Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft
File: kcPJZndvAR_FNQIdhfWue_utpX4.mft (raw, json)
Hash identifier: NG4qCHJkknog8PJQyUMjEFJ9WQjasmO2ra+jaZPiyWE=
Subject key identifier: 4B:0F:08:F5:59:BF:26:2D:76:2E:A4:28:B2:B1:86:DD:72:2D:43:11
Authority key identifier: 91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E
Certificate issuer: /CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E
Certificate serial: 0B4A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft
Manifest number: 0B39
Signing time: Wed 16 Apr 2025 19:00:41 +0000
Manifest this update: Wed 16 Apr 2025 19:00:40 +0000
Manifest next update: Wed 23 Apr 2025 19:00:40 +0000
Files and hashes: 1: kcPJZndvAR_FNQIdhfWue_utpX4.crl (hash: FJ3Uml4lgt7zbNqrPuinR1xaQRvjlLahfFuE02iAi/Q=)
2: 41B2F448ECE611EA882BEA79C4F9AE02.roa (hash: 2OWyaPGRLrrFKnf1EOOsWE1CZ/F4XEfW9jNRJp2rUvY=)
3: 436F1AE2ECF411EA822E8D28C4F9AE02.roa (hash: OTRxLWYGIuHzUDilAOLR2h6DuKbihwZG+/xdIto74Po=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl
rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 23 Apr 2025 19:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2890 (0xb4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EA786, serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E
Validity
Not Before: Apr 16 19:00:40 2025 GMT
Not After : Apr 23 19:00:40 2025 GMT
Subject: CN=67fffe58-5678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0a:74:a2:81:b3:8e:21:37:bb:c1:97:4e:c8:
74:90:cb:db:4e:3f:d1:a9:ea:ac:b3:84:43:96:54:
fe:77:1a:91:85:fc:78:0b:57:99:f1:3e:0b:e8:01:
c5:a3:e8:da:ec:47:de:6a:80:0c:7a:5b:db:84:66:
b3:3a:d0:5f:b5:ba:5e:ba:9e:52:6b:f2:70:f0:1e:
84:c9:72:9b:b4:cd:f9:e2:17:10:31:da:6e:94:b1:
b9:18:1c:99:5a:f8:e9:ee:17:7b:7c:ed:00:2b:77:
fa:e3:d3:38:98:71:24:55:af:9d:92:af:3f:1a:ad:
96:af:de:86:cf:bf:44:a8:b7:2c:1c:28:3b:a2:ce:
ff:76:84:43:f1:48:92:bf:2f:fb:e2:56:1e:89:b2:
62:ad:c4:11:4a:63:ed:54:6f:7c:eb:41:b6:a9:60:
ba:e4:39:eb:4a:d6:b5:cc:96:36:04:e7:e3:62:35:
c4:4d:07:21:99:68:dd:13:44:3c:cd:37:0c:cf:d1:
a3:a6:ac:df:ff:0c:16:4f:cf:d7:5b:d6:5f:b8:e6:
77:c6:86:00:72:d4:51:e0:f9:31:1f:72:e6:6f:03:
e6:ad:4e:cb:96:8f:21:f0:ef:2d:27:6b:a4:15:ef:
1a:4c:1f:c5:90:20:84:53:3a:35:89:12:63:f3:5a:
d0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:0F:08:F5:59:BF:26:2D:76:2E:A4:28:B2:B1:86:DD:72:2D:43:11
X509v3 Authority Key Identifier:
keyid:91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a7:c1:e5:22:9d:47:14:c5:08:3b:82:69:da:78:07:14:f3:1f:
