Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft
File: gcJvPY9BNuUZDMehfWr3IkIutm8.mft (raw, json)
Hash identifier: LZJ/tDd90CI09KMxeXk2cFreSW+6ONRTlYvH8JqzWxE=
Subject key identifier: F8:1F:E7:3A:DC:5D:99:3C:D9:1B:97:23:34:28:25:80:97:38:2C:27
Authority key identifier: 81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F
Certificate issuer: /CN=A91B8E70/serialNumber=81C26F3D8F4136E5190CC7A17D6AF722422EB66F
Certificate serial: 5F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft
Manifest number: 5C
Signing time: Thu 17 Apr 2025 05:58:02 +0000
Manifest this update: Thu 17 Apr 2025 05:58:01 +0000
Manifest next update: Thu 24 Apr 2025 05:58:01 +0000
Files and hashes: 1: gcJvPY9BNuUZDMehfWr3IkIutm8.crl (hash: AQQEnKGCupIzr2PkJDJcR8gCdKz3vLOzkDrNox5haTY=)
2: 20B2721A955B11EFBF0F5669C4F9AE02.roa (hash: llWki8GcmgjT7J8EXf4LrHE2T0htuGvxurz/78InPoE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.crl
rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 24 Apr 2025 04:20:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95 (0x5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B8E70, serialNumber=81C26F3D8F4136E5190CC7A17D6AF722422EB66F
Validity
Not Before: Apr 17 05:58:01 2025 GMT
Not After : Apr 24 05:58:01 2025 GMT
Subject: CN=68009869-d528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d5:da:c5:6d:8b:3e:d2:e7:14:31:99:fd:df:
af:ba:56:02:94:bf:7e:ea:c4:1a:de:84:73:b2:c2:
46:99:fb:ee:64:1d:40:fc:58:14:4c:cd:47:e6:8b:
4e:50:39:ac:3a:0a:d9:63:08:fa:19:7b:1b:a9:7f:
84:34:ec:1c:d5:23:44:d2:9b:b9:c3:ef:f1:31:bd:
c8:0d:3c:98:8e:fc:cc:ef:47:f6:27:4c:93:77:0f:
e6:39:4f:55:69:86:26:12:5e:a6:5e:9f:92:bd:4e:
41:e6:65:44:3e:8a:f1:85:d2:a2:b3:fe:77:be:89:
84:7d:6b:f8:cd:26:1f:30:a9:ce:90:82:c3:4f:50:
88:c1:90:4a:9e:38:83:46:1e:62:50:13:53:27:26:
ab:17:be:62:31:2b:60:e4:9f:97:22:01:86:61:4c:
44:69:c8:8a:c6:fa:1a:1c:e9:e0:ec:0d:b5:a3:49:
16:e1:1c:13:df:78:9c:72:9c:4e:85:8e:3a:e6:bc:
3a:b6:86:b2:ec:c4:a5:2c:d7:9f:f7:52:3a:98:2c:
22:37:3d:d2:dc:b0:02:b2:cf:08:f2:b5:da:6b:3c:
97:9d:58:fc:43:20:77:bc:86:a5:5e:bf:5e:37:e1:
74:06:b1:81:1f:1b:84:2b:e0:c4:d6:c1:72:12:c8:
8d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:1F:E7:3A:DC:5D:99:3C:D9:1B:97:23:34:28:25:80:97:38:2C:27
X509v3 Authority Key Identifier:
keyid:81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b3:b3:93:25:61:df:5c:54:18:b1:1e:75:a2:e6:41:fc:54:65:
69:10:2a:e8:91:f5:44:08:7c:26:44:f5:32:1a:36:a3:26:25:
e5:9b:df:a8:b6:49:eb:f1:17:cc:9e:89:11:80:1a:18:b1:03:
55:da:39:f4:f9:68:62:9c:0b:53:9d:6c:da:7e:d0:e4:f8:4e:
7b:21:34:44:6d:fc:64:cc:a3:c5:be:db:e6:f0:73:45:2d:4e:
66:b2:fe:43:e5:47:8b:64:a0:4f:92:c4:6f:6b:a7:7e:19:a1:
d4:95:54:72:4a:2f:8b:b1:4c:b5:0f:e7:bb:28:3e:b9:f1:f4:
69:75:82:8c:b0:98:05:3e:a5:79:9c:15:3a:ad:22:0d:34:3f:
77:a0:62:cd:db:9c:81:64:a6:b9:a0:aa:c4:55:37:35:82:a5:
c2:ed:ee:08:bf:78:65:58:9b:15:84:a6:b1:b0:91:a9:14:f3:
25:92:ac:b4:07:c6:07:3e:5b:10:c3:ba:bc:a5:ca:73:ef:d8:
91:4d:92:66:b5:1d:aa:e8:f3:bf:0c:a8:25:6b:47:4e:b6:33:
00:b0:61:9c:9d:f0:f2:ec:43:b2:ff:64:a0:1c:8b:21:03:13:
80:52:6f:d5:d7:33:cc:f1:d0:58:b3:ee:14:8b:de:38:5a:27:
5a:6f:a6:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 12:43:29 2025 by rpki-client