Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft
File: cFErPTLQXcMlQemOV1oxxTIHNkg.mft (raw, json)
Hash identifier: IBEneS/s47yY7KvYJrNsv3OJf1f4TpvljpztBTCjFSo=
Subject key identifier: 54:7A:6E:1D:EE:54:9E:45:0D:04:DE:92:33:73:C5:2D:BC:7D:24:26
Authority key identifier: 70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48
Certificate issuer: /CN=A918D75D/serialNumber=70512B3D32D05DC32541E98E575A31C532073648
Certificate serial: 05EE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft
Manifest number: 05EA
Signing time: Tue 08 Apr 2025 22:41:14 +0000
Manifest this update: Tue 08 Apr 2025 22:41:14 +0000
Manifest next update: Tue 15 Apr 2025 22:41:14 +0000
Files and hashes: 1: cFErPTLQXcMlQemOV1oxxTIHNkg.crl (hash: vo0pyKDFKhtPiUhTkhnwzq6MhEBobNp2TwM+KPpkYzU=)
2: D0763FECA68A11EB9F23D74FC4F9AE02.roa (hash: VQCVLpNqfWDjo91C5wVq3XZaJfc6UnpFTN8P8OxpyeY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl
rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 22:41:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1518 (0x5ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918D75D
Validity
Not Before: Apr 8 22:41:14 2025 GMT
Not After : Apr 15 22:41:14 2025 GMT
Subject: CN=67f5a60a-819d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:31:ee:3a:a7:40:29:46:31:5e:30:13:6d:e1:
b5:0a:fd:73:a6:ae:52:aa:3e:c5:ea:50:0d:a3:ae:
1c:2c:99:5b:cb:72:c2:6a:83:a7:81:1d:f7:63:dc:
44:2a:cd:18:51:6c:9a:10:50:13:ea:c2:a7:91:47:
82:22:c6:f5:9d:84:2d:cb:36:80:41:92:e7:0e:23:
7e:8e:47:c2:c9:e9:94:90:43:ff:f3:e2:5b:b9:fe:
38:6c:94:8d:64:6b:c1:38:7d:f0:0a:f3:58:82:86:
fd:69:57:51:3f:ab:60:16:7e:d4:b6:96:79:0c:22:
aa:a2:f3:3c:d9:25:83:c3:45:2f:ae:77:f6:5e:ed:
29:11:aa:28:9d:26:14:f6:62:75:2f:f7:21:fe:ba:
0f:22:e6:48:a1:d3:48:35:be:0f:54:81:f1:75:0e:
a3:38:14:e0:0e:89:f5:2a:66:79:7c:8e:82:e5:dd:
c8:16:a9:d6:fa:e3:7b:bb:3c:55:49:ab:98:65:76:
e9:c7:59:75:a7:b0:2d:49:63:63:76:ff:5b:57:9b:
ec:d6:6f:ff:7e:1b:5b:3c:2d:b9:8f:d8:71:83:14:
1a:74:30:64:52:6e:96:4a:f9:b6:5c:f5:e1:dc:60:
00:33:7b:6f:fd:b5:59:4c:cb:ea:70:a3:8b:8f:c0:
0a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:7A:6E:1D:EE:54:9E:45:0D:04:DE:92:33:73:C5:2D:BC:7D:24:26
X509v3 Authority Key Identifier:
keyid:70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
40:3c:1e:4a:fe:a9:d0:10:4a:b6:8d:d0:c1:db:38:61:0f:7e:
38:54:d2:ec:4b:02:74:14:83:0a:d8:31:6a:8c:17:45:cf:38:
1f:e5:f7:b8:15:0f:aa:66:ef:c6:93:a8:77:e2:d0:ea:cb:e7:
fe:b3:ce:82:e9:46:04:eb:f5:c2:75:f9:52:c0:0c:ed:5d:4b:
c5:f8:97:6e:b5:39:32:8f:ae:60:35:bb:1f:f7:f7:b5:e2:b3:
f0:12:88:94:06:62:2d:aa:21:4d:49:51:ae:43:5f:38:0f:df:
9c:77:24:63:5a:88:85:da:ab:3a:ea:48:29:f0:ca:e8:57:e9:
9a:19:e6:dd:3b:bc:cb:7d:ef:ec:0c:6d:2f:a8:25:da:76:53:
40:90:c9:76:7e:5d:80:96:a0:80:0e:ac:06:c5:e9:20:87:ea:
f9:1c:89:7f:a3:7f:90:9a:d1:c2:53:24:18:f0:e1:48:7e:1e:
62:aa:bd:0f:a6:c3:f0:43:07:42:7d:6e:1e:eb:c6:19:df:12:
29:b9:a8:95:6f:3b:82:da:5f:08:69:cc:59:de:80:2a:cf:da:
29:b4:2b:1e:b7:66:53:82:07:c8:1a:96:d6:37:3b:74:4b:78:
73:36:ae:d7:7a:89:f8:51:71:09:3a:f1:39:9c:86:e8:0f:11:
c9:5f:34:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 13:21:12 2025 by rpki-client