Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft
File: nTRubbOcPTMMGv-UBg4VBV_07Rw.mft (raw, json)
Hash identifier: e9InwGcZqo3vYAz+CIskKDMRUg/dB1N/8rIYiq/uOzc=
Subject key identifier: CE:C4:05:D7:13:BF:18:87:F5:F2:27:65:09:B5:0C:C4:88:1E:5F:A3
Authority key identifier: 9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C
Certificate issuer: /CN=A91C2168/serialNumber=9D346E6DB39C3D330C1AFF94060E15055FF4ED1C
Certificate serial: 348B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft
Manifest number: 347E
Signing time: Tue 08 Apr 2025 14:44:01 +0000
Manifest this update: Tue 08 Apr 2025 14:44:01 +0000
Manifest next update: Tue 15 Apr 2025 14:44:01 +0000
Files and hashes: 1: nTRubbOcPTMMGv-UBg4VBV_07Rw.crl (hash: 1vUiTpisQkzS1AbyowVQTaPILnVa0aIjL8VOleAxvfA=)
2: 2251B910AC7411EBBE196180C4F9AE02.roa (hash: w2iJK14g08nIllF1mgyk0i3/HIWF7w73TP3S/nc8620=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl
rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 14:44:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13451 (0x348b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C2168
Validity
Not Before: Apr 8 14:44:01 2025 GMT
Not After : Apr 15 14:44:01 2025 GMT
Subject: CN=67f53631-8ba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:cc:61:a9:75:06:c2:ff:e9:3e:ee:29:96:6a:
fc:db:b6:56:53:2b:a2:93:39:d4:3d:87:e7:46:8f:
74:7d:4e:93:e6:76:17:1f:a6:f1:d8:58:7a:89:a3:
06:62:14:25:eb:3d:f0:97:b0:99:ff:c4:23:fc:de:
62:14:6e:3c:10:71:f1:af:71:4b:8a:3a:d0:6d:af:
8d:54:69:d3:49:dc:ab:9b:8a:f5:02:db:69:ac:3a:
97:18:0d:a4:0f:0c:c3:7d:fe:fc:01:c3:b3:ff:7e:
cd:30:5d:79:06:1c:09:d9:14:fa:56:7b:b2:0d:21:
bc:ed:a2:39:1a:39:52:79:54:4b:41:70:57:14:59:
f7:ef:3f:0b:92:b1:5e:61:14:b7:a8:9c:c0:a2:6f:
db:b2:5c:75:a5:fa:9a:45:21:6e:f7:78:16:c2:27:
66:1d:56:e3:51:07:3b:d3:8b:c2:3c:83:80:01:37:
79:79:05:01:2e:0c:18:97:91:5c:90:12:1d:90:39:
56:20:b4:ad:71:03:ea:f9:1b:58:5b:42:f2:c1:d2:
da:a9:02:04:6d:11:47:f1:11:33:2d:a8:4d:d5:00:
7d:b6:6a:f1:b4:74:e3:7e:5a:68:0c:24:bc:48:74:
9f:08:d4:48:5f:ed:39:ec:00:f3:32:18:be:65:f9:
2a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C4:05:D7:13:BF:18:87:F5:F2:27:65:09:B5:0C:C4:88:1E:5F:A3
X509v3 Authority Key Identifier:
keyid:9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
28:fd:ad:ae:10:6b:cc:70:d6:54:e6:6b:1c:e6:60:f8:fe:c5:
