Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft
File: Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft (raw, json)
Hash identifier: 7S6RcJyV7q+8FHGGjLgvLxVp6d7mK+rJ+g8lktaoh/o=
Subject key identifier: 8D:1A:EE:B8:81:7A:7A:72:E6:57:08:7E:11:1C:E6:C9:E4:13:79:FA
Authority key identifier: 42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71
Certificate issuer: /CN=A91BE1BC/serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71
Certificate serial: 100E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft
Manifest number: 0FF9
Signing time: Sat 12 Apr 2025 17:23:04 +0000
Manifest this update: Sat 12 Apr 2025 17:23:03 +0000
Manifest next update: Sat 19 Apr 2025 17:23:03 +0000
Files and hashes: 1: Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl (hash: sSz9L/FAAPhZAwfcvO2jk37a97VegeF5o2qWYzDhh2w=)
2: 58FDD2EA10C211EA977E7378C4F9AE02.roa (hash: ZNHHRF85+z4Is0+eLKcAwqdcHd29O7GXMUqQBRk0J/w=)
3: 8C2FEEE0708811ED95A9DC75C4F9AE02.roa (hash: N1sk6XLj5xgH93qOL/I5QuR42p2aQ914FnE3hKMRCac=)
4: 8B7BDC02708811ED95A9DC75C4F9AE02.roa (hash: 9+Gtcwt1HizyRVjiJLATuFRgohbLeetX6+Rnfri/zZI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl
rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 17:23:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4110 (0x100e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BE1BC, serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71
Validity
Not Before: Apr 12 17:23:03 2025 GMT
Not After : Apr 19 17:23:03 2025 GMT
Subject: CN=67faa178-97f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:93:7a:51:c0:09:1e:51:24:2f:21:02:e1:8c:
c3:50:62:96:3c:99:2b:75:c2:51:94:12:bc:3f:da:
74:fa:ec:91:a5:f6:46:61:6b:25:c0:58:64:d4:e1:
64:24:51:92:bf:26:cd:40:18:d1:63:95:7c:ec:11:
8c:0d:3d:3d:8f:c3:f1:7c:e0:bd:32:8b:1e:21:de:
1d:cb:9a:8f:a3:1c:38:c7:d6:d8:5d:a2:3b:23:17:
1d:7e:b8:5a:d1:a9:37:95:20:b5:5a:f7:cf:38:70:
00:81:4a:1d:41:1d:1a:a7:8b:aa:d1:4f:bb:47:6b:
b7:43:02:4a:ec:8d:fb:06:bb:eb:d5:00:4a:c0:dd:
6f:cf:dc:34:d3:90:c7:4e:0d:26:b6:85:4d:af:0a:
75:46:d8:fa:cf:44:9f:a1:a1:72:5b:04:09:5d:b5:
dd:89:3c:0b:18:16:d9:8e:ee:62:3e:01:22:71:96:
55:fe:33:8e:c1:59:0e:88:fe:8f:66:c1:02:ee:c6:
3f:9d:40:2c:97:2b:4f:e2:2d:d1:57:a6:4c:a0:6d:
c9:08:09:5e:89:b3:bd:39:60:58:82:8b:4d:78:72:
d4:43:de:4c:46:c3:b4:ac:7f:9d:f6:73:bb:74:be:
55:d0:51:48:68:2d:1e:b9:ff:1d:c0:8d:c6:cc:a2:
51:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:1A:EE:B8:81:7A:7A:72:E6:57:08:7E:11:1C:E6:C9:E4:13:79:FA
X509v3 Authority Key Identifier:
keyid:42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
68:18:2b:27:97:22:42:eb:0d:5c:a4:ac:f7:ee:49:85:06:61:
f7:c1:ff:20:c4:7e:f8:4f:5b:6d:e3:e2:b8:69:59:3b:aa:d7:
bb:b6:8d:a9:55:bb:db:53:0e:b6:1d:38:61:ec:e3:05:e1:f8:
70:17:bb:27:c7:4b:58:a9:27:37:6d:d5:12:6e:17:16:d3:6e:
d2:7a:9c:87:3c:22:02:91:be:d9:1c:8c:aa:50:80:b2:97:dc:
9b:45:43:43:3e:b5:86:48:3c:6a:53:b3:35:27:09:bd:88:9b:
cf:7c:45:18:5a:67:bf:50:8a:9a:e1:46:64:b8:61:d4:06:ab:
8f:6b:08:c4:16:d0:41:51:52:d1:61:78:e4:e7:77:7d:0e:db:
2a:cb:91:5b:c0:77:dc:6a:06:66:5c:fd:0f:0a:e6:be:ea:a4:
a8:67:59:b5:30:7a:ea:c6:b5:bb:1b:0f:07:25:f2:c8:28:fa:
b5:08:e7:43:c5:e7:6d:53:e9:c5:e6:01:e1:ec:ba:28:75:55:
db:e8:fa:de:b1:de:05:09:68:bf:54:9d:d2:69:58:41:f0:80:
e8:ec:ca:04:09:62:12:e3:a4:3b:bb:45:78:cb:94:0c:57:a4:
ee:a9:99:af:5f:db:37:ba:e8:75:b3:4a:4c:01:64:bc:bb:62:
50:e5:c3:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 22:09:47 2025 by rpki-client