Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft
File: 9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft (raw, json)
Hash identifier: r5bm2fiJdPxgBoak/DZwobROWbYevGvdLEkBg6MKLNo=
Subject key identifier: E5:4D:75:4B:4B:D4:6F:92:E4:D1:56:A4:38:10:EF:CB:B3:DB:93:26
Authority key identifier: F5:39:83:B7:AB:83:86:C6:99:58:78:4F:FA:F0:E6:97:26:24:57:A7
Certificate issuer: /CN=A919EAAD/serialNumber=F53983B7AB8386C69958784FFAF0E697262457A7
Certificate serial: 0C28
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9TmDt6uDhsaZWHhP-vDmlyYkV6c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft
Manifest number: 0C1B
Signing time: Tue 08 Apr 2025 18:32:35 +0000
Manifest this update: Tue 08 Apr 2025 18:32:35 +0000
Manifest next update: Tue 15 Apr 2025 18:32:35 +0000
Files and hashes: 1: 9TmDt6uDhsaZWHhP-vDmlyYkV6c.crl (hash: /lICgsWZGuSN92WL6AXsX1jYlDdQVhJVGrqeOCjkcvg=)
2: 97DC58040B5B11EAB69DC64FC4F9AE02.roa (hash: Y+cj8aPzkN19TGx3f4b/9SfnrM0Zcz/vz+dPbozawXQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.crl
rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9TmDt6uDhsaZWHhP-vDmlyYkV6c.cer
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 18:32:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3112 (0xc28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919EAAD
Validity
Not Before: Apr 8 18:32:35 2025 GMT
Not After : Apr 15 18:32:35 2025 GMT
Subject: CN=67f56bc3-33e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:47:47:82:53:c1:0d:78:66:68:eb:95:02:49:
9b:ca:0e:86:68:a5:86:f1:aa:79:c7:99:35:c0:1b:
36:e5:43:19:61:c9:ad:4e:05:67:8b:e0:a1:7c:9e:
c0:b7:44:36:95:7c:3f:bd:3d:9b:cb:0a:bf:20:7a:
76:53:30:c7:1b:77:e1:8f:5c:02:36:fd:38:2f:62:
a6:e7:78:a3:bb:0c:98:fa:f2:80:3d:c0:a1:98:71:
3b:1f:ec:d6:40:27:c0:d1:58:a9:4a:fa:fe:23:e2:
8b:d4:cc:bd:e7:ae:46:cd:e2:fb:63:60:42:37:50:
6f:09:ee:57:2d:50:6a:4c:2f:91:01:95:b9:00:1a:
5e:38:30:bc:9e:b2:88:da:d5:02:c4:20:74:8f:79:
88:4a:72:ae:f3:25:f9:4c:b1:c9:02:39:53:00:88:
33:cf:23:5b:7c:2d:2a:16:79:23:64:76:62:c3:fe:
de:82:f7:81:93:65:c8:70:89:9e:f1:7c:66:2c:b8:
82:7c:2c:ff:75:d6:bd:dc:79:bc:f5:92:34:83:27:
7f:05:f1:2f:63:7c:a2:78:3c:4a:6c:5c:9c:73:88:
d4:1f:66:96:4a:2d:77:4a:a9:4a:b2:f1:86:f1:1a:
2a:ce:3d:ba:dd:e3:f8:82:50:45:b2:57:66:72:6b:
04:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:4D:75:4B:4B:D4:6F:92:E4:D1:56:A4:38:10:EF:CB:B3:DB:93:26
X509v3 Authority Key Identifier:
keyid:F5:39:83:B7:AB:83:86:C6:99:58:78:4F:FA:F0:E6:97:26:24:57:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9TmDt6uDhsaZWHhP-vDmlyYkV6c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ab:20:95:60:00:4c:8e:ea:cb:6c:d8:ac:79:73:f6:94:32:a6:
b6:c2:be:41:b2:ac:89:9b:d2:9c:0a:b4:7c:a8:4a:36:5c:9b:
c0:2f:5d:23:3b:8c:48:75:1f:1f:ac:bb:07:a0:ab:7c:0d:c7:
d8:61:e7:75:b9:4c:3a:1a:e4:14:e1:3c:d3:64:08:24:73:88:
18:94:81:3d:f9:f2:36:f3:1b:5c:f8:07:ef:10:ee:01:ac:72:
63:94:7c:f9:67:83:82:f7:e3:39:a1:81:fe:21:82:0d:de:2d:
78:a9:b7:1d:44:52:9e:6d:40:00:07:22:30:a8:05:34:c4:cb:
e7:79:02:f7:d6:c2:c5:7a:a9:d3:0a:84:ee:b4:09:48:c8:bb:
0d:0f:91:fa:da:7e:66:cd:a5:8d:22:98:21:93:d1:81:fd:cd:
79:7c:61:48:03:94:a3:15:d4:8a:c5:af:92:24:df:28:4d:35:
81:8d:6b:29:c2:db:af:fb:26:02:2e:37:83:5d:81:df:0e:ab:
6b:89:9a:39:a7:6c:bb:86:d9:59:4a:0a:7a:2b:74:54:29:f0:
5a:46:bc:0c:aa:31:3f:43:a0:45:48:30:66:04:f0:f8:d4:01:
6a:2b:9b:ab:e8:d3:e8:20:79:22:b8:04:87:68:e4:3e:d1:ed:
19:62:a6:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 20:47:12 2025 by rpki-client