Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft
File: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft (raw, json)
Hash identifier: C0OUDL28XRscPCsl+PGVy8DVfKlvXj77FiwqmWkQt94=
Subject key identifier: FE:92:82:6B:C0:37:15:C4:58:42:9E:84:88:4A:BE:27:24:10:19:A2
Authority key identifier: 93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8
Certificate issuer: /CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8
Certificate serial: 013A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft
Manifest number: 0133
Signing time: Sun 13 Apr 2025 03:28:08 +0000
Manifest this update: Sun 13 Apr 2025 03:28:08 +0000
Manifest next update: Sun 20 Apr 2025 03:28:08 +0000
Files and hashes: 1: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl (hash: vXp1TUlmk2zbTFshxdJzCHYgmmjMT3EMsTPnjbJ7CC4=)
2: 3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa (hash: A0mC9X2UnmVuFudZOyuXLKDdp8UzNcimAQJMyA4hcow=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl
rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 03:28:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 314 (0x13a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DE323, serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8
Validity
Not Before: Apr 13 03:28:08 2025 GMT
Not After : Apr 20 03:28:08 2025 GMT
Subject: CN=67fb2f48-c3ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:32:7f:f4:ae:51:d5:f4:ec:fe:2d:09:54:5f:
47:1a:c3:25:bf:aa:90:4a:36:77:18:fa:80:12:c8:
6f:24:d6:01:a0:b9:e5:77:3e:f1:62:6d:ce:d8:45:
03:44:39:c6:41:ac:c0:d5:cc:3c:9d:27:37:0b:c7:
d4:90:a1:65:53:84:d1:67:1f:da:ff:81:83:01:18:
91:dc:a9:de:3a:35:3b:5e:dc:a5:24:e7:b5:00:c6:
c9:be:84:5e:a0:ae:9c:cf:2d:36:15:5f:2d:55:51:
11:99:bc:8b:42:6e:7c:ba:58:61:8d:11:d0:e5:df:
ac:5c:59:d0:e4:97:8f:f0:d6:9d:33:44:b4:f1:fe:
30:1d:26:fe:f5:c6:c2:d3:77:c3:a1:ca:80:9b:83:
c6:b4:8c:e3:ec:09:e7:79:fe:9b:9b:bd:c4:f3:db:
08:a6:27:31:77:7f:0d:82:39:9d:42:99:fc:10:8b:
65:35:15:7e:71:41:b8:4a:b7:19:e1:30:a2:61:f9:
28:40:1c:99:17:b0:a9:83:64:b5:2d:3a:66:7b:d7:
4c:52:9e:44:bf:2f:70:0d:32:05:7c:23:e1:3a:f6:
fb:fe:7c:4b:75:3d:22:0e:87:a9:00:71:4a:9d:19:
f5:e5:d2:29:5b:7d:8d:02:e9:a1:89:19:1f:01:6c:
53:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:92:82:6B:C0:37:15:C4:58:42:9E:84:88:4A:BE:27:24:10:19:A2
X509v3 Authority Key Identifier:
keyid:93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c5:e4:95:37:64:e5:c0:c0:69:2e:c7:fc:3e:6b:60:5c:6b:b5:
38:33:b6:10:45:b4:c0:f3:20:26:ad:e1:f7:19:74:7c:d7:65:
e7:1b:c4:7b:be:05:93:a3:a6:c4:9f:cb:92:01:1c:a7:1e:1a:
1e:f5:74:40:ea:d2:b2:30:1b:9b:b2:04:4c:00:e6:c8:b8:96:
a6:6e:3b:60:87:74:cf:5e:e8:9d:08:2d:8b:9e:81:1e:cc:a5:
c6:94:1b:67:0a:bb:e2:d3:05:1c:fa:77:da:86:30:f5:a2:f1:
b5:85:a7:41:5e:de:06:71:9d:ce:bb:8b:a7:61:97:02:cc:ee:
5a:d1:6a:2d:96:83:f2:f5:0a:02:64:e0:85:81:11:bb:c2:15:
63:51:93:89:bd:a9:a0:b8:91:45:14:c5:22:90:1f:f3:46:66:
2b:1f:2e:99:a9:ca:f3:a3:89:07:42:04:70:f3:fe:79:6d:1f:
2b:d6:39:5e:23:d3:ab:93:8b:1b:cb:8d:83:d1:2d:73:b1:c4:
e2:1b:8f:c2:5a:8c:a2:20:4d:79:b6:90:78:c9:52:a6:25:0a:
ca:56:bd:36:01:26:77:5d:4f:f1:1e:22:39:31:3d:11:92:be:
28:cb:46:ea:8e:3d:0c:ec:8c:74:70:17:25:93:47:69:9e:8e:
a6:fa:93:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 03:10:25 2025 by rpki-client