Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft
File: Z187oflqnh7CsBN2YsdU2x0eAHM.mft (raw, json)
Hash identifier: OOp0+5iP63de29iIItx8D9H9Ljsh5z5R/FKGKFKB/kQ=
Subject key identifier: 7D:C3:4D:16:F0:C7:19:E6:C5:72:1C:75:9E:40:6E:48:1C:73:A1:E3
Authority key identifier: 67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73
Certificate issuer: /CN=A91A4517/serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073
Certificate serial: 28F6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft
Manifest number: 28D8
Signing time: Sat 12 Apr 2025 15:34:02 +0000
Manifest this update: Sat 12 Apr 2025 15:34:01 +0000
Manifest next update: Sat 19 Apr 2025 15:34:01 +0000
Files and hashes: 1: Z187oflqnh7CsBN2YsdU2x0eAHM.crl (hash: h1UiUuzZ8HVN7D/3u09crPRvLrZdzP9WxDP8REZCU+0=)
2: F4246CDA561811E98A165872C4F9AE02.roa (hash: MjUj12ziCX5FsiArxAOt+CGQVqMG8r/+AxNd8FxrlXg=)
3: 5B0D0BFE04D411EAA7E3F81FC4F9AE02.roa (hash: rwCF53o/2VLZF/xLvGMTlFyQCHhpOILr4tGZzUzVyo8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl
rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 15:34:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10486 (0x28f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4517, serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073
Validity
Not Before: Apr 12 15:34:01 2025 GMT
Not After : Apr 19 15:34:01 2025 GMT
Subject: CN=67fa87e9-9390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ad:64:1b:9e:8f:df:cc:80:67:80:68:a3:0a:
b3:e1:f9:29:ed:b6:37:cc:21:b2:9e:ef:44:5f:6a:
60:0e:9d:90:6e:e5:3c:56:a4:a0:65:e2:bd:da:ae:
30:be:68:24:63:78:ec:2e:a7:93:ec:48:b3:83:ab:
3e:eb:13:f4:e0:ff:9c:12:6d:e1:ef:d4:41:7e:e4:
8d:7f:97:d4:c5:6e:ee:ec:c0:8e:62:28:51:94:0e:
df:00:8f:f6:6b:21:68:34:45:b0:81:82:1e:ad:fb:
fb:1f:7e:1b:c5:43:50:1e:91:f8:53:86:a3:fd:ee:
12:88:d7:2c:9b:1f:c8:77:cd:e1:ce:61:2e:7b:47:
2b:42:af:27:4f:0a:c7:fc:48:f6:bf:37:26:9d:89:
36:38:13:e1:b3:e0:01:de:bb:f5:26:3f:4e:63:dd:
db:84:c9:df:7c:fd:93:33:ae:c2:d1:47:fb:f6:82:
b7:61:02:2e:b2:c2:fc:5a:e4:af:55:79:da:ac:ed:
99:1c:7e:d0:88:ef:28:9b:9b:aa:4e:8b:87:26:ec:
63:fb:d9:0a:74:8b:4c:76:ab:df:67:bc:82:f5:94:
2e:ad:b9:b3:6c:e9:fb:28:59:75:0a:3e:b1:37:1a:
b6:76:4c:a3:77:b8:00:b7:a6:8b:61:0d:50:8d:e5:
51:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C3:4D:16:F0:C7:19:E6:C5:72:1C:75:9E:40:6E:48:1C:73:A1:E3
X509v3 Authority Key Identifier:
keyid:67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
