Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/56A4CB8AB05311EF9C2B8D3FC4F9AE02/q4PFkhuEDFQXM78Ucyl13UlzP_w.mft
File: q4PFkhuEDFQXM78Ucyl13UlzP_w.mft (raw, json)
Hash identifier: LD47O5wk1udjb/kucCJ4FDU8qbmdBcK1gbi/p3F8eTM=
Subject key identifier: 51:17:1D:DC:63:9F:C3:98:97:19:F5:31:35:19:53:49:50:9A:A1:ED
Authority key identifier: AB:83:C5:92:1B:84:0C:54:17:33:BF:14:73:29:75:DD:49:73:3F:FC
Certificate issuer: /CN=A91F523F/serialNumber=AB83C5921B840C541733BF14732975DD49733FFC
Certificate serial: 45
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q4PFkhuEDFQXM78Ucyl13UlzP_w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/56A4CB8AB05311EF9C2B8D3FC4F9AE02/q4PFkhuEDFQXM78Ucyl13UlzP_w.mft
Manifest number: 45
Signing time: Fri 11 Apr 2025 06:38:43 +0000
Manifest this update: Fri 11 Apr 2025 06:38:43 +0000
Manifest next update: Fri 18 Apr 2025 06:38:43 +0000
Files and hashes: 1: q4PFkhuEDFQXM78Ucyl13UlzP_w.crl (hash: ejf0VM7k1iYO3BGosVvDdPQa1OkyjnGH13mJT0lDyIE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/56A4CB8AB05311EF9C2B8D3FC4F9AE02/q4PFkhuEDFQXM78Ucyl13UlzP_w.crl
rsync://rpki.apnic.net/member_repository/A91F523F/56A4CB8AB05311EF9C2B8D3FC4F9AE02/q4PFkhuEDFQXM78Ucyl13UlzP_w.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q4PFkhuEDFQXM78Ucyl13UlzP_w.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 18 Apr 2025 06:38:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69 (0x45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F523F, serialNumber=AB83C5921B840C541733BF14732975DD49733FFC
Validity
Not Before: Apr 11 06:38:43 2025 GMT
Not After : Apr 18 06:38:43 2025 GMT
Subject: CN=67f8b8f3-b7cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ed:05:e9:78:bc:4f:6f:03:30:35:bf:48:40:
0d:58:a1:ac:f4:83:d1:76:4d:41:ae:26:79:1f:04:
e1:6a:1c:12:9a:d5:96:da:92:b2:26:17:59:f1:60:
10:b5:7f:af:ec:18:dc:e0:75:4f:cc:4d:f7:7c:2b:
7b:8e:44:d6:c8:c8:20:a0:d9:8c:a4:47:14:51:08:
87:0f:cd:ce:6e:bf:c6:d6:4f:cb:77:aa:e5:96:7a:
8c:6a:52:c1:cf:76:65:06:e4:20:36:45:51:7c:35:
22:eb:7c:07:85:17:68:29:25:ce:43:64:bd:02:87:
ce:f9:87:a0:92:6a:ec:f6:7e:a4:78:cc:d0:e8:2a:
4f:1e:e9:c4:22:32:76:94:1c:59:a1:97:e7:ea:d4:
5e:9a:74:35:8f:54:b3:99:98:0c:23:5a:51:91:80:
37:21:6e:5b:d8:f8:89:79:64:3f:d6:d4:0d:cc:7f:
16:53:04:23:0b:c1:4c:19:c3:30:04:2b:4b:c9:55:
7e:57:09:2e:53:8d:00:52:98:36:38:8e:96:28:ff:
b3:0e:47:06:f7:25:76:9e:be:03:34:6d:15:8d:8d:
4f:ab:6a:61:28:79:f9:3a:ba:a2:ed:85:d9:86:ad:
3e:9b:67:45:4e:7e:31:d1:91:5e:20:9c:2b:b7:a9:
d1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:17:1D:DC:63:9F:C3:98:97:19:F5:31:35:19:53:49:50:9A:A1:ED
X509v3 Authority Key Identifier:
