Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft
File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json)
Hash identifier: 0rEriShyWGIaqGvJmPsnr5ve0PZjNFN4q8IO/PoPwVY=
Subject key identifier: C7:9C:11:A0:0E:F8:DF:AF:7E:F4:A1:5F:D2:1A:8F:F1:AC:ED:A1:A1
Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51
Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51
Certificate serial: 0BA7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft
Manifest number: 0BA7
Signing time: Tue 08 Apr 2025 18:50:01 +0000
Manifest this update: Tue 08 Apr 2025 18:50:00 +0000
Manifest next update: Tue 15 Apr 2025 18:50:00 +0000
Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: 0UFn+sT/TwFyS54ZVJQjUoL83ntGpNY67EzKFV9V+9A=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl
rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 18:50:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2983 (0xba7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AB457
Validity
Not Before: Apr 8 18:50:00 2025 GMT
Not After : Apr 15 18:50:00 2025 GMT
Subject: CN=67f56fd9-db39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:91:6b:80:42:95:1b:09:75:6d:b2:8a:22:ea:
3f:2a:a5:b9:f9:a2:3e:db:71:31:0a:ec:0a:4d:ea:
cb:e1:5e:e7:d3:cc:f2:8e:fa:42:e3:ac:8a:f1:c5:
6f:dc:bb:41:ad:c1:7c:92:77:9c:ce:1f:80:4c:23:
48:3e:14:51:66:dc:29:ce:3e:a5:0a:af:61:c1:88:
48:61:4f:41:8d:d8:bb:ed:c8:49:93:7d:9f:99:2f:
11:e9:61:57:6c:14:fe:9f:c0:81:65:05:aa:67:c0:
7f:af:67:c4:38:de:3f:d3:25:a2:57:79:05:e0:02:
9e:06:81:f5:57:08:94:90:da:8c:96:99:3c:ff:db:
a9:e8:8d:b7:0d:18:83:6e:87:15:a6:7e:77:ba:9a:
bc:65:f1:ae:b7:59:86:b5:60:bb:99:db:a0:1e:97:
3a:4a:a6:02:ca:9e:7d:d2:c9:98:c4:50:d6:02:37:
20:bf:46:d7:10:7d:8f:6d:af:0d:cd:d2:12:25:85:
86:9d:63:1b:d5:b4:d0:51:01:67:30:c1:2e:fa:d1:
92:c7:c1:62:1d:c9:ea:4f:41:90:4f:7d:62:1c:e5:
f2:c6:05:c0:38:72:62:1d:62:84:21:dc:3a:db:ca:
fb:e4:35:86:b6:3d:d4:d6:de:0d:d8:8e:8b:d1:d4:
2c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:9C:11:A0:0E:F8:DF:AF:7E:F4:A1:5F:D2:1A:8F:F1:AC:ED:A1:A1
X509v3 Authority Key Identifier:
keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
96:d2:a0:44:e6:df:3e:ee:fd:f0:62:da:e5:55:98:ad:9a:89:
a5:88:ba:86:71:ad:c1:d3:65:5f:a6:86:90:e6:c9:6d:fa:1a:
2d:92:98:a9:2d:2c:17:d0:32:cb:bb:4a:3d:c7:62:77:7d:8e:
ef:56:b5:aa:d2:55:17:ba:9e:10:ca:86:f9:11:9c:b8:50:44:
39:2f:a2:48:e8:f2:45:e6:51:c7:61:86:36:ca:f6:1f:76:a0:
1f:20:6c:d9:71:6b:de:00:1c:3d:84:6f:75:d5:2d:74:dd:5c:
de:49:19:ab:76:73:74:1c:e0:02:dc:fe:f0:43:27:72:56:f0:
e1:74:79:62:a8:29:a8:e8:0e:f6:8f:a7:20:bd:b3:8a:19:5b:
13:07:8c:36:27:a2:e6:31:e4:6b:33:8a:7e:9e:98:47:e8:ce:
b6:2d:52:4b:b7:3b:ca:60:9d:21:e8:2c:ce:b3:2c:b2:41:98:
ff:bd:09:da:80:ec:c7:f6:05:ad:c7:04:7a:f7:20:3d:84:1d:
6b:52:b0:6b:98:b0:99:7d:aa:67:17:65:02:93:6e:f3:66:eb:
03:eb:0f:00:04:56:fe:ea:2c:85:45:ed:40:4a:45:eb:f6:43:
2d:07:83:0c:2a:66:44:03:f0:17:54:c3:43:e6:a5:ba:e5:cd:
9e:b2:62:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 15:49:27 2025 by rpki-client