Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft
File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json)
Hash identifier: uzF5UohRHjeSpRjlM7hIYFr5MzqIKn4hCVMJZEanuJw=
Subject key identifier: DC:B6:EC:73:1E:86:79:7C:03:B7:11:85:11:40:61:82:5B:2E:A5:76
Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0
Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0
Certificate serial: 0116
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft
Manifest number: 0111
Signing time: Wed 09 Apr 2025 03:52:10 +0000
Manifest this update: Wed 09 Apr 2025 03:52:10 +0000
Manifest next update: Wed 16 Apr 2025 03:52:10 +0000
Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: 0xGEWDViYJJN4H1oHALstcjRjFwM79GY1e5e97QGcck=)
2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: RALcV87N2SziukH0pwzyeMCClLLK8BxrG9ZYFcFQDRA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl
rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 03:52:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278 (0x116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9189AA3
Validity
Not Before: Apr 9 03:52:10 2025 GMT
Not After : Apr 16 03:52:10 2025 GMT
Subject: CN=67f5eeea-6362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8e:2a:4b:8f:e9:53:c5:65:c3:cf:f8:1b:4a:
8f:90:e6:fd:13:5f:c9:b1:af:70:f5:2e:85:0d:aa:
32:e5:f2:7c:38:73:6d:42:9c:f2:72:15:91:e1:50:
01:15:70:9e:b4:f0:1a:55:25:4d:7e:c3:3a:5d:c3:
e2:92:e2:38:9f:6e:3f:30:47:d1:10:c4:7d:89:e0:
8e:1a:4d:84:88:6c:af:e0:b5:71:04:8c:76:05:fc:
6e:33:5b:11:d7:a2:fc:19:e4:11:8e:50:a9:5d:1a:
91:82:77:13:46:f5:31:17:a0:65:68:34:79:8f:5d:
ec:18:65:98:33:fb:f9:db:d9:ae:ec:1e:9b:b8:b2:
cc:15:66:be:c1:96:68:8f:a6:38:13:c8:cf:8a:cb:
4e:69:39:57:ec:8b:15:ea:84:78:91:4f:36:fd:05:
5d:71:c6:d9:0f:d0:71:9e:65:b0:3e:f6:c8:34:92:
3f:93:e8:5a:df:1d:3e:68:14:9f:d8:09:46:c2:e6:
30:3d:53:31:07:90:19:3c:20:4e:b5:4f:fb:6b:75:
6a:5f:61:97:09:88:f3:b0:0d:68:61:25:de:45:be:
91:2c:17:a8:f9:42:04:6b:1d:f6:9f:02:bd:ea:e4:
c4:84:40:d1:9a:87:55:7f:66:9c:ee:13:41:40:93:
a7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B6:EC:73:1E:86:79:7C:03:B7:11:85:11:40:61:82:5B:2E:A5:76
X509v3 Authority Key Identifier:
keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
44:11:78:92:33:72:3d:48:42:fe:a5:0f:ea:70:ff:17:56:3f:
bb:ac:48:6c:40:3d:55:77:b6:44:05:35:e8:0f:30:dd:f2:3b:
1a:06:a5:e6:10:0e:1b:4a:59:69:7b:14:3a:f1:3c:d9:9d:d2:
ba:a9:6b:74:c5:a6:6d:d1:ad:77:36:95:c1:31:53:39:ef:99:
03:10:ea:93:36:f5:b5:cd:50:ba:f5:77:ca:c1:4f:11:47:e8:
8e:9f:bf:aa:74:06:b8:0c:89:6d:b9:47:1d:26:98:4c:a8:39:
d9:62:63:b5:7d:ed:1c:f7:ca:2a:47:da:a0:1f:8e:ea:16:7d:
d1:9b:de:1d:5f:21:06:1e:e2:8b:df:51:26:40:d3:3c:6a:21:
14:c8:a1:69:a0:65:09:78:55:a8:d5:ed:65:75:bf:d3:43:0f:
b1:c0:de:4a:33:f0:b8:8e:f9:ab:ca:24:04:4b:63:d7:31:f0:
ba:56:1f:2e:3a:8e:03:24:9d:98:1f:5c:98:5b:c0:64:9d:21:
40:78:7b:74:63:bd:5d:47:74:a5:81:ac:60:90:9d:17:9b:61:
fa:40:d1:56:64:75:bb:bc:10:7f:1f:45:70:0e:81:16:90:fa:
39:70:f0:aa:b4:0e:ef:ea:ee:0b:43:db:25:c1:5b:f7:8e:a5:
2a:6b:4c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 14:44:33 2025 by rpki-client