Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft
File: 5bsti54YaXwBWe2BMuXzS4axN7E.mft (raw, json)
Hash identifier: Sm92JQSIXem9xO8ciZsXxSuEPsbCjN4dN8DR6kXxm+Q=
Subject key identifier: 77:FD:3D:06:5F:78:6E:DA:96:99:2D:81:B9:06:77:56:AE:FE:16:09
Authority key identifier: E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1
Certificate issuer: /CN=A91E0C2B/serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1
Certificate serial: 0186
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft
Manifest number: 0182
Signing time: Wed 09 Apr 2025 02:39:14 +0000
Manifest this update: Wed 09 Apr 2025 02:39:14 +0000
Manifest next update: Wed 16 Apr 2025 02:39:14 +0000
Files and hashes: 1: 5bsti54YaXwBWe2BMuXzS4axN7E.crl (hash: qVq43/EYTRwWDE7RUBCSLALoNZeeXz4955pxYpFjHXQ=)
2: 12B9A5DECBC211EDB6F09516C4F9AE02.roa (hash: GC2+Qt2m2cOxU2MSwTfp+OhWSqEwAQ14izm/J1/ZU5o=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl
rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 02:39:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390 (0x186)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E0C2B
Validity
Not Before: Apr 9 02:39:14 2025 GMT
Not After : Apr 16 02:39:14 2025 GMT
Subject: CN=67f5ddd2-6af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a3:16:31:bf:4f:d2:c5:bc:24:7d:78:d7:15:
05:b0:69:5a:34:6f:a2:11:37:e5:ae:a1:44:5d:2d:
90:81:96:93:2b:01:60:54:6b:53:53:07:4f:6f:5d:
49:0d:bb:d8:de:a0:14:1e:5d:f4:4d:2b:d0:ac:1c:
62:8a:f0:97:bc:dc:4d:e2:fb:cf:d8:1c:01:02:ba:
08:35:0f:5d:11:62:db:a5:1d:3a:65:3c:3d:ca:5f:
f5:96:23:0b:91:fe:59:e9:46:c2:d5:d6:46:30:1d:
9f:cb:27:cb:dc:ba:c8:2f:10:38:09:69:9b:73:39:
c8:2a:4c:8c:fb:76:9a:de:d8:48:dc:6c:5f:ee:3f:
69:b2:d0:85:9f:d9:24:72:1d:50:aa:4d:4a:72:87:
2a:a9:a3:28:f2:f6:08:05:3d:09:33:80:cb:2e:1e:
42:6e:a9:c0:9c:ab:9d:94:e3:d5:35:e4:7d:67:ad:
d3:2f:fa:97:8a:f7:51:f0:cd:25:ba:30:e3:80:4e:
a8:a4:f5:14:61:5f:0f:77:ba:12:44:f4:7c:cb:5c:
cf:1e:b0:84:c2:dc:93:ca:a2:88:ee:04:2f:8b:bf:
75:b8:68:67:8f:58:d9:ca:53:16:af:ca:d8:51:b1:
e7:d0:bd:64:ae:33:f5:6b:d5:44:89:db:db:4e:03:
41:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FD:3D:06:5F:78:6E:DA:96:99:2D:81:B9:06:77:56:AE:FE:16:09
X509v3 Authority Key Identifier:
keyid:E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
67:6f:1b:57:55:aa:ad:9d:dc:7e:21:ba:cb:e5:2e:1d:78:a1:
0f:23:19:e6:0b:04:02:7b:3e:d6:ae:99:83:c4:02:16:1b:55:
99:a6:27:d5:13:4d:c4:61:5a:6f:bd:94:a7:81:18:66:57:64:
81:44:d9:7b:2a:40:1d:b1:37:8d:1f:00:4d:59:cf:84:43:1c:
55:fd:21:3b:fd:fd:c2:5e:92:c0:c1:be:98:55:a9:c4:45:e2:
86:21:1f:fd:2d:d6:83:41:a1:d0:9b:a1:38:94:1b:aa:a2:c8:
5e:13:08:16:29:ca:bb:0f:b1:04:69:cc:d1:29:c1:b2:7e:ad:
02:be:00:c1:1a:af:0a:c0:17:95:f8:7a:89:c5:fd:23:5f:74:
6f:83:4f:b1:d0:22:f9:7f:c1:7d:3f:56:89:f8:85:d5:0a:e9:
26:15:98:66:ac:47:cb:3d:ea:7e:c3:a8:5f:59:26:e7:8a:02:
2b:53:b2:d4:4f:a3:f3:5d:d2:10:15:3a:a8:69:95:23:f0:e3:
0c:e1:10:18:55:0f:48:78:2f:fd:aa:46:8e:80:01:69:44:6b:
09:0e:4e:71:41:8e:32:34:57:65:93:59:cf:0f:ac:ee:2f:75:
c6:ce:8f:15:56:26:dc:59:8a:dd:92:28:ef:2a:2b:ed:fe:b1:
12:61:40:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 17:19:32 2025 by rpki-client