Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.mft
File: yddu42nMHPDmKcUQpLr0ZeFfteE.mft (raw, json)
Hash identifier: CEi+3smcCUHVRzaqLX4F4qPJbOaFqHEPCPda0wQbzNU=
Subject key identifier: 1A:51:4B:19:5C:51:3D:68:E8:09:8A:9E:BC:02:11:58:1E:A4:28:52
Authority key identifier: C9:D7:6E:E3:69:CC:1C:F0:E6:29:C5:10:A4:BA:F4:65:E1:5F:B5:E1
Certificate issuer: /CN=A9194E59/serialNumber=C9D76EE369CC1CF0E629C510A4BAF465E15FB5E1
Certificate serial: 0403
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yddu42nMHPDmKcUQpLr0ZeFfteE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.mft
Manifest number: 03FE
Signing time: Thu 17 Apr 2025 00:06:46 +0000
Manifest this update: Thu 17 Apr 2025 00:06:45 +0000
Manifest next update: Thu 24 Apr 2025 00:06:45 +0000
Files and hashes: 1: yddu42nMHPDmKcUQpLr0ZeFfteE.crl (hash: pHogSb39ZcB9gUMiQp0TbKM7ID7X3q3utNMla9FXQeE=)
2: AD9D02406C6811ECB7C0925AC4F9AE02.roa (hash: kw8NlMSw+Nqcx4jBYDikGpkNhg4pIHl7KmPwkj2eC0g=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.crl
rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yddu42nMHPDmKcUQpLr0ZeFfteE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 24 Apr 2025 00:06:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1027 (0x403)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9194E59, serialNumber=C9D76EE369CC1CF0E629C510A4BAF465E15FB5E1
Validity
Not Before: Apr 17 00:06:45 2025 GMT
Not After : Apr 24 00:06:45 2025 GMT
Subject: CN=68004616-c921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ea:17:a3:51:d4:fb:8f:0d:6a:ca:f8:f5:19:
2d:18:37:b8:66:ef:41:36:c1:08:ec:f1:64:2d:66:
ac:f1:18:ac:32:60:dd:12:0f:95:bc:91:e9:11:12:
c2:ad:5f:81:84:f8:81:4c:70:30:c5:b0:31:ff:fa:
63:14:27:63:6b:9d:79:5c:b9:81:43:f5:84:e1:77:
15:93:87:6f:c8:3b:20:2b:8c:87:3d:6e:99:a2:ad:
1a:d4:5a:be:e0:c5:fc:9c:24:98:be:e0:4b:93:58:
c0:63:3a:7a:e1:63:72:b7:81:39:90:85:ce:1b:9e:
22:16:9d:d2:e8:bb:f3:02:bc:e1:bd:9a:ca:f4:14:
d4:6a:56:4b:d9:86:98:fa:02:29:8a:42:a3:e2:24:
c9:78:1f:ac:d3:5c:88:e5:fe:25:99:31:33:71:89:
09:72:08:0b:58:22:18:53:61:88:95:ee:66:62:a1:
89:6f:f2:48:b5:38:c9:d9:a0:b9:0d:e2:54:99:4b:
1f:aa:63:5d:7b:e4:f2:65:2a:a7:03:3b:b7:52:a5:
20:c1:cb:b1:a1:1d:77:a0:83:a1:48:33:5d:a2:09:
4a:e5:45:85:d7:3e:90:5d:d4:fe:a0:94:bd:04:c1:
98:0e:5c:97:dd:c8:55:39:93:09:88:34:78:65:1c:
e0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:51:4B:19:5C:51:3D:68:E8:09:8A:9E:BC:02:11:58:1E:A4:28:52
X509v3 Authority Key Identifier:
