Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft
File: K1N18tBgdUbVH2UR9hvEoYl0_eI.mft (raw, json)
Hash identifier: RfRm2VJnrtj51hIyh/8QOy2gsmtzOwlRhGdELTZCHjs=
Subject key identifier: C5:92:54:51:EC:0D:3A:95:91:42:52:8D:34:14:98:B5:30:07:97:CE
Authority key identifier: 2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2
Certificate issuer: /CN=A91EF19E/serialNumber=2B5375F2D0607546D51F6511F61BC4A18974FDE2
Certificate serial: 34A2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft
Manifest number: 3492
Signing time: Thu 10 Apr 2025 14:25:42 +0000
Manifest this update: Thu 10 Apr 2025 14:25:41 +0000
Manifest next update: Thu 17 Apr 2025 14:25:41 +0000
Files and hashes: 1: K1N18tBgdUbVH2UR9hvEoYl0_eI.crl (hash: 9clAukmwGf62Mi+Tp69Kvd0WIIosIh365Ag9nF9MIoQ=)
2: FACC58F855C411E9A0FEF781C4F9AE02.roa (hash: xRVsw1KmS2w+1EDgE8BbroBgIAZxNI85/W3Lxxz+NyE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl
rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 17 Apr 2025 14:25:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13474 (0x34a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EF19E
Validity
Not Before: Apr 10 14:25:41 2025 GMT
Not After : Apr 17 14:25:41 2025 GMT
Subject: CN=67f7d4e5-616c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:2a:14:21:84:80:aa:aa:ed:06:1e:e5:c7:9f:
ad:e0:e6:6b:31:70:df:2a:78:d6:4f:74:9f:b3:1c:
8b:98:5f:7f:53:dc:94:38:45:0b:08:6a:a1:8f:3f:
bd:38:a5:fc:8c:08:02:42:e8:37:94:8c:f4:ae:e6:
34:e4:40:45:21:26:dd:31:4f:7e:5e:b6:78:10:d0:
49:97:1d:f4:b4:5f:b7:94:28:69:80:5c:85:91:23:
c6:5a:63:b4:9d:ca:ff:c6:50:59:6b:c9:2f:86:69:
a1:8c:8a:c1:39:66:e7:d9:d8:d6:8f:d8:d1:43:cb:
54:cf:dd:82:d7:80:65:61:00:9e:1d:54:23:dc:4f:
4f:06:33:f7:31:41:8f:9a:0c:ce:cf:43:1c:f6:36:
7b:89:ae:8d:65:f5:35:1e:f4:ca:ae:16:d1:21:e2:
43:51:e5:32:f7:34:c6:90:b7:7b:d5:4c:fa:3a:2a:
82:51:fc:c0:0e:cf:c3:db:4d:17:eb:4d:c0:a6:ce:
b4:46:c1:4e:86:bc:ce:3b:cf:8c:e5:8a:15:38:9c:
02:7d:1d:8d:48:2b:cf:1b:6b:93:ea:fc:68:8f:47:
89:44:ca:4d:52:69:11:d9:c3:9d:5b:3c:8b:19:28:
56:48:98:58:25:b2:97:24:a6:c1:95:34:b7:07:bd:
58:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:92:54:51:EC:0D:3A:95:91:42:52:8D:34:14:98:B5:30:07:97:CE
X509v3 Authority Key Identifier:
keyid:2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
36:d4:9d:3c:bf:ad:70:92:f3:1d:86:3e:5b:f1:ca:08:ad:c6:
01:7c:0d:0a:bb:49:58:fa:0c:01:3b:61:93:63:c0:e4:0f:4f:
39:d1:a8:dc:b9:8b:3a:5f:40:aa:63:4f:4c:a5:e4:1f:35:b7:
06:6c:2b:c4:a9:be:60:02:07:75:18:0d:0d:da:b9:bf:0b:f7:
73:31:65:d0:da:0b:30:68:92:f9:7c:17:76:9f:6a:07:ae:d8:
d4:74:36:e6:89:57:1b:26:eb:4d:de:0a:e6:68:63:a3:d8:3a:
bc:ba:81:a8:d3:38:b5:5d:69:ce:ad:ba:33:1d:23:a3:c2:8d:
cd:1f:3a:11:0c:59:4b:8c:ea:e2:5c:2e:d9:0a:3d:19:c8:22:
4e:13:04:22:e8:00:82:0e:5a:2f:19:28:c7:77:32:89:15:ba:
8b:d9:ad:df:52:db:c4:48:1a:2e:0d:41:ce:dc:12:8d:cd:11:
41:1b:a2:06:11:1d:ce:84:5a:94:c2:1b:8c:b0:70:62:37:16:
d1:4d:24:24:9f:d3:dd:d7:a4:f9:3c:ae:05:a9:54:16:5c:fd:
61:4b:aa:d9:5a:2b:fd:4d:09:6c:0e:e7:44:e5:b9:50:27:1a:
14:ee:ce:34:46:8d:49:0d:59:f2:47:81:fa:39:48:a7:7a:ca:
c0:aa:59:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 04:29:46 2025 by rpki-client