Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.mft
File: bAgKK6farJXU2TSIqQAVGuOlnfg.mft (raw, json)
Hash identifier: xIvU6uiRoXmABteLK/E9KzbZK1bF737qo5oHqGfnGDk=
Subject key identifier: D0:A0:77:5D:A0:7C:98:CC:25:40:7B:16:5B:9E:EC:9A:0E:4F:43:D7
Authority key identifier: 6C:08:0A:2B:A7:DA:AC:95:D4:D9:34:88:A9:00:15:1A:E3:A5:9D:F8
Certificate issuer: /CN=A91B74E8/serialNumber=6C080A2BA7DAAC95D4D93488A900151AE3A59DF8
Certificate serial: 0497
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAgKK6farJXU2TSIqQAVGuOlnfg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.mft
Manifest number: 047D
Signing time: Sat 12 Apr 2025 23:47:31 +0000
Manifest this update: Sat 12 Apr 2025 23:47:31 +0000
Manifest next update: Sat 19 Apr 2025 23:47:30 +0000
Files and hashes: 1: bAgKK6farJXU2TSIqQAVGuOlnfg.crl (hash: wyXq+emqqnuNK7SdLOMDv8y3FH1SziMfDc+5glmzaUw=)
2: 51FD604CE08711EFA06D6434C4F9AE02.roa (hash: doR4Y7/9fJwk4I8rzXTdhySC0dSmOygHgP5L2cehpw4=)
3: CCF1692CC85111EFAEC7B83FC4F9AE02.roa (hash: YNmXXeohBLlW644lJk9sQ0wTlKH8+7poI39Ki1Khyx0=)
4: AD5EE696C0A711EE97A2E984C4F9AE02.roa (hash: 8jti7DRjplfPDOWY06XiRJGfKvNLpJCDztlNbOL025A=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.crl
rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAgKK6farJXU2TSIqQAVGuOlnfg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 23:47:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1175 (0x497)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B74E8, serialNumber=6C080A2BA7DAAC95D4D93488A900151AE3A59DF8
Validity
Not Before: Apr 12 23:47:31 2025 GMT
Not After : Apr 19 23:47:30 2025 GMT
Subject: CN=67fafb93-a34b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:40:e8:9d:f2:15:38:f1:13:03:2f:38:b6:37:
36:a2:eb:56:1c:fb:bf:e9:c4:42:63:bd:cf:a8:db:
c1:e0:8b:d4:ae:e0:88:d7:e3:ff:31:63:c8:d3:49:
1f:3e:74:27:04:6a:eb:86:f8:48:35:c2:ba:e2:c1:
b7:ca:40:d6:22:05:20:f5:7a:15:44:f0:2b:14:91:
81:10:8b:cb:44:55:54:fa:d0:1a:5d:a5:75:54:05:
5b:8c:db:3c:b6:28:5d:84:30:81:ea:25:bb:be:bc:
f8:5c:1f:d2:07:76:66:74:44:82:83:03:d7:68:7a:
08:8e:a0:af:56:54:60:17:21:e3:7f:8e:84:cc:11:
71:84:01:60:64:1d:49:67:80:cd:52:51:6c:c9:f6:
39:3b:3b:61:03:03:fe:8b:67:bb:37:9f:4e:e5:16:
f4:04:4e:58:27:7d:1a:d5:62:2d:29:99:8d:98:c6:
27:6f:8b:81:49:48:7b:96:6a:c4:06:76:39:53:7d:
55:ac:6d:c4:5c:48:3c:4a:c9:9a:ba:dc:b5:e6:06:
9c:ac:cc:09:e0:78:69:25:ac:a8:f1:ec:fe:70:c0:
a9:0f:1a:c8:e0:8b:de:15:23:67:18:c2:91:3a:80:
e4:6b:87:fe:cd:53:7e:90:17:1a:18:2d:3a:53:12:
2a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:A0:77:5D:A0:7C:98:CC:25:40:7B:16:5B:9E:EC:9A:0E:4F:43:D7
X509v3 Authority Key Identifier:
keyid:6C:08:0A:2B:A7:DA:AC:95:D4:D9:34:88:A9:00:15:1A:E3:A5:9D:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAgKK6farJXU2TSIqQAVGuOlnfg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0e:84:2a:d5:ca:27:ad:ba:ea:34:89:24:9b:8f:05:3d:24:84:
a9:59:d3:a8:ac:79:45:05:04:1c:ec:f2:d0:f6:66:e2:08:52:
fd:41:f6:f2:43:91:75:e2:42:de:28:43:3d:bc:6f:65:e1:e9:
57:b2:1b:57:b3:c1:4f:9f:0a:e7:8f:61:03:c5:f4:8c:aa:6c:
8a:95:a1:77:f8:4a:7c:95:c3:aa:ee:22:47:89:05:08:69:4d:
fb:b1:ad:5e:85:89:c9:5c:08:0e:ef:84:89:ee:0a:82:f0:9b:
c9:8c:68:98:71:40:3b:74:33:25:1b:69:01:54:81:41:ba:10:
7c:11:8a:59:fd:90:c6:f3:77:c3:0b:b0:a6:44:19:22:22:12:
ef:79:8a:fd:46:b1:41:0b:3c:31:d2:71:b3:71:e8:f3:80:47:
5f:94:0a:bd:fb:ad:4c:e3:c0:04:61:95:06:be:27:87:9d:44:
64:0e:1d:af:fa:36:9d:99:92:bf:f7:c0:17:c3:cf:d2:63:28:
29:94:cf:63:20:fa:73:94:66:3c:aa:09:fb:f4:89:b4:db:6e:
d1:8c:d5:f4:23:67:50:b3:37:d3:ce:07:a7:ba:21:2f:a9:c5:
1e:8c:eb:3b:01:53:6b:4d:5b:f2:0f:d7:a6:d2:d9:47:a4:9e:
37:97:98:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 19:49:44 2025 by rpki-client