Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft
File: HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft (raw, json)
Hash identifier: vEMoMY/QmyfoqUUB+TFrN9ikQ9WaBZdx1vyVo3xmsF4=
Subject key identifier: 59:DF:56:A5:28:26:49:9D:17:A2:D2:A8:DB:4D:D8:3C:EE:9F:C0:64
Authority key identifier: 1F:12:EC:2D:43:95:F9:5A:AC:C6:0C:62:EC:DD:82:85:7E:D3:04:12
Certificate issuer: /CN=A91FDD2C/serialNumber=1F12EC2D4395F95AACC60C62ECDD82857ED30412
Certificate serial: 074A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft
Manifest number: 0742
Signing time: Wed 16 Apr 2025 21:24:47 +0000
Manifest this update: Wed 16 Apr 2025 21:24:46 +0000
Manifest next update: Wed 23 Apr 2025 21:24:46 +0000
Files and hashes: 1: HxLsLUOV-Vqsxgxi7N2ChX7TBBI.crl (hash: VcB0FVGYypW291yHmTFnig5XZIAAx0qpk9XjT343Zrw=)
2: D9BD904224B611EBAE734152C4F9AE02.roa (hash: KZro3pgOeUHIq7UlI8pVpaWLtUDP+zywuDR46T5LBrU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.crl
rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 23 Apr 2025 21:24:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1866 (0x74a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FDD2C, serialNumber=1F12EC2D4395F95AACC60C62ECDD82857ED30412
Validity
Not Before: Apr 16 21:24:46 2025 GMT
Not After : Apr 23 21:24:46 2025 GMT
Subject: CN=6800201f-7c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a8:1c:d2:7b:74:f3:35:70:e8:f4:73:ea:9e:
00:9d:68:4a:e9:0b:61:ff:b9:5e:bf:a7:87:49:80:
bb:24:09:a6:23:f1:76:65:6c:bf:40:e6:42:f5:5d:
55:3b:62:bc:21:7a:e7:8f:11:e1:c6:85:ee:17:42:
6e:96:73:3c:e1:74:b2:34:36:e7:8b:52:07:5f:e6:
8c:b1:b7:e5:e4:d5:cf:2f:09:7c:de:ca:36:7e:5c:
1e:07:91:75:a6:60:04:cb:03:a0:b0:26:8d:d0:dd:
18:e4:24:62:3f:5a:91:1d:b0:45:f1:f1:e1:f1:89:
34:3d:2d:21:1d:9f:31:b0:35:f8:95:b6:74:b4:e0:
55:69:92:23:54:7d:45:cd:33:01:2c:ad:3c:58:fc:
6b:4a:b4:9b:fa:77:23:4c:54:73:00:30:f2:b0:9b:
ba:79:4d:2e:70:51:a2:9f:a8:cc:6c:cf:7a:f9:30:
13:13:0a:41:12:56:b8:c9:00:b5:64:01:95:b5:47:
1a:8c:65:53:a8:b0:c6:cc:73:f0:5f:8b:c2:9b:8c:
b4:61:3c:05:37:07:a5:7c:d9:7c:19:69:7a:e5:2f:
29:6a:90:e8:8d:6b:2b:9f:34:85:5b:75:15:cb:96:
31:41:e7:a2:ef:67:1b:5e:40:b7:a2:36:28:18:72:
3e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:DF:56:A5:28:26:49:9D:17:A2:D2:A8:DB:4D:D8:3C:EE:9F:C0:64
X509v3 Authority Key Identifier:
keyid:1F:12:EC:2D:43:95:F9:5A:AC:C6:0C:62:EC:DD:82:85:7E:D3:04:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9d:79:da:89:1c:ca:ca:27:5b:ce:c9:c4:34:f8:ac:a2:25:10:
01:f9:0f:6e:44:70:ff:19:18:ff:fb:b1:49:3b:9c:d3:bb:76:
c2:13:c4:b4:41:6f:73:25:ac:9e:b3:62:cd:bd:b6:e4:7c:ce:
9e:c3:79:25:6e:f8:c2:e3:b2:c8:29:f3:92:d6:96:8b:2a:c0:
7a:36:01:58:27:ca:90:e3:57:80:f5:29:ae:07:01:20:a2:ee:
11:95:3e:41:42:cc:27:1b:4a:47:d3:5d:60:c1:2b:cd:9f:cb:
5f:d1:6c:b6:00:de:0a:6d:5e:b4:b2:9b:da:60:c9:ec:c2:44:
c9:50:69:70:7e:dd:23:ed:5d:c2:a7:b7:fc:f6:c5:e8:99:5a:
b9:15:7d:d8:85:61:03:7f:59:79:3a:74:30:ea:58:fa:72:aa:
99:e6:a3:ac:88:45:0a:f6:42:f1:5c:22:d4:c6:9c:c6:d4:76:
7d:29:2e:e6:53:5d:de:fe:ad:55:48:0b:f5:53:d0:8a:6e:08:
0c:cb:c7:c9:80:46:e3:f8:e4:c4:7c:c0:a5:aa:1e:8f:79:6d:
db:b3:df:98:38:70:25:0b:28:46:7d:47:ff:95:12:e2:85:fe:
0a:d3:fc:db:2a:9b:bd:ce:7d:3e:19:5a:b3:e9:11:84:53:42:
de:cb:9f:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 12:43:24 2025 by rpki-client