Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft
File: YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft (raw, json)
Hash identifier: CnLATaUsHq2AEYFnSjsLUNRs1se1X3RFRPcevgVdz5w=
Subject key identifier: 4B:5D:2F:68:6E:9D:0F:98:AC:E5:D4:65:9E:E0:C4:50:1B:0B:FF:E9
Authority key identifier: 61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56
Certificate issuer: /CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656
Certificate serial: DB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft
Manifest number: D8
Signing time: Wed 09 Apr 2025 04:29:50 +0000
Manifest this update: Wed 09 Apr 2025 04:29:50 +0000
Manifest next update: Wed 16 Apr 2025 04:29:50 +0000
Files and hashes: 1: YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl (hash: 7GRLK4UftvMxBk18N4hiEyUTZxFBnNeWIO6v8qcRZEk=)
2: E75FB4F0CE4A11EE95C15E20C4F9AE02.roa (hash: utq11zi2cO+ldR8mXOv++lb25ZgD5tUSUW03iRiwBL0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl
rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 04:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 219 (0xdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A1CAA
Validity
Not Before: Apr 9 04:29:50 2025 GMT
Not After : Apr 16 04:29:50 2025 GMT
Subject: CN=67f5f7be-b937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d6:45:dc:40:63:e6:dd:ce:e0:4b:e7:56:59:
a3:c6:78:2a:98:40:8b:86:b8:68:fa:69:0a:33:b6:
16:7b:64:3a:07:e6:59:2c:92:30:33:7d:e8:d1:6c:
6c:ac:77:e3:58:69:9a:36:c2:9e:18:f3:9a:45:d2:
35:db:89:e0:98:41:9d:74:b6:a0:09:ae:c5:db:d9:
55:b2:b8:2e:87:cb:65:22:bb:09:76:cc:01:90:4f:
75:fe:a7:8f:08:f6:72:a8:ee:54:40:f4:87:48:d1:
35:ce:dc:7e:35:a3:b0:91:7f:50:2f:0e:72:70:1b:
df:7b:bf:44:e6:cb:25:9e:99:70:2d:32:c4:76:54:
06:7f:8a:a9:9c:5b:9b:bb:46:5c:ca:56:d9:f4:79:
e1:d0:50:33:7c:cf:eb:e8:68:6e:42:d1:fe:67:dc:
c9:5c:4b:e1:0f:36:b4:3e:7f:fe:81:28:cc:9b:0e:
82:5a:6f:2f:60:dc:12:bd:41:bd:99:99:5a:d0:d8:
ea:89:c3:ae:07:7c:27:f1:fc:7b:a9:c4:18:a4:ec:
77:ae:2b:99:9f:1e:75:ed:f5:45:04:e3:ff:6a:39:
0c:81:77:92:cd:3c:44:cb:dc:87:a4:18:59:87:34:
f9:ff:88:6b:39:0c:65:fd:bd:ed:1c:1b:8e:a7:d5:
eb:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:5D:2F:68:6E:9D:0F:98:AC:E5:D4:65:9E:E0:C4:50:1B:0B:FF:E9
X509v3 Authority Key Identifier:
keyid:61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5c:32:5e:3c:f2:c0:dd:0f:a1:08:f9:af:a7:1c:eb:16:4e:31:
94:3b:47:9d:6f:65:d4:69:af:9c:93:da:5f:c0:47:60:af:e4:
a6:fa:b4:40:38:05:39:7d:1a:fd:48:48:17:07:9e:e4:cf:f3:
97:63:23:c1:df:0e:68:a6:6f:5c:b8:06:b0:1f:cb:86:5b:60:
10:0b:6e:53:56:c1:15:12:d8:f0:75:9f:2d:84:1b:d0:48:2d:
ee:4e:a4:6b:d4:3c:33:fb:eb:7e:b7:de:ec:fc:58:0c:29:2a:
5b:77:6d:85:db:b6:bc:58:b5:d0:b8:de:51:8e:dc:3e:01:9b:
26:f9:03:5b:48:ee:8e:30:c9:be:a4:a2:c0:d1:ff:62:91:6b:
60:e8:27:4c:10:6e:fa:8d:f3:7f:d8:b8:75:44:d1:9b:47:f9:
ec:69:f5:dd:94:fc:3f:62:9e:8e:c6:a8:63:ad:b2:5d:0a:86:
59:a6:f7:98:1a:86:1d:22:57:e5:67:1d:77:e7:57:be:2a:14:
77:02:fc:b8:f5:2c:30:a3:2d:17:e0:e4:1b:a6:b9:0c:3a:c1:
65:35:37:8f:b3:8f:95:db:e6:4d:66:9e:97:2e:0d:c6:2c:c1:
bd:70:b3:c6:d5:75:de:db:44:be:98:03:90:14:72:b3:f6:e6:
fb:54:23:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 17:27:08 2025 by rpki-client