Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.mft
File: XhBeDvkNGLn6S4j640EMah3vcZA.mft (raw, json)
Hash identifier: ZWD+ds0qbUngc2FaAJObVzjzzQaFwRbD9mmtoLwauKg=
Subject key identifier: 84:98:06:AF:BE:B5:F0:9C:74:8A:43:B6:4B:FE:FD:5B:1D:53:CD:D9
Authority key identifier: 5E:10:5E:0E:F9:0D:18:B9:FA:4B:88:FA:E3:41:0C:6A:1D:EF:71:90
Certificate issuer: /CN=A91F69E7/serialNumber=5E105E0EF90D18B9FA4B88FAE3410C6A1DEF7190
Certificate serial: 0BC1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XhBeDvkNGLn6S4j640EMah3vcZA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.mft
Manifest number: 0A83
Signing time: Tue 08 Apr 2025 20:03:23 +0000
Manifest this update: Tue 08 Apr 2025 20:03:23 +0000
Manifest next update: Tue 15 Apr 2025 20:03:23 +0000
Files and hashes: 1: XhBeDvkNGLn6S4j640EMah3vcZA.crl (hash: 92yscExp8uz3eI6JXiV8xY2UOD2ss0ekWN5ckFs6uk4=)
2: CED9053CE35211EDB7F6B44EC4F9AE02.roa (hash: JmnrBzA6dJ9YsMu7pz9xXLOAQrwChmETl1tBrYYwR4o=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.crl
rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XhBeDvkNGLn6S4j640EMah3vcZA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 20:03:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3009 (0xbc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F69E7
Validity
Not Before: Apr 8 20:03:23 2025 GMT
Not After : Apr 15 20:03:23 2025 GMT
Subject: CN=67f5810b-5fc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f7:7a:bb:77:f7:7d:3e:05:0d:5c:ec:92:c0:
14:f8:b9:da:5e:ac:35:40:0e:e5:51:31:32:d4:83:
f1:5a:8d:0a:24:51:fc:ab:b2:3a:fd:84:cc:3a:ab:
29:d6:cd:28:54:d8:76:5a:c9:78:b4:8a:38:bf:89:
33:83:c0:b2:be:37:f8:65:30:c3:37:a6:be:d7:e7:
88:fc:5b:74:36:08:c5:ba:3c:6a:e1:37:ca:30:2f:
0c:3e:61:b4:77:00:cb:2f:2d:69:30:e1:86:0c:77:
97:07:4b:c8:53:3f:f9:69:fd:5b:61:f5:a3:10:59:
c8:26:81:ce:15:68:ec:25:84:fc:18:f2:6b:2f:da:
98:2e:12:10:62:64:29:ba:ce:1d:8f:a8:25:21:57:
6a:e6:52:76:2b:cd:03:93:66:21:84:56:da:1b:a2:
34:fe:2e:43:ea:90:c6:f4:1a:b8:96:9b:51:9c:a6:
e4:15:cc:b0:b3:12:51:66:4e:92:61:0c:4c:a7:d5:
98:cc:9c:c8:c2:31:e8:1c:93:4e:2f:aa:40:68:dc:
c8:19:32:85:ef:56:c4:21:3c:fe:fc:c5:52:e5:ab:
b8:bf:12:0f:1f:9d:89:4f:00:bb:68:65:c9:60:25:
3b:9c:83:c5:90:2a:c6:82:a5:5d:e8:9a:12:67:a4:
5e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:98:06:AF:BE:B5:F0:9C:74:8A:43:B6:4B:FE:FD:5B:1D:53:CD:D9
X509v3 Authority Key Identifier:
keyid:5E:10:5E:0E:F9:0D:18:B9:FA:4B:88:FA:E3:41:0C:6A:1D:EF:71:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XhBeDvkNGLn6S4j640EMah3vcZA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
31:52:53:27:d8:aa:bb:ba:3c:0c:3d:e8:1f:62:7e:51:b8:8a:
c4:f8:b0:e7:3d:73:f7:df:30:8d:45:33:f4:06:c2:d0:37:bc:
ea:4a:d2:60:0d:6d:03:3f:c3:b5:31:a5:00:fa:52:6c:66:57:
3b:90:13:72:a4:fe:64:05:c1:62:63:89:23:01:52:53:02:8f:
92:8c:e0:06:1d:db:b7:5c:8f:8c:5a:6d:44:8f:e8:57:ec:98:
01:d5:3d:c0:ab:57:ed:75:24:3c:2e:47:26:7d:b9:a8:c7:eb:
0b:d0:75:f1:64:84:fb:8e:9e:b2:a8:81:0c:c9:4e:27:68:97:
7a:c5:28:cb:01:1c:0b:49:9a:d4:4b:fb:2c:a9:ad:b5:aa:f8:
ab:7a:ff:ab:be:ce:b7:b7:71:f4:48:5a:31:6e:02:6c:39:ae:
e6:6e:d8:26:56:a6:23:60:70:31:7c:f7:1d:1c:e7:99:20:9e:
8e:55:06:f2:82:ba:92:09:b6:34:dc:a3:ba:47:0e:b9:f6:8f:
6f:e5:2c:4d:da:c5:a0:ce:ff:45:11:3a:a4:e0:d1:dc:94:c2:
85:20:3a:c5:d2:3f:96:82:36:b5:82:72:60:c2:89:98:bc:d6:
70:29:bb:d9:bf:09:f5:3d:3a:92:ab:f0:5f:c2:cb:52:15:fc:
a5:25:b0:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 13:20:58 2025 by rpki-client