Y2_RQNCeyk0Y7yy3Ou2xJHn9zJk.mft (raw, json)
Hash identifier: 3A0LfCZTquFUBs2k48YBsF0P3GAoqRyUwNR1qWOHgvc=
Subject key identifier: 22:8C:CA:90:16:48:8B:D9:C2:29:D0:BC:AF:50:C3:5E:86:41:5F:E0
Authority key identifier: 63:6F:D1:40:D0:9E:CA:4D:18:EF:2C:B7:3A:ED:B1:24:79:FD:CC:99
Certificate issuer: /CN=A9188593/serialNumber=636FD140D09ECA4D18EF2CB73AEDB12479FDCC99
Certificate serial: 17
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y2_RQNCeyk0Y7yy3Ou2xJHn9zJk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9188593/1D155986FA6611EFBB2D4A76C4F9AE02/Y2_RQNCeyk0Y7yy3Ou2xJHn9zJk.mft
Manifest number: 16
Signing time: Sun 13 Apr 2025 06:43:42 +0000
Manifest this update: Sun 13 Apr 2025 06:43:41 +0000
Manifest next update: Sun 20 Apr 2025 06:43:41 +0000
Files and hashes: 1: Y2_RQNCeyk0Y7yy3Ou2xJHn9zJk.crl (hash: KrqrlWSrQPsArPVNu89blzENBUEL1Fb2ClWYA+6LEx8=)
2: A60DE226FA6611EFA2492D77C4F9AE02.roa (hash: EaDsWh2ev+tCV5xfJvG7800tAekhxcSYZkZKsSGYDqo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9188593/1D155986FA6611EFBB2D4A76C4F9AE02/Y2_RQNCeyk0Y7yy3Ou2xJHn9zJk.crl
rsync://rpki.apnic.net/member_repository/A9188593/1D155986FA6611EFBB2D4A76C4F9AE02/Y2_RQNCeyk0Y7yy3Ou2xJHn9zJk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y2_RQNCeyk0Y7yy3Ou2xJHn9zJk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 06:43:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23 (0x17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9188593, serialNumber=636FD140D09ECA4D18EF2CB73AEDB12479FDCC99
Validity
Not Before: Apr 13 06:43:41 2025 GMT
Not After : Apr 20 06:43:41 2025 GMT
Subject: CN=67fb5d1d-0789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f1:31:a1:4d:f8:32:82:b7:63:6f:9d:c7:e4:
85:a6:51:c6:df:ed:d1:c4:6e:f6:31:66:db:3c:13:
05:09:cf:1c:e2:d8:8c:69:17:3e:63:4f:a8:14:21:
8e:4c:7d:bd:cc:49:9b:eb:32:d4:6e:d9:b6:49:11:
5d:02:86:16:56:b4:05:41:62:7a:fa:71:3d:cb:96:
a3:70:6b:d8:84:f2:b2:48:76:84:7b:39:f4:97:a4:
4f:ef:06:3a:6b:86:1a:4a:8b:bd:c9:5b:b3:8e:46:
9e:79:fc:67:5a:1b:f0:18:8d:b2:81:f9:22:be:6b:
04:e9:fd:8f:de:8d:38:1d:e1:23:62:fd:bc:9c:67:
7e:aa:74:f7:44:c8:c2:73:45:42:19:ed:d9:66:ce:
7f:44:cb:50:a6:47:89:0a:bd:7b:0c:d7:cd:f5:cf:
44:bb:6a:ca:f9:30:4b:84:f7:6c:71:2a:46:63:45:
c4:05:93:27:bb:88:d0:26:0e:29:18:59:ed:05:69:
3d:ad:c2:5f:24:5a:2b:57:64:dc:bb:63:8a:ed:17:
01:3f:e8:51:7f:a4:58:4e:86:95:b3:00:4b:cf:42:
08:ca:09:b3:d2:d7:8c:c4:e3:96:b0:5c:a6:ed:fc:
ea:92:18:32:23:8f:ba:64:59:b0:70:9c:16:70:83:
8b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8C:CA:90:16:48:8B:D9:C2:29:D0:BC:AF:50:C3:5E:86:41:5F:E0
X509v3 Authority Key Identifier:
