Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft
File: O4dpDvQFVnODtvcv3TARYM6CHys.mft (raw, json)
Hash identifier: UqaJsXmlcZGYgLFCRcO2d0faIIxfUYFquoHeXyeCtZQ=
Subject key identifier: 83:D6:38:31:6D:D5:17:03:2C:5C:90:56:49:26:32:BC:D8:19:8D:EF
Authority key identifier: 3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B
Certificate issuer: /CN=A91F81AD/serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B
Certificate serial: 0216
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft
Manifest number: 0210
Signing time: Sun 13 Apr 2025 01:37:33 +0000
Manifest this update: Sun 13 Apr 2025 01:37:33 +0000
Manifest next update: Sun 20 Apr 2025 01:37:33 +0000
Files and hashes: 1: O4dpDvQFVnODtvcv3TARYM6CHys.crl (hash: OSKqg16lK70S68Z1jJumhpkB+Pp8bOUCdFcielKAXmc=)
2: F9424C6C80FA11ED9B35954DC4F9AE02.roa (hash: GNMO+8voOxNBOb5ixsUP/MtpdlZbS27Vb7o1TavyMdI=)
3: F86A2F7680FA11ED9B35954DC4F9AE02.roa (hash: vq0srwLbA5KHVy52W5biflCYsAzYNYb+3xV7SnajFW0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl
rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 01:37:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 534 (0x216)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F81AD, serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B
Validity
Not Before: Apr 13 01:37:33 2025 GMT
Not After : Apr 20 01:37:33 2025 GMT
Subject: CN=67fb155d-36ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:d5:40:9a:80:63:91:d5:0e:aa:52:7d:d7:42:
fe:88:e1:7f:b1:a8:8b:09:38:03:8e:5e:e4:42:b9:
df:83:c0:92:02:8a:c6:75:40:ab:26:12:de:07:4a:
cf:6b:49:25:c6:c2:ef:7b:30:47:15:54:6e:35:fb:
a4:40:6f:f0:c9:8c:4f:4f:e1:ca:d9:fc:b6:f4:76:
8a:b1:94:c7:b3:a6:13:69:24:9f:61:1e:4a:3f:49:
cc:a3:c9:ff:20:5b:6c:db:6e:7c:46:26:49:52:c2:
4f:1a:d0:3a:81:a6:c9:6d:f3:1c:e7:9a:22:f5:1f:
ef:0e:ce:47:32:76:38:31:63:67:ac:be:48:d6:15:
3a:54:af:3f:3c:2a:8a:2c:19:fb:85:a0:18:57:9b:
dd:65:b3:7a:67:0e:64:74:e9:45:55:0a:90:98:eb:
83:1f:36:30:4b:97:c0:a1:86:c3:aa:56:8b:bb:69:
c5:ea:19:9a:1f:08:cd:74:f3:24:b7:8f:86:d1:48:
7c:03:a6:57:a8:c6:f5:60:96:be:c9:b9:f6:df:2b:
77:1b:24:c2:34:90:9c:1d:d5:9f:e3:40:b2:98:a9:
68:84:fe:de:2d:5f:fe:e3:96:4e:ca:08:2e:1a:a0:
eb:31:26:0e:fe:11:1c:be:c9:42:9b:d7:75:12:35:
a4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:D6:38:31:6D:D5:17:03:2C:5C:90:56:49:26:32:BC:D8:19:8D:EF
X509v3 Authority Key Identifier:
keyid:3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
00:b9:0e:99:1d:53:c8:08:e9:39:23:ea:48:93:f0:41:9a:9c:
b9:47:d0:5c:ce:14:93:af:9b:9b:3d:f0:56:ac:59:a7:ce:fc:
4b:38:51:d2:cf:cb:e8:49:ea:f4:aa:b6:2a:b6:2a:b1:06:b1:
4d:a4:38:18:1c:3a:8f:85:ee:59:79:fd:62:6f:d1:e8:97:05:
7d:38:df:ce:16:53:d5:ab:63:c0:7f:72:c9:96:87:96:d1:1f:
55:99:ff:4b:d7:cf:50:a0:0a:af:de:44:85:6e:a6:bb:0c:1d:
77:c8:86:d4:7a:3a:7b:ee:06:d9:fc:e9:c3:68:0a:9d:86:f6:
6a:bf:3c:0b:a2:69:af:08:bb:d0:3b:b5:ba:a9:d7:ac:f5:58:
61:e1:3d:c6:6d:14:d1:a4:73:0d:4c:e3:ed:b7:02:8a:34:e5:
8c:9c:aa:e3:80:d4:05:88:db:f4:5c:57:25:7e:36:77:0b:34:
1f:2f:d6:d9:c3:02:a1:26:69:a2:ef:f5:68:9b:6e:6e:f5:e1:
df:f3:ec:c2:6f:fd:f2:2c:a6:06:03:7a:57:e8:71:2a:24:8b:
13:ce:9e:96:8e:80:eb:5b:6e:fc:71:ad:c6:57:df:11:70:d1:
45:ad:bf:8c:98:40:13:28:9b:74:24:eb:a3:06:b8:59:0b:48:
3a:eb:8e:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 13:35:06 2025 by rpki-client