Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft
File: xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft (raw, json)
Hash identifier: k+vvOe5gI0vR1AHLFr1DZqUTkxDLOmvT7ao0FMiOGJg=
Subject key identifier: 45:5D:37:F2:C8:AB:7E:78:EE:4F:BE:09:2B:AF:96:CF:CF:1A:BC:EA
Authority key identifier: C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70
Certificate issuer: /CN=A91DF937/serialNumber=C49E5183EA2FC49B8A83C92052BCE2A8B6576C70
Certificate serial: 1F03
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft
Manifest number: 1EF7
Signing time: Tue 08 Apr 2025 16:02:59 +0000
Manifest this update: Tue 08 Apr 2025 16:02:59 +0000
Manifest next update: Tue 15 Apr 2025 16:02:59 +0000
Files and hashes: 1: xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl (hash: Ge8Q9aCaWFO8xhxw0E/ouWDhpW2OJRvRH4raTJzdQvU=)
2: E723101E553D11E7B552CE31C4F9AE02.roa (hash: GAb6VP25Sih6kuMJl/07aQz0S9qS9uziUSigVGvFQjs=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl
rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 16:02:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7939 (0x1f03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DF937
Validity
Not Before: Apr 8 16:02:59 2025 GMT
Not After : Apr 15 16:02:59 2025 GMT
Subject: CN=67f548b3-b406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ab:0f:0c:47:3e:fb:5e:6d:d3:c9:6d:7a:39:
05:e3:69:53:a1:08:86:25:29:54:19:fc:92:e0:ae:
7a:35:55:16:5a:89:d3:4c:34:eb:3e:f7:d5:f9:14:
fe:b6:d9:32:9d:1c:6c:51:d9:d0:7f:b9:04:9d:76:
aa:47:eb:b5:75:e6:ac:d2:cd:7e:dd:fa:22:f6:a6:
22:e8:c2:75:d7:c4:b5:1d:23:d3:28:53:2b:41:f3:
f7:03:bf:9c:5c:e0:c0:18:ed:3f:0e:7a:a5:f0:72:
15:2f:a3:66:04:c4:3b:6d:44:f3:f6:89:46:0f:80:
d9:58:cb:74:4a:96:1f:15:59:66:13:c5:eb:92:10:
c0:93:5b:b7:1c:fc:f7:5d:5e:5c:e9:b8:f4:6d:a0:
40:b7:9f:ec:60:71:bb:31:d5:70:d9:f1:a4:e2:34:
b0:85:a3:0a:79:b7:f0:ef:5b:c3:74:a0:52:b2:be:
00:5d:d2:83:d0:82:1b:51:3c:bb:8c:b1:6e:f6:bb:
c9:53:c1:01:54:78:f5:93:b7:95:b8:f1:c0:93:d5:
ab:7f:68:12:46:92:23:d4:09:54:e6:02:91:70:e2:
3d:2b:15:9f:2f:74:1f:63:04:e5:9b:19:f0:bc:6a:
0a:57:a4:40:9d:f5:f6:84:af:fc:d8:b1:ce:01:7e:
62:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5D:37:F2:C8:AB:7E:78:EE:4F:BE:09:2B:AF:96:CF:CF:1A:BC:EA
X509v3 Authority Key Identifier:
keyid:C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1f:58:71:c9:01:b7:15:d0:a6:30:c1:1c:48:63:8d:a0:44:a1:
cd:0f:07:4e:19:eb:90:dd:75:fa:d4:3a:be:44:e9:17:56:fd:
fe:ef:93:29:5a:87:68:3e:fe:c9:25:c8:8a:64:4f:2c:03:11:
08:0b:3d:4e:7e:3f:e8:04:f1:a5:6d:06:d8:27:45:01:c2:2d:
6d:42:16:79:57:ab:19:ed:b7:6a:ea:9e:8d:52:90:c0:9d:f7:
11:7f:b2:91:29:f0:20:55:40:46:37:a7:1c:3d:db:6c:bc:95:
87:29:5f:9e:88:24:a7:13:a4:c5:e1:e2:1b:54:c5:6e:7c:75:
e5:52:ba:63:59:62:ea:b0:f8:f8:02:41:89:1f:63:33:03:58:
90:06:b0:e9:b8:83:33:5b:a5:df:25:56:10:cc:e5:a1:d3:2d:
c5:89:7e:87:9e:ba:ef:5f:31:f3:1b:6b:29:27:dd:26:a1:13:
2a:85:a9:2b:08:f0:33:96:73:6f:3e:9d:fb:46:01:8f:0e:53:
13:71:21:29:7b:56:dd:d3:2f:40:6f:0e:a1:b3:74:c8:70:bf:
37:24:fc:e2:d0:a1:35:c0:ce:87:ae:7b:a6:79:38:26:38:70:
fe:63:ce:a4:11:b8:ce:13:78:9e:b6:8d:9f:5d:be:6d:7f:d1:
24:66:71:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 17:36:25 2025 by rpki-client