Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft
File: Km8SBBLYIPn_JM0F1ez0nmYtmco.mft (raw, json)
Hash identifier: 3Y9oSR24WHS2V9ozx/Qzc5pxwYzl3Tu6F8Ek+43lhOU=
Subject key identifier: CF:ED:96:33:81:3F:7E:96:FC:70:89:B8:16:B0:61:40:9E:A7:08:61
Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA
Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA
Certificate serial: 1F64
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft
Manifest number: 1F57
Signing time: Sat 12 Apr 2025 15:57:01 +0000
Manifest this update: Sat 12 Apr 2025 15:57:00 +0000
Manifest next update: Sat 19 Apr 2025 15:57:00 +0000
Files and hashes: 1: Km8SBBLYIPn_JM0F1ez0nmYtmco.crl (hash: pfbV7WnQ2evqh6L+JK/+Fzv+yNvDdRafmIMn9vFPr/0=)
2: E352E0A2896F11E7BBF2923CC4F9AE02.roa (hash: C6sGcNivAhM8b7+hs2R4TWPNfdN5sOXAahaAosnvUZ8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl
rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 15:57:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8036 (0x1f64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F240B, serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA
Validity
Not Before: Apr 12 15:57:00 2025 GMT
Not After : Apr 19 15:57:00 2025 GMT
Subject: CN=67fa8d4c-ad62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e1:16:6b:0b:4a:4f:43:cb:c7:de:8b:57:98:
4f:ec:f1:97:71:ad:f4:d4:66:ba:88:56:a2:61:24:
b1:da:11:38:1f:67:66:ff:b4:0a:9d:a6:be:f3:01:
59:68:d2:10:ca:4b:b9:77:da:27:e9:6f:c2:e0:84:
a3:c9:af:ad:50:05:4d:50:09:d6:4c:5e:1c:fc:f3:
e4:60:f6:fe:8e:69:cb:14:cd:f3:05:d5:f3:3d:7f:
11:f8:0b:a8:2d:86:c7:24:d8:fa:14:e1:8a:1b:e5:
4c:48:8e:32:36:49:46:06:89:18:9b:67:2d:22:45:
91:7b:af:06:35:db:a9:64:55:65:f3:5a:8d:63:0f:
0f:3b:a7:33:47:75:10:6a:5b:50:97:63:42:28:32:
e9:bc:c5:65:87:90:53:61:35:7e:bf:9e:b4:4d:5a:
ac:5f:c2:a2:de:59:5d:d8:4b:da:45:ed:d0:8a:20:
fa:7b:52:ea:d2:70:b6:a6:50:be:f6:3e:1e:b0:d7:
01:aa:fd:dc:fc:57:63:52:7b:83:33:b3:23:fd:e3:
c4:65:90:1c:62:41:6a:ed:d3:72:08:81:b0:fb:e3:
92:10:b4:a0:1f:9b:90:7d:6a:50:5f:ff:ed:c7:3e:
33:50:fb:e9:8b:8f:74:f2:9d:9a:aa:da:fb:a2:68:
83:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:ED:96:33:81:3F:7E:96:FC:70:89:B8:16:B0:61:40:9E:A7:08:61
X509v3 Authority Key Identifier:
keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
46:23:ed:7f:52:cd:84:23:70:60:cf:39:9c:68:d1:28:34:8e:
db:74:67:2d:dd:62:97:3e:d3:4d:3d:0f:19:b3:88:c2:2e:99:
a0:0a:60:2b:32:66:bc:42:1c:b1:5b:b3:3d:4f:66:50:f4:7c:
58:91:41:f3:53:ab:20:38:b1:c4:62:70:88:5f:77:7d:6d:15:
85:f2:bd:e3:77:68:e9:60:48:d0:eb:31:82:3d:58:46:ef:39:
99:d7:a1:a2:e5:71:b6:ab:aa:f4:d9:a4:76:95:55:e7:ac:45:
8b:4f:43:02:85:3d:6e:f9:54:99:1a:d5:c9:ff:5b:2a:8d:07:
da:b1:d2:d8:6a:b2:56:8f:ed:71:e7:3f:cd:1f:d0:69:42:51:
4f:cd:e3:af:27:b5:b5:3f:4e:b1:86:82:67:c0:e5:4a:f9:5a:
df:39:41:5e:25:36:c3:d9:35:02:8b:04:4e:8c:6e:68:44:cb:
e1:ba:e1:c8:de:4c:07:86:21:b9:e2:4a:80:ab:e3:f3:39:5f:
b1:7a:89:6c:a9:c8:02:16:35:2e:56:a1:a0:10:72:a7:cb:ce:
b2:fd:c7:1a:0a:0a:ce:f6:c0:73:67:2c:2e:88:da:34:e2:e8:
f9:56:fe:7e:98:3c:f2:c5:06:fb:e6:db:5f:2c:09:31:fb:2d:
66:b8:42:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:21:17 2025 by rpki-client