Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft
File: _jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft (raw, json)
Hash identifier: DgKsgxBE92wsv1lsD3Zrp8d6SOylDc/HdvYvBZEa8LQ=
Subject key identifier: 49:A3:2E:38:8F:4F:7D:14:0B:CF:87:05:67:47:C3:20:3D:54:12:DC
Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53
Certificate issuer: /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053
Certificate serial: 1651
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft
Manifest number: 1622
Signing time: Tue 08 Apr 2025 16:47:25 +0000
Manifest this update: Tue 08 Apr 2025 16:47:25 +0000
Manifest next update: Tue 15 Apr 2025 16:47:24 +0000
Files and hashes: 1: _jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl (hash: m4r3nlL7fIb/w1ssFpfTiAVycN1hlY0ZRn7aksVcmgA=)
2: 7BC4E6DE322C11EFBC879F31C4F9AE02.roa (hash: j99DqXIlX/DsX6CAhLDODI4Li/SA5fMocxzYjvHfoI0=)
3: 86BBD3DE994C11EC82BA3978C4F9AE02.roa (hash: 8Wwh2LGsfMleJz4kPXncR947wixaVvdi2YpWJ6WAnNA=)
4: 87D45318994C11EC82BA3978C4F9AE02.roa (hash: /AMe5fWdVkNbiDNAX3rxonqHX2GWCAFeTm3WBDEgams=)
5: 1AD64F18D23411EAAFD6AA3AC4F9AE02.roa (hash: C40oyBiTxjQqMGzoY7zwrfSLtJR/TE6dpDn0DYUL1uI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl
rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 16:47:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5713 (0x1651)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B1185
Validity
Not Before: Apr 8 16:47:25 2025 GMT
Not After : Apr 15 16:47:24 2025 GMT
Subject: CN=67f5531d-9979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:63:97:dd:cb:be:f3:97:96:3a:72:82:e0:d9:
a6:7a:28:3e:38:b3:4e:ff:d1:aa:97:05:02:c5:d1:
ac:08:58:db:19:1f:8f:0c:a4:ad:c4:c5:25:9e:af:
8f:06:8f:4a:3f:44:5a:cf:b4:5e:28:39:6d:f9:32:
81:3f:0a:39:e8:15:2c:0b:7e:a7:cd:d6:af:7b:f7:
13:a1:fe:a3:8a:6d:53:65:a8:b8:42:ee:ea:e4:90:
b2:c7:24:46:b2:bf:62:51:4e:71:44:cc:96:c0:96:
66:f8:2d:2c:d2:42:66:76:fd:25:2e:d7:63:84:4d:
bb:cf:70:34:28:13:07:9b:f4:af:94:7b:e3:67:e0:
7d:da:e2:2d:cd:ed:e7:27:ce:ef:e0:83:a1:a5:3b:
12:84:18:66:1f:06:c3:fe:31:a6:ac:69:3d:b5:58:
a7:b2:6d:cc:24:56:ff:64:93:ad:07:f1:9a:e4:9d:
75:30:d9:93:78:5f:a2:8a:26:26:a9:57:31:a5:c0:
ee:28:3a:13:b6:92:73:35:80:2f:28:67:f2:62:e5:
2e:69:5a:76:85:22:fd:7b:dd:1a:2a:31:2d:df:d2:
27:cf:f7:0e:a2:ba:78:03:26:5c:43:96:c4:db:dc:
d7:e5:6d:29:86:99:d5:fe:bd:50:8e:ad:af:88:7d:
7f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:A3:2E:38:8F:4F:7D:14:0B:CF:87:05:67:47:C3:20:3D:54:12:DC
X509v3 Authority Key Identifier:
keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
34:83:9f:91:63:51:f8:8c:14:65:a0:88:0f:64:10:5f:50:0a:
38:bb:1f:cf:07:c0:db:ec:69:17:e6:fa:a2:63:5b:4b:e1:55:
f0:86:2d:32:7f:af:39:b6:62:df:7b:26:0d:64:25:04:f0:dd:
2b:fd:54:d9:c7:04:75:ae:ef:77:ed:f2:1b:84:8f:b5:4d:ea:
9b:f9:d3:57:a8:3f:5a:ee:1c:1a:06:7b:25:ac:26:67:57:22:
a7:1c:6a:a7:bc:01:6a:20:29:7f:10:88:e3:13:c4:79:59:4a:
c9:85:ef:5f:a7:a9:9a:0d:8f:f0:c5:89:c1:94:bd:ed:68:0a:
a9:2b:5b:f7:ff:53:79:bd:f1:7d:29:cc:c2:8d:17:7e:ea:4a:
d3:01:48:ad:ab:ac:e6:4d:81:a4:ff:cd:74:79:6e:08:3c:61:
a7:3a:f9:f8:35:0a:49:fd:44:c4:43:de:f5:ad:be:6c:4e:56:
3b:88:d0:b1:f3:42:0c:66:4e:1c:68:bd:c0:05:ec:f7:e3:a5:
99:07:b6:17:e2:e0:06:bb:a5:d2:2a:69:dc:bd:61:db:bb:ff:
75:91:be:8d:0b:e2:ae:e6:01:98:4d:51:fd:45:ed:19:e3:18:
ae:af:c2:73:b3:de:b3:e5:99:0b:3d:fc:84:4a:20:4b:c7:45:
ce:03:8c:03
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICFlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjExODUxMTAvBgNVBAUTKEZFM0NEMzdDRUMwRTM4MjMwN0I0RjlENUZGRDU3RTk3
RjEyMUYwNTMwHhcNMjUwNDA4MTY0NzI1WhcNMjUwNDE1MTY0NzI0WjAYMRYwFAYD
VQQDEw02N2Y1NTMxZC05OTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3GOX3cu+85eWOnKC4Nmmeig+OLNO/9GqlwUCxdGsCFjbGR+PDKStxMUlnq+P
Bo9KP0Raz7ReKDlt+TKBPwo56BUsC36nzdave/cTof6jim1TZai4Qu7q5JCyxyRG
sr9iUU5xRMyWwJZm+C0s0kJmdv0lLtdjhE27z3A0KBMHm/SvlHvjZ+B92uItze3n
J87v4IOhpTsShBhmHwbD/jGmrGk9tVinsm3MJFb/ZJOtB/Ga5J11MNmTeF+iiiYm
qVcxpcDuKDoTtpJzNYAvKGfyYuUuaVp2hSL9e90aKjEt39Inz/cOorp4AyZcQ5bE
29zX5W0phpnV/r1Qjq2viH1/7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmjLjiP
T30UC8+HBWdHwyA9VBLcMB8GA1UdIwQYMBaAFP4803zsDjgjB7T51f/VfpfxIfBT
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTE4NS8zRUE5REQzQTE2
MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09DTUh0UG5WXzlWLWxfRWg4
Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL19qelRmT3dPT0NNSHRQblZfOVYtbF9FaDhGTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
MTE4NS8zRUE5REQzQTE2MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09D
TUh0UG5WXzlWLWxfRWg4Rk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQA0g5+RY1H4jBRloIgPZBBfUAo4ux/PB8Db7GkX5vqiY1tL4VXwhi0y
f685tmLfeyYNZCUE8N0r/VTZxwR1ru937fIbhI+1Teqb+dNXqD9a7hwaBnslrCZn
VyKnHGqnvAFqICl/EIjjE8R5WUrJhe9fp6maDY/wxYnBlL3taAqpK1v3/1N5vfF9
KczCjRd+6krTAUitq6zmTYGk/810eW4IPGGnOvn4NQpJ/UTEQ971rb5sTlY7iNCx
80IMZk4caL3ABez346WZB7YX4uAGu6XSKmncvWHbu/91kb6NC+Ku5gGYTVH9Re0Z
4xiur8Jzs96z5ZkLPfyESiBLx0XOA4wD
-----END CERTIFICATE-----
Generated at Thu Apr 10 19:38:35 2025 by rpki-client