Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json)
Hash identifier: pnoE0LFWwC2jSlRVCWNMw3tukHLl1HlzwHx+bTRi/pM=
Subject key identifier: B6:50:9F:2E:27:A2:2E:AC:A4:CA:AC:D5:78:95:AF:47:57:81:03:25
Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91
Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91
Certificate serial: 7A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
Manifest number: 79
Signing time: Sun 13 Apr 2025 05:29:45 +0000
Manifest this update: Sun 13 Apr 2025 05:29:45 +0000
Manifest next update: Sun 20 Apr 2025 05:29:45 +0000
Files and hashes: 1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: /+RNBw48vj7HWovCPECu0Ou0vXE0wpjUCGOxv+PPeMs=)
2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: 3rKNJDDfmaWD0FlSs2li9ybksdVlO8MQocN7u3VEcT8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl
rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 05:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122 (0x7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91
Validity
Not Before: Apr 13 05:29:45 2025 GMT
Not After : Apr 20 05:29:45 2025 GMT
Subject: CN=67fb4bc9-9b1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:15:71:c4:c3:d7:42:c7:b3:79:99:19:83:57:
ee:ed:42:55:c8:6b:e5:b3:da:72:70:97:23:8a:3c:
f7:08:6a:16:4e:86:74:07:89:71:91:d0:90:bd:df:
ac:bd:5d:2d:54:37:9a:d2:53:de:95:06:02:4b:cc:
5b:59:9e:2a:da:7b:47:49:0b:48:9f:ce:2c:d9:9e:
63:2a:e8:e2:4b:fa:a6:10:cc:88:0a:ae:bf:3d:8c:
e1:20:1a:54:20:d6:a1:d1:8b:9a:7d:3d:16:d9:30:
08:35:d5:66:d9:c1:75:c9:7f:2a:d2:12:14:52:ed:
ee:ca:45:5a:dd:95:23:fa:20:48:21:a3:c5:83:03:
d7:5f:39:9f:14:67:1f:fd:8d:84:b0:52:65:46:ca:
4c:dc:60:5d:bd:7e:97:74:fd:93:82:ab:90:ca:84:
c8:cc:4e:6d:bd:ee:bf:48:e6:15:45:7e:31:c1:04:
d9:cd:95:73:7c:7a:df:61:01:b5:b3:e0:b4:69:1d:
0a:61:6a:bd:59:85:95:13:50:74:85:d9:3e:f1:0a:
10:a4:97:e1:16:8d:28:40:6e:7e:1b:5d:03:d5:b7:
5e:63:67:84:f9:94:cd:58:9b:c2:60:d4:21:24:9f:
75:2a:dc:de:c2:e9:24:f7:11:0c:69:6b:00:73:77:
6a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:50:9F:2E:27:A2:2E:AC:A4:CA:AC:D5:78:95:AF:47:57:81:03:25
X509v3 Authority Key Identifier:
keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5d:b0:87:e3:fd:69:d5:e9:6d:1e:c7:09:f5:62:33:53:a7:1e:
62:5a:27:b2:73:63:ae:fd:6a:10:d4:a0:4f:74:79:3e:a8:9c:
b8:1b:0a:d2:ed:47:8e:5d:02:7e:8d:87:6d:10:69:96:d1:73:
34:f0:47:12:72:34:d3:a1:e2:f7:f1:99:6d:70:6b:97:d4:e4:
c6:54:11:e9:1b:12:1b:91:bb:ab:30:81:2c:9a:ab:5f:7c:45:
c4:46:50:14:b1:48:88:1d:75:60:cc:09:c8:83:99:b5:bc:73:
c9:5a:85:c5:fb:17:4e:f3:6c:b8:2a:5f:3e:37:90:d2:9b:7f:
98:0b:6c:32:74:d2:59:fd:34:eb:c2:b7:af:17:ef:32:57:20:
89:ee:dd:fa:c3:2f:b3:cc:ca:9a:46:a0:e3:b8:c5:93:c7:78:
7b:dc:e7:c3:f8:b7:b8:cb:ed:46:41:2b:dd:c6:38:a9:f4:75:
a9:3b:8d:1a:c8:f9:7e:f6:26:45:db:b2:02:4d:1d:79:31:58:
dc:f2:da:b5:a6:a4:bd:db:5d:9e:54:41:aa:18:f0:18:dc:c9:
d7:e6:c3:f7:d7:a8:65:a3:84:85:ce:f3:aa:b8:bb:e8:61:0c:
52:16:6c:62:5c:99:f3:e6:c3:29:05:c3:d8:58:b6:05:1a:73:
00:96:21:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 11:43:01 2025 by rpki-client