Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft
File: 9lz9HPOxxajqYIcfo8NAYdtM84M.mft (raw, json)
Hash identifier: c6UeN+rE+U8bbqShBpZ88JQXo7TvwvR0+iTPyEzc+SY=
Subject key identifier: 44:89:8B:DE:93:7A:6A:5C:F2:74:21:00:96:1B:D1:40:F2:F0:20:4E
Authority key identifier: F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83
Certificate issuer: /CN=A9195BA9/serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383
Certificate serial: 0143
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft
Manifest number: 0140
Signing time: Sat 12 Apr 2025 19:49:50 +0000
Manifest this update: Sat 12 Apr 2025 19:49:49 +0000
Manifest next update: Sat 19 Apr 2025 19:49:49 +0000
Files and hashes: 1: 9lz9HPOxxajqYIcfo8NAYdtM84M.crl (hash: PO9XYsZcEvTb+xlvZYziyFMkkwgLHnV+/LQgseGzvyA=)
2: 7A63013E3A4F11EEA10D3A7AC4F9AE02.roa (hash: iTrEAAlkJw9OclXVQcOsLhF2OGcA/o+GNahTLZ1PRQo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl
rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 19:49:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 323 (0x143)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9195BA9, serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383
Validity
Not Before: Apr 12 19:49:49 2025 GMT
Not After : Apr 19 19:49:49 2025 GMT
Subject: CN=67fac3dd-39f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7e:50:6b:dc:3c:86:0a:f0:b7:5a:c9:2e:2e:
72:a9:e0:e7:61:7f:21:43:70:9b:ca:a6:40:c3:f2:
5e:ff:73:7f:3d:d5:45:72:12:57:fa:9b:6d:fe:e1:
ed:a6:99:75:67:f3:3a:37:97:00:f7:e9:26:63:02:
1c:2f:f6:c4:1b:27:38:81:bb:6c:5a:cb:ff:52:c0:
6c:32:13:70:cc:8f:4d:31:c4:2b:70:f0:22:3b:75:
2b:62:63:0e:8a:0e:ad:52:cc:01:fa:68:ad:b6:b9:
ae:15:6c:a3:7f:11:17:dc:94:de:d2:ee:65:b2:15:
e8:dd:9d:ad:ad:ba:d8:b1:d0:ec:3b:21:06:66:22:
1f:27:5d:6b:5e:37:15:25:f2:2c:80:39:04:38:de:
2b:cb:82:85:3c:a2:62:6e:7d:ec:59:4a:4a:c9:6b:
ad:1d:c3:2d:d2:b2:4e:a4:41:a8:b2:ae:6d:97:d9:
dd:b8:6a:46:f6:23:74:f8:fb:f7:1e:1c:84:21:f1:
7b:65:72:6e:89:54:d9:49:53:9a:4c:62:2f:b5:f7:
f1:e0:e2:8e:bd:0e:ae:bd:57:d2:7a:f8:a7:bb:7c:
82:4f:d8:07:c7:23:85:20:84:2d:30:94:3c:45:df:
ed:05:f3:84:46:76:96:1c:e9:2d:69:49:c6:5c:e2:
74:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:89:8B:DE:93:7A:6A:5C:F2:74:21:00:96:1B:D1:40:F2:F0:20:4E
X509v3 Authority Key Identifier:
keyid:F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
19:f9:bf:f1:54:e6:2c:d5:16:02:70:69:09:f7:67:09:e0:f0:
9e:ba:2a:84:f6:18:46:c4:f6:94:ed:b6:4b:33:ec:13:f9:7e:
fd:12:8c:68:33:0e:07:c2:b7:f8:a8:f0:41:04:ff:aa:52:8c:
30:ef:6c:9b:a6:93:65:59:86:74:12:23:76:55:97:58:b4:c5:
ac:99:49:c9:50:4a:ba:7a:56:b8:17:95:d3:bd:a3:53:7c:b4:
5f:6b:68:36:94:7a:e0:80:c7:13:02:fd:4a:a1:04:fd:ca:fe:
4e:3e:b5:a2:35:f2:39:d1:da:14:10:20:01:88:be:3a:e7:60:
3f:26:99:a6:0f:17:6f:e7:79:68:95:a1:29:e2:62:94:8e:61:
91:79:f3:58:89:87:c1:b0:ca:1a:8a:4e:82:4f:25:26:80:fe:
4d:2a:e8:b8:4d:ca:04:33:83:01:81:95:8e:3b:0a:1f:e2:b6:
82:9c:18:1b:97:7d:21:50:b9:9c:eb:7d:5a:b2:74:93:6d:58:
8e:5c:fa:67:f5:c3:1d:ec:0d:ea:a0:f3:bf:34:89:93:86:9f:
85:86:2e:ac:4b:1a:e7:2f:11:74:d1:9f:8c:45:2e:7b:6c:a3:
13:b2:ed:7e:1b:9f:21:85:f7:4d:d9:9b:a5:0d:db:31:57:47:
96:28:84:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 15:05:31 2025 by rpki-client