keyid:AB:83:C5:92:1B:84:0C:54:17:33:BF:14:73:29:75:DD:49:73:3F:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F523F/56A4CB8AB05311EF9C2B8D3FC4F9AE02/q4PFkhuEDFQXM78Ucyl13UlzP_w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q4PFkhuEDFQXM78Ucyl13UlzP_w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/56A4CB8AB05311EF9C2B8D3FC4F9AE02/q4PFkhuEDFQXM78Ucyl13UlzP_w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b4:bb:bf:b2:62:17:8b:9f:70:02:83:b2:fc:5d:d2:c2:7c:04:
2c:a9:9a:e1:e6:25:21:b1:41:17:74:b7:b7:74:5e:f6:3a:bb:
e1:c7:0b:c5:23:81:d5:19:88:bb:c3:aa:fb:b8:1a:a9:e4:01:
48:ba:89:19:73:fe:da:5b:5a:e3:30:95:32:88:e9:ee:b2:6a:
d1:1b:04:c7:cc:19:07:e9:50:41:7d:85:41:7f:44:75:92:63:
d4:74:96:92:82:5e:c0:25:2f:82:18:4d:db:79:ca:e4:35:6b:
58:d8:b0:b6:7f:19:6d:1c:4b:14:7b:57:18:53:22:b7:0f:2f:
5a:5b:4c:ef:6e:63:f1:0c:a6:65:40:30:59:9c:a5:36:3d:91:
bb:a5:90:b8:5e:2e:19:d2:35:8e:22:f8:7e:c6:72:cd:b2:61:
0b:7f:7a:35:ef:a1:cb:94:77:87:c4:da:a3:94:22:28:d1:50:
23:2b:46:da:96:ac:97:61:4a:49:68:33:79:0f:12:c7:31:15:
26:f3:63:d7:01:54:11:30:de:47:53:4c:60:20:20:25:58:67:
d5:e6:97:ce:bd:a6:f0:81:a5:1c:99:45:bb:17:73:c9:53:45:
71:c6:ef:52:f4:a5:97:e6:ff:4c:7c:d1:51:52:2d:78:a5:dc:
e0:38:78:ad
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG
NTIzRjExMC8GA1UEBRMoQUI4M0M1OTIxQjg0MEM1NDE3MzNCRjE0NzMyOTc1REQ0
OTczM0ZGQzAeFw0yNTA0MTEwNjM4NDNaFw0yNTA0MTgwNjM4NDNaMBgxFjAUBgNV
BAMTDTY3ZjhiOGYzLWI3Y2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDa7QXpeLxPbwMwNb9IQA1Yoaz0g9F2TUGuJnkfBOFqHBKa1ZbakrImF1nxYBC1
f6/sGNzgdU/MTfd8K3uORNbIyCCg2YykRxRRCIcPzc5uv8bWT8t3quWWeoxqUsHP
dmUG5CA2RVF8NSLrfAeFF2gpJc5DZL0Ch875h6CSauz2fqR4zNDoKk8e6cQiMnaU
HFmhl+fq1F6adDWPVLOZmAwjWlGRgDchblvY+Il5ZD/W1A3MfxZTBCMLwUwZwzAE
K0vJVX5XCS5TjQBSmDY4jpYo/7MORwb3JXaevgM0bRWNjU+ramEoefk6uqLthdmG
rT6bZ0VOfjHRkV4gnCu3qdEbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUURcd3GOf
w5iXGfUxNRlTSVCaoe0wHwYDVR0jBBgwFoAUq4PFkhuEDFQXM78Ucyl13UlzP/ww
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1MjNGLzU2QTRDQjhBQjA1
MzExRUY5QzJCOEQzRkM0RjlBRTAyL3E0UEZraHVFREZRWE03OFVjeWwxM1VselBf
dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvcTRQRmtodUVERlFYTTc4VWN5bDEzVWx6UF93LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1
MjNGLzU2QTRDQjhBQjA1MzExRUY5QzJCOEQzRkM0RjlBRTAyL3E0UEZraHVFREZR
WE03OFVjeWwxM1VselBfdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBALS7v7JiF4ufcAKDsvxd0sJ8BCypmuHmJSGxQRd0t7d0XvY6u+HHC8Uj
gdUZiLvDqvu4GqnkAUi6iRlz/tpbWuMwlTKI6e6yatEbBMfMGQfpUEF9hUF/RHWS
Y9R0lpKCXsAlL4IYTdt5yuQ1a1jYsLZ/GW0cSxR7VxhTIrcPL1pbTO9uY/EMpmVA
MFmcpTY9kbulkLheLhnSNY4i+H7Gcs2yYQt/ejXvocuUd4fE2qOUIijRUCMrRtqW
rJdhSkloM3kPEscxFSbzY9cBVBEw3kdTTGAgICVYZ9Xml869pvCBpRyZRbsXc8lT
RXHG71L0pZfm/0x80VFSLXil3OA4eK0=
-----END CERTIFICATE-----
Generated at Sun Apr 13 05:28:01 2025 by rpki-client