Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft
File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json)
Hash identifier: LGQHAtXl9bLNLQsuYf9tFXLzsjSdtJ+HcliQJFKJQUU=
Subject key identifier: AF:36:73:59:01:07:1A:C7:16:EE:F1:CE:16:78:89:35:E7:0F:9E:50
Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA
Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA
Certificate serial: 0B13
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft
Manifest number: 0B05
Signing time: Tue 08 Apr 2025 19:10:57 +0000
Manifest this update: Tue 08 Apr 2025 19:10:56 +0000
Manifest next update: Tue 15 Apr 2025 19:10:56 +0000
Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: uvn0ed1pox3u4HHriYJamNOS0BYsO3YHOTqfVfCaFaQ=)
2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: NJ+vu7BB1LSL5IyZI4sxWSXiQvL3uuiHK69WI9ypRDY=)
3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: 1Gen1/T5J9VcUP7yeBxePtjlwSEPjuywH9LIrIKtzGg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl
rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 19:10:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2835 (0xb13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B171C
Validity
Not Before: Apr 8 19:10:56 2025 GMT
Not After : Apr 15 19:10:56 2025 GMT
Subject: CN=67f574c1-131b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9f:ca:bd:3b:84:8a:6d:75:a0:8e:4f:5b:6e:
b4:54:29:a2:55:3a:24:13:27:30:34:72:89:a5:f8:
4b:98:54:2c:d5:f9:ab:4d:ff:cc:35:12:04:5f:e0:
cf:e1:19:d2:e6:71:da:cc:9f:64:8d:01:ea:a5:11:
0f:7a:58:6a:fd:51:58:09:0a:bb:31:b4:47:35:2a:
c2:85:40:40:8e:8f:2d:6b:ee:6f:8a:1d:e9:e9:c3:
60:ad:a3:67:1e:82:15:04:d1:64:40:52:1d:3c:83:
cf:e8:d9:cb:1f:eb:3b:17:42:a8:61:45:53:39:20:
bf:d9:85:3a:51:28:fb:b9:f3:f6:06:b4:27:24:60:
4a:1b:23:8c:ec:8e:93:27:f7:49:23:81:81:ad:33:
c5:0a:cc:c8:45:6d:f6:04:9a:8c:cf:8e:3e:c6:6b:
18:7f:8f:d3:46:cd:c3:f9:9f:2f:8e:b5:84:02:e3:
4a:5a:03:ca:d1:c3:8d:e5:d7:ca:80:f3:bd:2c:9d:
1b:fd:e9:08:aa:78:82:12:65:29:14:17:a6:8b:16:
46:3f:6f:02:45:04:b3:97:22:1f:49:0a:e4:fa:c1:
81:bf:59:78:76:6b:c7:1f:c3:eb:70:25:26:7e:e8:
6b:e9:f6:b4:09:d2:8b:62:2b:67:57:8e:0e:73:74:
5b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:36:73:59:01:07:1A:C7:16:EE:F1:CE:16:78:89:35:E7:0F:9E:50
X509v3 Authority Key Identifier:
keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
41:89:58:b3:67:2a:80:2b:75:a4:a8:bf:22:be:69:d8:03:98:
35:87:11:9a:94:86:80:bd:21:0d:93:67:af:89:93:bd:49:70:
ae:bf:a5:cd:bf:0c:9c:66:47:20:ed:2b:5c:01:08:37:94:bb:
27:6d:47:64:94:cb:5a:b9:83:bb:08:f1:33:bb:e8:14:62:12:
0f:12:46:45:cf:1b:e6:63:de:86:a9:b3:d9:66:c3:46:c6:0b:
f1:15:fe:e6:9d:08:f6:19:e6:1c:d0:dd:5c:1a:9b:c8:ba:c0:
8d:e3:8e:97:4d:32:9e:f8:05:c3:a1:59:9c:34:19:ee:d0:b1:
a8:ad:5a:80:bc:6d:d8:1d:ca:6c:db:5d:6b:cd:14:09:08:24:
1a:1d:e6:0a:9a:75:42:55:19:9d:9c:2b:b9:02:2a:b1:90:04:
78:5d:b5:5d:f3:db:14:b0:92:f0:2c:71:ee:d6:ee:8e:8b:b9:
ff:05:76:ac:32:1b:dc:9e:a1:ec:46:78:16:d0:d4:04:3f:53:
5a:45:b2:1b:2a:2d:85:bf:d4:68:66:8a:43:32:78:1a:6f:db:
15:a9:c9:bf:c0:1c:e8:1b:52:5a:86:e9:52:cb:39:6b:22:f0:
a4:09:c3:8b:9a:b3:92:df:53:e9:e9:8d:95:1e:8b:a6:14:90:
31:7f:80:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 09:33:26 2025 by rpki-client