Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft
File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json)
Hash identifier: IOeTigaxgV2JBtk8Bkvb7nBTnqTm7DgDlr6PHZBeamc=
Subject key identifier: FE:2B:5C:22:68:B5:5C:15:0E:7B:6B:7B:82:AA:DA:E1:12:98:F6:DF
Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2
Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2
Certificate serial: 05FA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft
Manifest number: 05ED
Signing time: Sat 12 Apr 2025 22:39:24 +0000
Manifest this update: Sat 12 Apr 2025 22:39:23 +0000
Manifest next update: Sat 19 Apr 2025 22:39:23 +0000
Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: LfR5Nlz/3yJiK+XY6GVcYp5g3naqHC9neyTHaFFZhQw=)
2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: NpLkQ/NypmNX/0X8ZR0aPK3YWZwmOShkZdvPXd4fivY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl
rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 22:39:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1530 (0x5fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2
Validity
Not Before: Apr 12 22:39:23 2025 GMT
Not After : Apr 19 22:39:23 2025 GMT
Subject: CN=67faeb9b-c58e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f5:8f:90:dc:df:3c:bf:51:bd:a9:c3:33:c8:
87:b9:84:40:26:7b:26:ca:14:75:5f:af:84:7a:9e:
54:08:43:7f:3c:18:89:f6:a7:47:2f:fc:df:72:82:
f4:5d:b1:27:28:ba:60:9b:58:36:d4:c0:c0:24:80:
a8:cc:52:37:86:0e:ff:5e:e9:0c:f0:6a:f6:31:78:
84:d9:ad:77:de:a3:f4:e6:35:a2:59:e9:d1:6d:54:
0a:77:a0:ad:c6:af:98:a2:ba:ed:9e:b3:ac:8c:f6:
84:f0:84:a2:10:87:0c:98:4b:e5:39:19:79:ac:cb:
6d:ff:f5:ac:09:7e:1a:bb:94:16:2f:50:75:a0:83:
ae:d9:7f:4b:ec:ef:a5:bd:8e:f4:3a:a7:ac:9b:96:
ac:6f:3e:84:ea:a4:19:11:ab:f1:8b:72:b5:0d:f2:
7e:8d:aa:a0:39:39:06:a0:1d:99:8d:33:fa:bf:e0:
3b:ce:c9:27:cf:db:fb:7a:87:fa:25:a3:a7:74:25:
27:04:63:0e:2c:b3:47:af:e7:73:87:0b:13:96:75:
b6:43:05:f1:d3:b6:f9:7b:32:5e:8e:f7:e0:64:33:
87:f3:ed:dd:e3:43:38:00:ce:28:e7:e1:fb:39:a3:
8d:cc:59:d9:e7:8d:64:fe:88:09:c8:83:73:47:bc:
7f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:2B:5C:22:68:B5:5C:15:0E:7B:6B:7B:82:AA:DA:E1:12:98:F6:DF
X509v3 Authority Key Identifier:
keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a6:a1:c2:e7:95:03:8a:a3:71:19:7b:9e:b2:6e:5d:78:8c:41:
a1:a9:d1:48:e1:dc:fd:85:de:39:87:56:fd:2a:5c:de:6e:8f:
3a:83:79:df:a6:e6:8e:5b:2f:e7:6f:16:10:f4:1a:59:4a:5e:
a7:26:91:39:bd:1e:3d:5b:5c:68:99:c1:1d:68:19:7c:24:73:
22:87:59:60:81:4a:3d:5b:c6:4b:33:77:73:9a:ef:46:a7:63:
60:ef:af:7a:24:b4:7a:a5:d1:1d:68:92:7c:23:fc:dd:01:81:
11:ff:aa:86:80:2b:e3:03:5e:ed:2e:e5:7e:23:d3:bd:6e:5a:
bc:5b:e2:c2:48:66:c0:cb:7a:7f:51:85:9b:fb:78:c5:9a:11:
84:4d:94:22:9d:32:3a:a2:34:dc:37:1d:93:5c:25:97:66:03:
8a:62:88:ec:7d:a5:94:bd:ad:2f:3b:67:a3:ff:35:8e:60:64:
1e:22:06:98:c7:04:ad:54:48:30:96:1c:0e:48:c6:de:10:24:
62:8a:a9:c8:50:5b:39:e6:28:b1:8e:95:75:00:40:1e:e2:c3:
48:18:80:97:e7:c1:f0:7d:67:1d:fc:1e:91:ad:b2:40:99:95:
1b:10:0c:a6:31:69:6f:e4:e4:b1:47:ab:82:2b:5b:5d:14:a9:
51:48:62:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:47:00 2025 by rpki-client