Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft
File: rTu2A7FO-ybXFWgvsEE1Hsj502c.mft (raw, json)
Hash identifier: fTqALNmNwZQLA6zmTVFZ92UGAySjYw+ItN97z3Rs2Fk=
Subject key identifier: 7D:78:A9:95:2D:C9:17:71:78:92:F3:C2:09:FF:CA:F9:78:F6:C8:1B
Authority key identifier: AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67
Certificate issuer: /CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367
Certificate serial: 12AD
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft
Manifest number: 128D
Signing time: Tue 08 Apr 2025 17:08:27 +0000
Manifest this update: Tue 08 Apr 2025 17:08:27 +0000
Manifest next update: Tue 15 Apr 2025 17:08:27 +0000
Files and hashes: 1: rTu2A7FO-ybXFWgvsEE1Hsj502c.crl (hash: QK2UCfDqXnMhMJ3vRbdpCwzsOmA4VymSqK+8bRV7A2g=)
2: C31D6D082BA611EF82D8BF21C4F9AE02.roa (hash: cuFQqVlbEJ/udXRPZ56LOiAFU4p5XZPUOiRAjCCaxGQ=)
3: 403398AA233111EEAF768F66C4F9AE02.roa (hash: LFrmkrzanddJe0x2nUkwJLw/OhE7SJ+J+T3fYrc0q4I=)
4: E4AFD636233211EE8737EE2AC4F9AE02.roa (hash: mehZcMjFb7HT3F1ePo3UBF+1EGoPOvu0R4233be/rFs=)
5: 4426B244F6A011EC8E197883C4F9AE02.roa (hash: tPqGcusMyqiuDoF3oCEh1MkgveCq5i4UTPc8YjbijQA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl
rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 17:08:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4781 (0x12ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9191436
Validity
Not Before: Apr 8 17:08:27 2025 GMT
Not After : Apr 15 17:08:27 2025 GMT
Subject: CN=67f5580b-019c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4d:15:4b:1c:90:d0:4a:e6:17:45:9e:da:01:
1f:dc:9d:0e:b7:87:60:0c:1c:8e:3b:a4:66:d2:8a:
71:0e:8a:2d:b2:6c:2f:fe:c3:ec:fe:f1:9e:9a:11:
ae:a1:2d:e4:86:d7:e9:61:ee:dd:36:e0:69:ed:a1:
71:55:be:8a:e1:0a:81:88:33:35:b3:f2:aa:4e:81:
4e:a7:0e:74:7b:68:f2:b8:27:4d:97:ea:78:96:b6:
2a:01:26:b7:08:be:d0:b1:bc:e1:75:66:fc:90:2e:
c6:bd:1c:34:99:d4:78:cb:17:6d:5c:2a:c5:20:15:
c7:46:1d:14:1e:da:87:29:9c:28:5c:86:ae:8f:c4:
09:6e:31:b5:37:4c:83:41:79:be:76:8a:7c:e2:1d:
84:24:c8:15:43:26:54:c7:d7:66:5c:36:7d:0d:62:
52:c7:be:5a:70:2a:7e:2b:e8:f0:fa:5d:36:ad:08:
8a:20:9d:0a:88:b1:ab:94:de:74:7a:90:4e:c4:76:
83:56:7c:23:df:b7:35:1b:dd:8b:4c:8d:43:be:62:
c5:a7:9e:c7:6e:5f:85:8c:72:2e:31:9f:0b:19:7f:
bd:79:16:58:fb:4c:12:c8:e9:1c:6a:aa:09:83:08:
03:6e:1f:3b:bc:a7:33:d7:ee:cd:6a:7e:71:33:17:
4c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:78:A9:95:2D:C9:17:71:78:92:F3:C2:09:FF:CA:F9:78:F6:C8:1B
X509v3 Authority Key Identifier:
keyid:AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
20:93:4f:d8:4d:e7:6d:0a:ad:f7:fa:d1:ac:6c:20:ec:24:52:
63:fe:71:62:27:4f:65:68:6e:5a:63:d4:4a:1a:74:10:54:3a:
ca:85:f7:18:55:bb:29:ab:ca:16:9d:23:a6:80:6d:02:d6:10:
4e:1f:bc:b7:50:25:02:79:68:0c:36:1d:1b:34:27:2d:71:d1:
71:c4:fc:91:de:e2:c4:cf:26:a1:31:10:72:30:b8:c0:0d:e6:
ff:b1:b3:da:42:4b:54:f7:8e:4d:b2:6b:6b:42:3e:09:d0:1a:
ce:d1:4a:a0:22:ff:22:2d:99:1d:39:70:ec:01:64:09:1b:61:
38:86:af:c5:31:b1:7e:7d:dd:10:13:7f:b1:be:ad:3c:73:eb:
5d:45:db:74:ba:55:13:37:9c:97:dd:b9:ed:2c:21:ed:ce:b4:
57:ba:0a:ec:1f:00:6b:84:f7:c4:10:95:13:18:d1:2a:0f:5b:
a8:6f:67:6c:7c:5f:53:65:b3:ff:a2:c8:7c:f4:9d:47:fd:23:
31:29:7c:50:df:2c:0c:aa:a9:62:1b:16:e7:bb:e0:2b:0f:9b:
65:06:cb:0b:d6:96:ec:83:64:6b:b0:87:45:ce:83:83:22:75:
13:cc:e1:cf:d7:df:b2:db:0c:47:c7:0b:37:d8:76:a3:71:c6:
d1:49:ce:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 10:37:52 2025 by rpki-client