keyid:C9:D7:6E:E3:69:CC:1C:F0:E6:29:C5:10:A4:BA:F4:65:E1:5F:B5:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yddu42nMHPDmKcUQpLr0ZeFfteE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194E59/AB6111B46C6411ECBEAA1852C4F9AE02/yddu42nMHPDmKcUQpLr0ZeFfteE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
07:03:d8:7f:21:90:64:c1:8d:06:ac:19:0e:06:6c:e8:9c:47:
63:5c:07:79:aa:58:00:be:62:70:17:33:e5:a8:eb:0c:4e:00:
0a:1a:53:95:cf:37:54:79:a1:5a:60:9c:ec:1e:9c:4d:d3:c5:
6e:03:cf:fa:78:7d:bf:23:25:85:e2:11:04:08:f6:f2:db:d8:
f5:42:4d:90:bb:bd:df:fc:32:75:4a:f6:04:67:22:60:1c:3b:
ea:82:09:95:6b:51:79:d1:21:78:2f:71:69:bb:ef:22:fc:b6:
79:3a:ad:a1:f2:25:63:02:f4:40:31:9e:53:bf:17:18:1b:8f:
84:fc:6d:f4:dd:be:36:4c:24:2e:54:6c:92:65:25:f1:8b:ab:
67:00:70:5d:12:97:5b:d5:54:c3:fe:43:7e:a5:8e:b4:16:f3:
28:da:85:e6:ec:11:e1:59:1a:84:e6:d0:41:13:c6:c0:3d:d2:
ef:ce:48:50:cd:c5:6c:c7:69:ec:4f:e9:05:c9:9e:5d:c5:f6:
53:54:bf:0b:57:08:c8:9e:81:aa:a7:c0:48:3b:02:bc:41:3b:
5b:49:96:ce:f1:17:f3:e9:46:99:a0:03:b2:3c:f7:f7:71:60:
fe:67:2a:92:47:ca:ff:ec:88:2f:ad:08:b1:ae:19:bf:3b:ea:
d5:81:80:a9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTRFNTkxMTAvBgNVBAUTKEM5RDc2RUUzNjlDQzFDRjBFNjI5QzUxMEE0QkFGNDY1
RTE1RkI1RTEwHhcNMjUwNDE3MDAwNjQ1WhcNMjUwNDI0MDAwNjQ1WjAYMRYwFAYD
VQQDEw02ODAwNDYxNi1jOTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAveoXo1HU+48Nasr49RktGDe4Zu9BNsEI7PFkLWas8RisMmDdEg+VvJHpERLC
rV+BhPiBTHAwxbAx//pjFCdja515XLmBQ/WE4XcVk4dvyDsgK4yHPW6Zoq0a1Fq+
4MX8nCSYvuBLk1jAYzp64WNyt4E5kIXOG54iFp3S6LvzArzhvZrK9BTUalZL2YaY
+gIpikKj4iTJeB+s01yI5f4lmTEzcYkJcggLWCIYU2GIle5mYqGJb/JItTjJ2aC5
DeJUmUsfqmNde+TyZSqnAzu3UqUgwcuxoR13oIOhSDNdoglK5UWF1z6QXdT+oJS9
BMGYDlyX3chVOZMJiDR4ZRzgLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpRSxlc
UT1o6AmKnrwCEVgepChSMB8GA1UdIwQYMBaAFMnXbuNpzBzw5inFEKS69GXhX7Xh
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEU1OS9BQjYxMTFCNDZD
NjQxMUVDQkVBQTE4NTJDNEY5QUUwMi95ZGR1NDJuTUhQRG1LY1VRcExyMFplRmZ0
ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3lkZHU0Mm5NSFBEbUtjVVFwTHIwWmVGZnRlRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
NEU1OS9BQjYxMTFCNDZDNjQxMUVDQkVBQTE4NTJDNEY5QUUwMi95ZGR1NDJuTUhQ
RG1LY1VRcExyMFplRmZ0ZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAHA9h/IZBkwY0GrBkOBmzonEdjXAd5qlgAvmJwFzPlqOsMTgAKGlOV
zzdUeaFaYJzsHpxN08VuA8/6eH2/IyWF4hEECPby29j1Qk2Qu73f/DJ1SvYEZyJg
HDvqggmVa1F50SF4L3Fpu+8i/LZ5Oq2h8iVjAvRAMZ5TvxcYG4+E/G303b42TCQu
VGySZSXxi6tnAHBdEpdb1VTD/kN+pY60FvMo2oXm7BHhWRqE5tBBE8bAPdLvzkhQ
zcVsx2nsT+kFyZ5dxfZTVL8LVwjInoGqp8BIOwK8QTtbSZbO8Rfz6UaZoAOyPPf3
cWD+ZyqSR8r/7IgvrQixrhm/O+rVgYCp
-----END CERTIFICATE-----
Generated at Thu Apr 17 11:25:25 2025 by rpki-client