Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft
File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json)
Hash identifier: FInB51K9/MUR4ciHXIeBY9IHvVmyFq6BjWgDYRUHCIc=
Subject key identifier: 3C:96:A4:C1:7D:E6:D5:76:84:E9:07:80:BD:24:09:6D:85:F0:F8:11
Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4
Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4
Certificate serial: 0E22
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft
Manifest number: 0E1A
Signing time: Tue 08 Apr 2025 17:47:52 +0000
Manifest this update: Tue 08 Apr 2025 17:47:52 +0000
Manifest next update: Tue 15 Apr 2025 17:47:52 +0000
Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: qeBmRp7/8qBavnyl0oE7OnwOyiNhEMbzQ7ZiRJhuUMU=)
2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: 8FSx/7pmWfnqq5buFAKmXuNtb84bNl4hKWrDWfIfWSE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl
rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 17:47:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3618 (0xe22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D8E2C
Validity
Not Before: Apr 8 17:47:52 2025 GMT
Not After : Apr 15 17:47:52 2025 GMT
Subject: CN=67f56148-7743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b1:12:0d:35:96:12:84:9a:0e:05:f6:0a:9e:
e5:dd:57:45:cd:26:54:2e:28:c2:e3:39:3d:5a:63:
ba:39:87:47:19:df:dd:a3:a9:d5:7a:ba:21:d1:46:
32:fe:95:77:da:c0:a5:fb:af:bc:8b:e8:66:b3:01:
47:75:38:4b:d4:8d:55:e6:f6:42:51:14:3d:08:b8:
2e:d5:4c:62:51:5e:fa:9b:39:c0:b4:ab:92:8f:34:
01:a3:cf:84:bb:aa:c3:0b:2f:b3:11:c4:59:ec:91:
7d:c0:a9:e3:f0:11:53:c1:9f:2d:ea:93:db:73:52:
fc:84:7a:53:e9:cc:5f:1a:27:c8:b8:d9:b5:fd:b4:
41:bb:ed:eb:b3:3f:c3:de:58:6f:1d:ed:d2:d2:e6:
1a:af:7f:da:b8:24:3d:60:7f:c1:40:ce:34:22:12:
47:51:4c:19:78:89:bf:5d:96:55:c2:ba:cb:c0:02:
72:d9:df:21:7f:d8:2d:f9:29:ff:d0:3e:d5:5e:9a:
41:cb:ed:fe:35:e6:b1:a8:95:21:88:f4:db:f9:2b:
1d:d6:5b:06:e2:6c:09:f0:c6:b5:12:af:aa:0e:a2:
cc:97:5d:1a:3a:c2:e3:0a:e5:79:f5:42:9e:84:a0:
1c:42:da:34:a6:79:74:cb:c4:c7:ba:bd:f5:fc:66:
42:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:96:A4:C1:7D:E6:D5:76:84:E9:07:80:BD:24:09:6D:85:F0:F8:11
X509v3 Authority Key Identifier:
keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
72:91:e7:5b:21:51:86:9c:d3:10:6a:25:74:7b:52:3a:88:e3:
5a:63:25:9b:28:d3:7c:41:83:cd:d2:d8:05:0a:48:1c:97:b8:
b4:2f:14:3a:cc:e9:ba:e6:4d:5d:3b:5d:f9:aa:35:27:1d:59:
3c:c4:78:a1:01:b7:b5:67:b6:55:bd:3a:b9:db:23:c2:d6:37:
06:44:05:80:ad:96:97:41:64:d0:1d:62:f8:15:95:87:05:9e:
2e:f7:da:8a:ed:f4:29:55:93:b3:73:e8:07:d6:a9:f4:ff:9f:
14:d8:b6:fe:54:8c:c5:f7:f1:53:04:4f:f8:86:03:3f:6b:6e:
4e:df:27:c8:5a:69:83:62:8a:2a:f6:24:ba:04:74:96:b6:9b:
4f:cf:4e:a0:dc:26:c3:20:b2:17:fb:3f:7b:6a:c1:77:e2:25:
57:40:61:39:3e:71:e0:75:21:79:0c:19:ce:8e:2b:81:a4:c5:
50:cf:f5:a4:30:7c:17:06:41:b5:81:20:6e:f8:ba:c4:b5:89:
6e:bf:fd:00:95:33:01:51:fd:4e:22:6a:7a:91:74:e8:e7:33:
4b:88:42:4b:d9:06:84:11:77:bb:f1:b8:65:41:6a:e0:48:c8:
fe:b6:8e:cf:80:83:ea:85:cd:a9:2e:4f:b8:fb:02:e9:3c:51:
3f:6e:e2:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 21:15:11 2025 by rpki-client