Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft
File: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft (raw, json)
Hash identifier: aaKKnblt6l8bERtN2oUEgdNsSRyXV5ZRZH7m8a2TiTE=
Subject key identifier: 38:94:72:82:84:AA:1C:08:1C:71:69:81:78:6D:E1:35:1B:FC:32:00
Authority key identifier: 66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A
Certificate issuer: /CN=A91C146D/serialNumber=664E59A000B91E72F803E6D86841154C8056B88A
Certificate serial: 1D
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft
Manifest number: 17
Signing time: Sun 13 Apr 2025 06:47:39 +0000
Manifest this update: Sun 13 Apr 2025 06:47:39 +0000
Manifest next update: Sun 20 Apr 2025 06:47:39 +0000
Files and hashes: 1: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl (hash: 6HKrd+g4fyg6u/m5t7fOI001IageGgcRjJH1NP8i6og=)
2: 992A7358004211F0AC90656CC4F9AE02.roa (hash: 6uK19EDHQqPyaVVXXtHQJXfGGnOJLngyIEFvwQHYfKo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl
rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 02:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29 (0x1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C146D, serialNumber=664E59A000B91E72F803E6D86841154C8056B88A
Validity
Not Before: Apr 13 06:47:39 2025 GMT
Not After : Apr 20 06:47:39 2025 GMT
Subject: CN=67fb5e0b-69f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c0:bc:e4:b6:14:28:66:42:2f:63:40:4e:89:
d0:a8:50:2e:52:41:36:f6:84:df:f1:04:c1:a8:04:
9a:09:4b:7f:4d:c8:10:c5:ea:98:34:1c:45:4a:84:
3e:f5:ed:97:41:12:9d:bf:89:02:5e:48:be:44:70:
d3:9e:c8:c4:77:0d:34:01:80:f9:66:96:ae:b8:14:
cb:2a:ef:75:ca:4f:b9:e1:33:af:c3:49:b2:77:6f:
b5:4a:24:b5:48:48:69:2e:64:ff:d0:18:f3:f0:ac:
a8:c8:35:9e:e7:10:fb:fd:21:20:38:29:48:c8:bf:
d1:68:65:b5:f0:e5:22:17:26:a7:76:cc:b0:48:e4:
05:c2:5e:09:ce:98:ad:22:20:d3:74:49:8f:63:a4:
31:fb:e3:d0:f8:74:75:0a:4e:bb:47:a4:ee:53:36:
03:0f:9d:1e:41:e9:e5:8e:5a:7c:dd:09:7f:78:e3:
19:c7:5c:6a:a4:62:89:18:73:40:ed:47:6e:c5:f3:
4b:87:cf:96:4e:cc:d9:82:35:b8:13:4c:00:91:a2:
7c:69:06:86:1a:99:e8:59:5c:97:7f:9a:41:bb:dc:
dc:e0:c6:a5:e1:ec:44:32:4d:d6:fa:04:1c:76:32:
49:7a:6f:92:94:19:39:c0:43:bf:25:ad:dc:f1:32:
5a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:94:72:82:84:AA:1C:08:1C:71:69:81:78:6D:E1:35:1B:FC:32:00
X509v3 Authority Key Identifier:
keyid:66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