0e:52:ab:42:66:c2:47:65:5f:78:8d:72:e0:f6:ca:eb:ce:01:
42:1e:80:aa:31:81:c9:4a:a9:dd:1d:90:a6:44:f2:a3:4c:23:
02:12:81:02:79:4a:a9:a0:47:59:c1:89:f7:41:24:5c:5f:bb:
0e:f5:4c:ee:d3:82:c4:0d:16:6e:ce:d5:5e:b3:89:87:0b:0c:
af:44:14:4a:a7:e0:a4:19:52:83:e4:c3:40:1d:63:77:b6:f6:
c1:a2:60:71:32:8d:32:cf:df:d6:fd:ab:76:b6:d1:11:e6:91:
ef:31:f0:53:c0:5b:4c:c3:25:f4:fe:a7:bd:ba:4d:25:09:63:
a0:4e:b6:96:e3:17:f5:d2:57:9e:5e:5a:1f:53:f1:f7:c6:cb:
49:a9:d1:7f:0b:f0:6e:c0:ac:e6:6a:fc:40:67:f6:25:29:02:
61:0d:8d:97:29:b7:67:25:8e:68:08:f5:ab:5a:b7:60:b8:e2:
bb:1d:85:e3:a0:e1:7d:db:fd:85:d1:db:8c:55:12:aa:6c:f0:
51:f9:c9:e8:fb:ef:e5:cf:0b:86:cf:2c:a2:54:53:a7:10:ae:
be:7d:2d:55:30:42:9e:d6:6e:c3:ef:58:81:a1:50:1e:ae:5a:
5d:de:ba:c2
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICNIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzIxNjgxMTAvBgNVBAUTKDlEMzQ2RTZEQjM5QzNEMzMwQzFBRkY5NDA2MEUxNTA1
NUZGNEVEMUMwHhcNMjUwNDA4MTQ0NDAxWhcNMjUwNDE1MTQ0NDAxWjAYMRYwFAYD
VQQDEw02N2Y1MzYzMS04YmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2cxhqXUGwv/pPu4plmr827ZWUyuikznUPYfnRo90fU6T5nYXH6bx2Fh6iaMG
YhQl6z3wl7CZ/8Qj/N5iFG48EHHxr3FLijrQba+NVGnTSdyrm4r1AttprDqXGA2k
DwzDff78AcOz/37NMF15BhwJ2RT6VnuyDSG87aI5GjlSeVRLQXBXFFn37z8LkrFe
YRS3qJzAom/bslx1pfqaRSFu93gWwidmHVbjUQc704vCPIOAATd5eQUBLgwYl5Fc
kBIdkDlWILStcQPq+RtYW0LywdLaqQIEbRFH8REzLahN1QB9tmrxtHTjflpoDCS8
SHSfCNRIX+057ADzMhi+ZfkqZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7EBdcT
vxiH9fInZQm1DMSIHl+jMB8GA1UdIwQYMBaAFJ00bm2znD0zDBr/lAYOFQVf9O0c
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjE2OC8yNEM2MkMwNjFE
OTExMUUyOTI0NDMwRjMwOEIwMkNEMi9uVFJ1YmJPY1BUTU1Hdi1VQmc0VkJWXzA3
UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL25UUnViYk9jUFRNTUd2LVVCZzRWQlZfMDdSdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
MjE2OC8yNEM2MkMwNjFEOTExMUUyOTI0NDMwRjMwOEIwMkNEMi9uVFJ1YmJPY1BU
TU1Hdi1VQmc0VkJWXzA3UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAo/a2uEGvMcNZU5msc5mD4/sUOUqtCZsJHZV94jXLg9srrzgFCHoCq
MYHJSqndHZCmRPKjTCMCEoECeUqpoEdZwYn3QSRcX7sO9Uzu04LEDRZuztVes4mH
CwyvRBRKp+CkGVKD5MNAHWN3tvbBomBxMo0yz9/W/at2ttER5pHvMfBTwFtMwyX0
/qe9uk0lCWOgTraW4xf10leeXlofU/H3xstJqdF/C/BuwKzmavxAZ/YlKQJhDY2X
KbdnJY5oCPWrWrdguOK7HYXjoOF92/2F0duMVRKqbPBR+cno++/lzwuGzyyiVFOn
EK6+fS1VMEKe1m7D71iBoVAerlpd3rrC
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:45:25 2025 by rpki-client