10:72:dd:17:d6:bd:f9:e0:46:cc:a8:c1:24:4b:fc:a7:dc:f6:
c7:20:d8:13:20:36:9e:28:a2:46:81:e9:e0:89:f1:19:e1:ca:
ca:db:ac:6f:75:94:c3:a6:10:d8:aa:0a:d4:88:19:bd:cf:9f:
ed:c7:c1:26:f7:ee:72:b9:05:a7:bb:15:46:81:09:b3:17:39:
77:f9:dd:06:f4:47:30:9f:7c:31:41:3a:7a:0c:5e:56:f4:0b:
f7:a3:d2:cb:3f:08:78:3d:71:69:de:65:43:09:8e:e4:af:fa:
73:84:e1:6d:d8:90:dd:63:db:cd:f9:9c:0d:c1:38:a5:59:ea:
8a:0b:7b:5f:b2:70:21:c6:cf:29:27:e8:05:68:ea:9c:13:e4:
e5:20:e0:07:42:fb:ed:8b:14:bf:57:55:e5:e3:01:56:13:a0:
4a:b7:0d:fe:d5:26:75:93:a5:2d:c1:e7:5e:e6:42:25:6c:b1:
e9:81:2f:4d:77:d7:06:8c:75:63:37:7a:87:82:f2:2b:bb:41:
fb:5c:08:55:8f:1b:8d:47:fa:9c:5c:5c:a7:64:61:85:79:e9:
70:81:42:88:c5:7e:d8:01:4d:09:e3:db:6b:2d:59:5a:cc:ef:
db:3f:a2:46:65:73:52:58:43:ce:8a:f9:79:ad:0d:fe:bd:3c:
6e:d1:ef:ef
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICKPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTQ1MTcxMTAvBgNVBAUTKDY3NUYzQkExRjk2QTlFMUVDMkIwMTM3NjYyQzc1NERC
MUQxRTAwNzMwHhcNMjUwNDEyMTUzNDAxWhcNMjUwNDE5MTUzNDAxWjAYMRYwFAYD
VQQDEw02N2ZhODdlOS05MzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAs61kG56P38yAZ4Boowqz4fkp7bY3zCGynu9EX2pgDp2QbuU8VqSgZeK92q4w
vmgkY3jsLqeT7Eizg6s+6xP04P+cEm3h79RBfuSNf5fUxW7u7MCOYihRlA7fAI/2
ayFoNEWwgYIerfv7H34bxUNQHpH4U4aj/e4SiNcsmx/Id83hzmEue0crQq8nTwrH
/Ej2vzcmnYk2OBPhs+AB3rv1Jj9OY93bhMnffP2TM67C0Uf79oK3YQIussL8WuSv
VXnarO2ZHH7QiO8om5uqTouHJuxj+9kKdItMdqvfZ7yC9ZQurbmzbOn7KFl1Cj6x
Nxq2dkyjd7gAt6aLYQ1QjeVRcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3DTRbw
xxnmxXIcdZ5Abkgcc6HjMB8GA1UdIwQYMBaAFGdfO6H5ap4ewrATdmLHVNsdHgBz
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDUxNy80MDZGOTA0QzZB
RTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5oN0NzQk4yWXNkVTJ4MGVB
SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1oxODdvZmxxbmg3Q3NCTjJZc2RVMngwZUFITS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
NDUxNy80MDZGOTA0QzZBRTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5o
N0NzQk4yWXNkVTJ4MGVBSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAQct0X1r354EbMqMEkS/yn3PbHINgTIDaeKKJGgengifEZ4crK26xv
dZTDphDYqgrUiBm9z5/tx8Em9+5yuQWnuxVGgQmzFzl3+d0G9Ecwn3wxQTp6DF5W
9Av3o9LLPwh4PXFp3mVDCY7kr/pzhOFt2JDdY9vN+ZwNwTilWeqKC3tfsnAhxs8p
J+gFaOqcE+TlIOAHQvvtixS/V1Xl4wFWE6BKtw3+1SZ1k6Utwede5kIlbLHpgS9N
d9cGjHVjN3qHgvIru0H7XAhVjxuNR/qcXFynZGGFeelwgUKIxX7YAU0J49trLVla
zO/bP6JGZXNSWEPOivl5rQ3+vTxu0e/v
-----END CERTIFICATE-----
Generated at Mon Apr 14 03:29:31 2025 by rpki-client