51:21:17:69:fa:f4:70:6a:3a:fe:fd:89:4f:64:42:7f:77:e3:
a2:a7:c5:96:ef:7c:17:40:5c:ed:67:68:ed:e4:2d:ff:17:69:
58:90:eb:78:5b:62:68:aa:a6:3c:94:6d:ce:3e:fd:67:9e:55:
88:fc:d2:aa:42:91:80:6d:75:4c:b0:be:7d:81:b8:a9:a1:3a:
97:09:98:a1:b5:34:ff:86:a2:ed:3f:06:9d:e2:d9:a2:e5:73:
bb:21:3d:84:e1:99:1d:3e:a2:d4:2c:f5:f1:d7:86:90:56:1d:
4d:24:29:f8:46:93:f6:f0:33:c9:f9:82:4e:23:4f:36:1c:f8:
8e:11:ca:3a:40:16:97:d1:66:65:e1:e0:87:42:ee:1d:8c:63:
ef:b2:b2:55:b4:f1:e9:c9:a1:b6:66:0c:05:40:ce:ce:df:76:
d4:b8:02:6a:88:95:91:63:2b:f8:3f:61:7a:a8:c3:e8:bc:b4:
05:19:4c:9b:32:b4:24:bc:38:95:6e:76:0e:1b:1a:fa:0d:84:
8e:55:7c:58:da:d2:d1:aa:36:1e:51:90:72:34:74:8b:47:89:
74:65:d4:7c:8f:0a:e7:a4:d3:a6:97:3b:97:bf:f6:72:08:8f:
57:7a:f0:2d:78:43:31:be:52:41:09:2e:3f:bf:a3:7f:6f:47:
e4:7b:c4:ae
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD
MTQ2RDExMC8GA1UEBRMoNjY0RTU5QTAwMEI5MUU3MkY4MDNFNkQ4Njg0MTE1NEM4
MDU2Qjg4QTAeFw0yNTA0MTMwNjQ3MzlaFw0yNTA0MjAwNjQ3MzlaMBgxFjAUBgNV
BAMTDTY3ZmI1ZTBiLTY5ZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDRwLzkthQoZkIvY0BOidCoUC5SQTb2hN/xBMGoBJoJS39NyBDF6pg0HEVKhD71
7ZdBEp2/iQJeSL5EcNOeyMR3DTQBgPlmlq64FMsq73XKT7nhM6/DSbJ3b7VKJLVI
SGkuZP/QGPPwrKjINZ7nEPv9ISA4KUjIv9FoZbXw5SIXJqd2zLBI5AXCXgnOmK0i
INN0SY9jpDH749D4dHUKTrtHpO5TNgMPnR5B6eWOWnzdCX944xnHXGqkYokYc0Dt
R27F80uHz5ZOzNmCNbgTTACRonxpBoYamehZXJd/mkG73NzgxqXh7EQyTdb6BBx2
Mkl6b5KUGTnAQ78lrdzxMlqBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOJRygoSq
HAgccWmBeG3hNRv8MgAwHwYDVR0jBBgwFoAUZk5ZoAC5HnL4A+bYaEEVTIBWuIow
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNDZEL0VDQjAwQjQyMDAz
NzExRjBCQkQ3MjQ3NUM0RjlBRTAyL1prNVpvQUM1SG5MNEEtYllhRUVWVElCV3VJ
by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG
RDFGRjIvWms1Wm9BQzVIbkw0QS1iWWFFRVZUSUJXdUlvLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx
NDZEL0VDQjAwQjQyMDAzNzExRjBCQkQ3MjQ3NUM0RjlBRTAyL1prNVpvQUM1SG5M
NEEtYllhRUVWVElCV3VJby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAFEhF2n69HBqOv79iU9kQn9346KnxZbvfBdAXO1naO3kLf8XaViQ63hb
YmiqpjyUbc4+/WeeVYj80qpCkYBtdUywvn2BuKmhOpcJmKG1NP+Gou0/Bp3i2aLl
c7shPYThmR0+otQs9fHXhpBWHU0kKfhGk/bwM8n5gk4jTzYc+I4RyjpAFpfRZmXh
4IdC7h2MY++yslW08enJobZmDAVAzs7fdtS4AmqIlZFjK/g/YXqow+i8tAUZTJsy
tCS8OJVudg4bGvoNhI5VfFja0tGqNh5RkHI0dItHiXRl1HyPCuek06aXO5e/9nII
j1d68C14QzG+UkEJLj+/o39vR+R7xK4=
-----END CERTIFICATE-----
Generated at Sun Apr 13 08:38:28 2025 by rpki-client