keyid:63:6F:D1:40:D0:9E:CA:4D:18:EF:2C:B7:3A:ED:B1:24:79:FD:CC:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9188593/1D155986FA6611EFBB2D4A76C4F9AE02/Y2_RQNCeyk0Y7yy3Ou2xJHn9zJk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y2_RQNCeyk0Y7yy3Ou2xJHn9zJk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188593/1D155986FA6611EFBB2D4A76C4F9AE02/Y2_RQNCeyk0Y7yy3Ou2xJHn9zJk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7a:5c:42:af:82:fe:28:31:7c:51:54:df:96:4e:55:9f:34:0f:
be:17:48:0c:ed:54:b5:30:b9:68:d8:ae:b6:9c:cc:29:4a:2e:
79:c8:11:dd:4d:65:f2:b4:9b:40:d1:60:75:f1:fc:c9:19:d6:
0d:82:f7:06:7f:af:ae:b9:c1:60:2d:6f:a8:3a:d0:fe:ff:29:
cc:bb:18:e8:8c:c3:ba:26:53:6d:21:b3:45:db:ac:8f:10:f7:
b1:ec:3f:8b:f2:54:6a:95:bc:c4:47:cf:3e:79:a4:31:89:c1:
b0:bb:f1:05:65:1a:bb:e4:db:9b:53:46:e4:2d:77:48:bf:d6:
c8:f8:90:53:f8:ef:77:46:40:ad:43:65:69:e4:be:58:2b:1b:
10:15:1f:ab:c7:0d:c6:9b:13:cc:fd:b6:90:f4:5a:e0:97:27:
61:7e:4c:a4:9e:77:ca:ce:9f:5a:3d:78:09:25:cc:b3:8c:0e:
56:67:5e:65:a6:e6:fb:0d:5e:ff:3e:82:96:2d:10:70:1a:f1:
58:b5:85:b0:1a:c9:2b:7f:1b:3d:99:21:91:5d:f7:94:bb:ec:
aa:0a:12:de:04:bd:64:66:c6:74:cc:79:6c:b3:69:46:f2:24:
63:10:6b:f7:a5:a0:00:7c:d2:e4:11:29:7c:d7:f6:f0:80:d0:
27:87:74:1b
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4
ODU5MzExMC8GA1UEBRMoNjM2RkQxNDBEMDlFQ0E0RDE4RUYyQ0I3M0FFREIxMjQ3
OUZEQ0M5OTAeFw0yNTA0MTMwNjQzNDFaFw0yNTA0MjAwNjQzNDFaMBgxFjAUBgNV
BAMTDTY3ZmI1ZDFkLTA3ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCq8TGhTfgygrdjb53H5IWmUcbf7dHEbvYxZts8EwUJzxzi2IxpFz5jT6gUIY5M
fb3MSZvrMtRu2bZJEV0ChhZWtAVBYnr6cT3LlqNwa9iE8rJIdoR7OfSXpE/vBjpr
hhpKi73JW7OORp55/GdaG/AYjbKB+SK+awTp/Y/ejTgd4SNi/bycZ36qdPdEyMJz
RUIZ7dlmzn9Ey1CmR4kKvXsM1831z0S7asr5MEuE92xxKkZjRcQFkye7iNAmDikY
We0FaT2twl8kWitXZNy7Y4rtFwE/6FF/pFhOhpWzAEvPQgjKCbPS14zE45awXKbt
/OqSGDIjj7pkWbBwnBZwg4sVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIozKkBZI
i9nCKdC8r1DDXoZBX+AwHwYDVR0jBBgwFoAUY2/RQNCeyk0Y7yy3Ou2xJHn9zJkw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4NTkzLzFEMTU1OTg2RkE2
NjExRUZCQjJENEE3NkM0RjlBRTAyL1kyX1JRTkNleWswWTd5eTNPdTJ4SkhuOXpK
ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvWTJfUlFOQ2V5azBZN3l5M091MnhKSG45ekprLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4
NTkzLzFEMTU1OTg2RkE2NjExRUZCQjJENEE3NkM0RjlBRTAyL1kyX1JRTkNleWsw
WTd5eTNPdTJ4SkhuOXpKay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAHpcQq+C/igxfFFU35ZOVZ80D74XSAztVLUwuWjYrraczClKLnnIEd1N
ZfK0m0DRYHXx/MkZ1g2C9wZ/r665wWAtb6g60P7/Kcy7GOiMw7omU20hs0XbrI8Q
97HsP4vyVGqVvMRHzz55pDGJwbC78QVlGrvk25tTRuQtd0i/1sj4kFP473dGQK1D
ZWnkvlgrGxAVH6vHDcabE8z9tpD0WuCXJ2F+TKSed8rOn1o9eAklzLOMDlZnXmWm
5vsNXv8+gpYtEHAa8Vi1hbAaySt/Gz2ZIZFd95S77KoKEt4EvWRmxnTMeWyzaUby
JGMQa/eloAB80uQRKXzX9vCA0CeHdBs=
-----END CERTIFICATE-----
Generated at Mon Apr 14 02:37:06 2025 by rpki-client