Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft
File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json)
Hash identifier: 82rK05LfAvJOB9ly+6a1gesjAmQ5Ky4aAUOEf7wTDtM=
Subject key identifier: F5:E8:93:94:D1:7F:B4:B3:EB:6D:B9:D6:08:85:B1:ED:AF:9D:F2:D2
Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27
Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627
Certificate serial: 0BC6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft
Manifest number: 0BBF
Signing time: Wed 16 Apr 2025 18:43:26 +0000
Manifest this update: Wed 16 Apr 2025 18:43:26 +0000
Manifest next update: Wed 23 Apr 2025 18:43:26 +0000
Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: qrgP0kzwhOTc8ssZdEjqwh4uuoridDLOCCee2JEG6JM=)
2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: oYtKqIUNSIUuh/+KpPti5KOAL0KI5TmVO0WB52ytTkI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl
rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 23 Apr 2025 18:43:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3014 (0xbc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627
Validity
Not Before: Apr 16 18:43:26 2025 GMT
Not After : Apr 23 18:43:26 2025 GMT
Subject: CN=67fffa4e-35c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:88:ce:5a:07:78:9e:d5:c5:9d:1d:fd:80:46:
a4:17:d8:09:86:6a:2f:2f:6e:97:7a:bb:2b:96:05:
46:af:93:b8:ec:89:80:07:95:8d:76:7a:2f:d6:c0:
7b:f1:bc:51:89:06:f5:7c:06:dc:9d:fe:c4:0b:cd:
49:40:95:d0:42:f5:3a:51:68:64:d7:95:55:b2:15:
43:d4:b1:6b:89:06:16:c5:6b:25:6c:aa:44:ba:73:
be:11:29:8e:8e:e9:ec:5a:f6:09:cc:4b:20:53:ba:
b7:33:50:d3:9c:25:d8:aa:65:b0:b4:12:eb:26:08:
4e:cb:38:3a:33:a5:32:ad:17:ef:16:3a:0e:e8:2b:
a2:de:60:f9:60:7b:d0:ab:39:a5:a4:65:1d:30:a4:
27:3d:4b:41:00:84:4b:8f:ac:bd:35:7e:9b:6d:d7:
70:fc:e9:08:1a:52:e7:1b:ee:26:43:19:79:d0:81:
c9:ae:4e:f2:e3:5f:c8:48:2d:73:d1:c5:12:9f:8c:
7a:2c:f9:e6:37:85:39:5d:18:1c:d9:03:e3:0c:8a:
9e:b1:4e:d1:ee:14:65:a3:a3:a3:ed:a2:3d:18:0d:
50:22:c5:2f:c6:87:fc:ec:7f:72:20:17:e5:0f:2f:
0f:68:97:aa:90:76:c2:aa:ef:ef:4a:97:6b:e6:2a:
8d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E8:93:94:D1:7F:B4:B3:EB:6D:B9:D6:08:85:B1:ED:AF:9D:F2:D2
X509v3 Authority Key Identifier:
keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1c:1d:fb:28:ef:09:15:85:db:b1:7e:04:17:e6:b5:ec:ec:d0:
73:aa:bd:7e:02:22:6d:fb:65:ec:72:38:a5:a0:a9:41:a0:12:
cf:4f:22:17:d3:25:2c:25:f3:58:b2:6d:7e:01:45:a1:1e:8e:
92:0c:34:63:d3:e1:a2:42:a2:03:ab:4e:ff:4d:d0:4e:5d:e7:
64:9f:b3:d6:43:25:79:c7:61:84:d8:2b:2e:5d:eb:fe:f7:6c:
35:c7:c4:54:f5:56:41:0a:09:97:db:e9:eb:a8:b1:d0:ac:89:
a7:a4:22:79:cb:f0:50:6d:46:25:36:2a:dc:4f:94:c9:8c:59:
da:3c:35:91:53:c5:9d:75:29:37:5f:c8:8e:4f:bc:66:8a:68:
83:f0:3e:a3:c6:32:35:e0:b5:fc:22:ba:01:cc:9f:6b:07:e9:
93:d4:d4:d9:97:76:5b:0e:cc:a9:16:79:4b:1e:5d:0b:ac:10:
e9:a6:65:1b:7c:4b:2e:d6:9c:88:54:4f:c0:1d:e3:44:30:db:
18:c1:a3:00:30:aa:af:ce:5a:d0:a7:b8:70:1b:92:5f:cd:30:
43:53:fa:5d:03:7b:1a:47:b0:88:8e:04:70:85:9a:e9:ea:54:
2c:71:3b:f9:77:d6:e6:6f:9d:bb:a9:6e:03:a8:f7:56:a8:3a:
35:ca:0b:4c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICC8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND
MDJDMDM2MjcwHhcNMjUwNDE2MTg0MzI2WhcNMjUwNDIzMTg0MzI2WjAYMRYwFAYD
VQQDEw02N2ZmZmE0ZS0zNWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzojOWgd4ntXFnR39gEakF9gJhmovL26XersrlgVGr5O47ImAB5WNdnov1sB7
8bxRiQb1fAbcnf7EC81JQJXQQvU6UWhk15VVshVD1LFriQYWxWslbKpEunO+ESmO
junsWvYJzEsgU7q3M1DTnCXYqmWwtBLrJghOyzg6M6UyrRfvFjoO6Cui3mD5YHvQ
qzmlpGUdMKQnPUtBAIRLj6y9NX6bbddw/OkIGlLnG+4mQxl50IHJrk7y41/ISC1z
0cUSn4x6LPnmN4U5XRgc2QPjDIqesU7R7hRlo6Oj7aI9GA1QIsUvxof87H9yIBfl
Dy8PaJeqkHbCqu/vSpdr5iqNUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXok5TR
f7Sz62251giFse2vnfLSMB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB
MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO
aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y
MkxJQzM3SGVJaFBBTEFOaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAcHfso7wkVhduxfgQX5rXs7NBzqr1+AiJt+2XscjiloKlBoBLPTyIX
0yUsJfNYsm1+AUWhHo6SDDRj0+GiQqIDq07/TdBOXedkn7PWQyV5x2GE2CsuXev+
92w1x8RU9VZBCgmX2+nrqLHQrImnpCJ5y/BQbUYlNircT5TJjFnaPDWRU8WddSk3
X8iOT7xmimiD8D6jxjI14LX8IroBzJ9rB+mT1NTZl3ZbDsypFnlLHl0LrBDppmUb
fEsu1pyIVE/AHeNEMNsYwaMAMKqvzlrQp7hwG5JfzTBDU/pdA3saR7CIjgRwhZrp
6lQscTv5d9bmb527qW4DqPdWqDo1ygtM
-----END CERTIFICATE-----
Generated at Thu Apr 17 15:17:05 2025 by rpki-client