ec:83:09:de:de:73:9a:ad:61:c6:36:06:34:a2:24:01:d9:65:
20:36:b6:29:32:da:df:2d:d4:86:53:bd:90:37:e0:dc:9a:64:
c2:2a:ad:88:9a:56:51:8f:ae:3b:0b:19:67:b3:de:15:a5:7f:
de:ce:f8:b8:e1:85:f7:fa:bd:62:22:43:63:dd:cd:7e:43:4e:
71:52:b7:65:70:5d:e1:b5:fb:aa:62:57:7c:9a:ac:e7:68:11:
29:df:fe:b4:5e:bc:93:04:8f:5e:02:d0:79:35:2e:06:bf:94:
a4:fe:35:14:a1:d0:86:c2:94:b3:6d:ad:2a:45:bc:53:8c:d3:
99:f7:91:bc:03:e2:39:b7:1a:6f:20:72:9f:48:57:b0:57:a9:
41:f1:6d:41:a3:eb:73:7d:a3:d8:ac:d0:33:f9:12:d9:6f:c3:
d6:33:b8:54:42:de:ee:1f:01:81:b5:0d:68:a5:d2:5c:df:d2:
cb:df:9b:c3:b4:70:51:66:19:69:2d:86:b7:52:8e:35:cc:12:
f3:72:52:65:55:df:69:99:c8:85:2e:09:f8:18:b5:ae:77:01:
54:96:03:19:48:c6:93:2c:06:48:f0:8a:ca:d9:40:93:19:42:
56:4b:a8:24
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICC0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUE3ODYxMTAvBgNVBAUTKDkxQzNDOTY2Nzc2RjAxMUZDNTM1MDIxRDg1RjVBRTdC
RkJBREE1N0UwHhcNMjUwNDE2MTkwMDQwWhcNMjUwNDIzMTkwMDQwWjAYMRYwFAYD
VQQDEw02N2ZmZmU1OC01Njc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArQp0ooGzjiE3u8GXTsh0kMvbTj/Rqeqss4RDllT+dxqRhfx4C1eZ8T4L6AHF
o+ja7EfeaoAMelvbhGazOtBftbpeup5Sa/Jw8B6EyXKbtM354hcQMdpulLG5GByZ
Wvjp7hd7fO0AK3f649M4mHEkVa+dkq8/Gq2Wr96Gz79EqLcsHCg7os7/doRD8UiS
vy/74lYeibJircQRSmPtVG9860G2qWC65DnrSta1zJY2BOfjYjXETQchmWjdE0Q8
zTcMz9Gjpqzf/wwWT8/XW9ZfuOZ3xoYActRR4PkxH3LmbwPmrU7Llo8h8O8tJ2uk
Fe8aTB/FkCCEUzo1iRJj81rQwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEsPCPVZ
vyYtdi6kKLKxht1yLUMRMB8GA1UdIwQYMBaAFJHDyWZ3bwEfxTUCHYX1rnv7raV+
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTc4Ni9CMEQ3MjNFRTM1
REExMUVBQUI4ODQ4NEFDNEY5QUUwMi9rY1BKWm5kdkFSX0ZOUUlkaGZXdWVfdXRw
WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tjUEpabmR2QVJfRk5RSWRoZld1ZV91dHBYNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
QTc4Ni9CMEQ3MjNFRTM1REExMUVBQUI4ODQ4NEFDNEY5QUUwMi9rY1BKWm5kdkFS
X0ZOUUlkaGZXdWVfdXRwWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCnweUinUcUxQg7gmnaeAcU8x/sgwne3nOarWHGNgY0oiQB2WUgNrYp
MtrfLdSGU72QN+DcmmTCKq2ImlZRj647Cxlns94VpX/ezvi44YX3+r1iIkNj3c1+
Q05xUrdlcF3htfuqYld8mqznaBEp3/60XryTBI9eAtB5NS4Gv5Sk/jUUodCGwpSz
ba0qRbxTjNOZ95G8A+I5txpvIHKfSFewV6lB8W1Bo+tzfaPYrNAz+RLZb8PWM7hU
Qt7uHwGBtQ1opdJc39LL35vDtHBRZhlpLYa3Uo41zBLzclJlVd9pmciFLgn4GLWu
dwFUlgMZSMaTLAZI8IrK2UCTGUJWS6gk
-----END CERTIFICATE-----
Generated at Thu Apr 17 12:43:18 2025 by rpki-client