Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft
File: YN1l7H9y62x9qLk3BuLTug8GW_w.mft (raw, json)
Hash identifier: DsTs6gfng3BrNTSuQFtPTUPSsTuRLb417djQ35K3fqY=
Subject key identifier: C4:F6:FB:45:E2:2E:18:86:90:98:DA:8E:6C:49:8B:02:49:E0:87:00
Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC
Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC
Certificate serial: 1A49
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft
Manifest number: 1A3C
Signing time: Tue 08 Apr 2025 16:21:39 +0000
Manifest this update: Tue 08 Apr 2025 16:21:39 +0000
Manifest next update: Tue 15 Apr 2025 16:21:39 +0000
Files and hashes: 1: YN1l7H9y62x9qLk3BuLTug8GW_w.crl (hash: tXiUgXCzn/mZ6GOLZNu+YnE3xQ33JidRk3l7HViGErw=)
2: D75BE71A410511E7970A2A5FC4F9AE02.roa (hash: bo/SZs4FQGVCgHbfJ/qOcN+amQtsXWeV9LBgPktlbik=)
3: 91CB97905BD211EBA9178181C4F9AE02.roa (hash: XfRW9hpvnBY9LTBMASrvKe5ewyj8spWmKtOVyqPmD0g=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl
rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 16:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6729 (0x1a49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4264
Validity
Not Before: Apr 8 16:21:39 2025 GMT
Not After : Apr 15 16:21:39 2025 GMT
Subject: CN=67f54d13-56c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:b7:94:4c:ad:8b:a9:eb:9a:61:1e:48:92:e7:
63:d1:29:74:89:6a:37:c3:2a:87:51:30:f0:36:ad:
ac:3e:a7:99:eb:33:6d:34:db:4d:3a:0c:fb:ad:b5:
ef:46:e0:9e:76:40:35:39:38:56:87:1d:aa:98:6d:
a6:64:c9:36:d2:68:08:ff:0c:ce:10:7c:b6:74:b0:
12:4e:2c:61:00:f4:79:24:76:38:f6:d0:fb:33:08:
a6:56:4e:14:02:1c:7b:cc:cf:83:01:10:9e:ca:2b:
04:9e:92:b9:35:e0:4c:9d:42:8c:14:b4:09:4a:0c:
cd:82:d4:b1:71:15:08:ba:87:31:d0:75:fb:73:60:
98:33:6a:e7:81:c3:51:16:9d:8e:43:89:bb:17:e6:
e7:f3:b1:de:89:14:40:fa:dd:75:a0:66:0c:66:2a:
59:b5:6f:f8:9e:5f:13:51:bc:ed:4b:4d:ec:01:3d:
4b:75:b1:1e:73:e7:cc:7e:71:c8:11:56:cc:a2:9f:
f6:58:23:4e:4e:e3:54:28:c7:6e:a6:4d:7a:35:e4:
57:57:67:27:9e:14:4d:b7:8a:58:70:d0:ed:24:95:
a8:dd:99:d3:30:60:39:1f:0a:a8:28:62:ae:e4:27:
3e:5e:ba:fe:25:ca:4e:1f:2e:4d:b2:e2:61:a4:d2:
ff:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:F6:FB:45:E2:2E:18:86:90:98:DA:8E:6C:49:8B:02:49:E0:87:00
X509v3 Authority Key Identifier:
keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7e:77:a9:c8:2b:77:99:d5:47:9d:27:e6:09:b5:58:a5:39:e2:
08:36:11:66:a7:24:f6:5d:20:75:b0:ba:70:64:54:ec:c3:da:
2e:16:24:df:90:0f:4d:58:45:64:69:37:94:9b:34:8f:db:75:
20:94:13:d0:69:77:90:80:52:b0:ff:72:bf:d0:62:dc:40:a4:
50:ca:a6:22:93:40:e6:08:99:1f:d6:d2:9e:85:a6:2b:2d:80:
d2:13:71:0e:c6:03:26:40:c9:c4:f6:8b:3b:18:a4:a9:30:df:
2e:93:85:fa:0e:6a:aa:ef:af:ce:47:24:fd:e5:16:55:fb:d2:
41:77:27:db:09:70:e6:d4:be:90:3a:ee:93:0e:b9:26:fc:6f:
2f:5a:ec:30:a7:72:63:1a:ce:51:38:28:e2:0b:fd:52:ea:46:
b1:44:e1:a8:75:08:2f:6f:b1:e1:bf:e6:0e:31:e3:0a:58:b6:
c0:a7:17:34:ab:5e:69:47:0b:57:30:bb:d5:d1:a3:ad:45:42:
94:49:23:eb:91:81:be:8a:ae:df:7f:8e:a3:7a:9a:2d:fa:67:
8c:bf:eb:2d:15:b8:09:d8:c3:ee:24:ec:ac:72:df:15:c2:0f:
58:24:21:b0:43:33:b9:5f:e2:3b:67:7e:0c:61:d6:f6:ed:f4:
a3:d2:27:5f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICGkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB
MEYwNjVCRkMwHhcNMjUwNDA4MTYyMTM5WhcNMjUwNDE1MTYyMTM5WjAYMRYwFAYD
VQQDEw02N2Y1NGQxMy01NmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA77eUTK2LqeuaYR5Ikudj0Sl0iWo3wyqHUTDwNq2sPqeZ6zNtNNtNOgz7rbXv
RuCedkA1OThWhx2qmG2mZMk20mgI/wzOEHy2dLASTixhAPR5JHY49tD7MwimVk4U
Ahx7zM+DARCeyisEnpK5NeBMnUKMFLQJSgzNgtSxcRUIuocx0HX7c2CYM2rngcNR
Fp2OQ4m7F+bn87HeiRRA+t11oGYMZipZtW/4nl8TUbztS03sAT1LdbEec+fMfnHI
EVbMop/2WCNOTuNUKMdupk16NeRXV2cnnhRNt4pYcNDtJJWo3ZnTMGA5HwqoKGKu
5Cc+Xrr+JcpOHy5NsuJhpNL/lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMT2+0Xi
LhiGkJjajmxJiwJJ4IcAMB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx
MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX
X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
NDI2NC9DNThENkZGQTQxMDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYy
eDlxTGszQnVMVHVnOEdXX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQB+d6nIK3eZ1UedJ+YJtVilOeIINhFmpyT2XSB1sLpwZFTsw9ouFiTf
kA9NWEVkaTeUmzSP23UglBPQaXeQgFKw/3K/0GLcQKRQyqYik0DmCJkf1tKehaYr
LYDSE3EOxgMmQMnE9os7GKSpMN8uk4X6Dmqq76/ORyT95RZV+9JBdyfbCXDm1L6Q
Ou6TDrkm/G8vWuwwp3JjGs5ROCjiC/1S6kaxROGodQgvb7Hhv+YOMeMKWLbApxc0
q15pRwtXMLvV0aOtRUKUSSPrkYG+iq7ff46jepot+meMv+stFbgJ2MPuJOysct8V
wg9YJCGwQzO5X+I7Z34MYdb27fSj0idf
-----END CERTIFICATE-----
Generated at Fri Apr 11 12:47:52 2025 by rpki-client