Manifest
$ rpki-client -vvf rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
File: C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft (raw, json)
Hash identifier: dLgokDQ4vB7v7BGXjWWUXZQGTPGOGlOk+gIxhbXRq7E=
Subject key identifier: F0:F2:94:3C:DF:EF:6F:0C:F1:25:E3:43:A3:72:EC:D0:B9:EE:53:34
Authority key identifier: 0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2
Certificate issuer: /CN=apnic-rpki-root-iana-origin
Certificate serial: FD
Authority info access: rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Subject info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
Manifest number: C9
Signing time: Wed 05 Mar 2025 07:53:55 +0000
Manifest this update: Wed 05 Mar 2025 07:53:54 +0000
Manifest next update: Sat 12 Apr 2025 07:53:54 +0000
Files and hashes: 1: C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl (hash: EbpveH83vDc1LXt11Gq7MVF9bcTwU63tKhFo4Rukn/s=)
2: mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer (hash: RvLioQUJYOx3lSLbpD/vdlVYJnUihm1q0DARHdn3xcs=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 12 Apr 2025 07:53:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253 (0xfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-iana-origin
Validity
Not Before: Mar 5 07:53:54 2025 GMT
Not After : Apr 12 07:53:54 2025 GMT
Subject: CN=67c80312-25f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:99:8e:eb:e6:98:9b:fe:c1:32:a6:e7:27:c3:
86:69:82:d5:7b:01:8f:52:9b:c5:bc:c9:46:dc:34:
37:10:98:74:d2:70:2e:5a:7f:26:6a:3c:8d:89:df:
6d:b1:6e:07:0f:15:44:2e:df:27:cc:da:85:4f:07:
18:5a:3b:b4:a4:bd:ee:25:03:bd:4b:5a:29:da:92:
48:43:90:b8:4c:40:d3:5a:fd:ce:62:dd:db:39:4a:
6e:f1:6d:7f:2d:fe:17:29:56:4b:ee:78:19:6e:69:
c6:94:3c:bf:24:a1:e7:52:66:7c:13:d1:8a:60:9f:
e7:a6:9c:d7:15:93:2f:6b:29:a8:18:cf:35:dd:7e:
9b:17:6a:e2:90:48:0b:0f:50:33:76:c9:d3:23:dd:
14:da:53:bf:19:86:30:27:46:fe:76:73:44:9b:41:
aa:14:c0:19:77:97:9e:08:fa:4d:43:ea:db:e4:e2:
e9:14:f7:5f:01:b8:b9:b7:80:1f:6c:04:8b:7f:a7:
df:f6:16:fc:0c:f9:dc:d8:c7:ec:19:0f:b6:9f:32:
ee:3f:36:19:0f:9d:61:9a:bb:77:ae:b6:62:39:52:
16:4e:54:92:76:a1:f7:4b:77:eb:c1:c5:a5:ab:aa:
1a:92:ad:dc:f3:e3:03:3c:67:11:39:48:d8:bb:07:
29:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:F2:94:3C:DF:EF:6F:0C:F1:25:E3:43:A3:72:EC:D0:B9:EE:53:34
X509v3 Authority Key Identifier:
keyid:0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5b:fa:98:37:90:50:a7:04:bb:a2:3f:1f:d7:51:a3:6a:cf:ce:
0c:aa:18:96:67:95:c1:c7:39:44:49:83:31:32:f7:0d:31:6b:
a4:a5:5e:6b:6e:48:91:0b:a8:fa:9d:cd:1e:da:3f:b6:c3:62:
1d:53:96:23:01:cc:4a:88:f2:8c:4d:00:39:30:11:c7:b1:36:
4a:8a:d1:eb:ba:68:5f:d9:72:d9:9c:7a:e0:7f:00:f9:67:05:
f4:64:8d:56:2b:23:c4:99:ad:1a:05:90:ba:5e:2d:77:63:29:
57:92:d8:72:38:97:00:37:77:a7:b8:b2:45:c3:ba:ea:6e:6a:
79:ed:a3:23:d9:04:aa:b8:a3:3e:ce:7b:4b:76:a7:9c:82:fd:
f8:2c:24:b6:7f:69:47:20:5e:ad:e3:4a:24:05:f8:51:69:6d:
b0:50:a9:ab:88:6b:b5:3a:64:dc:6b:22:36:d1:2e:88:c7:99:
d6:fb:b4:63:2e:74:ee:b5:9c:42:b4:71:0e:a7:71:71:c1:17:
45:83:e6:ae:c9:9c:7d:dd:84:5a:27:66:97:e2:f8:51:ee:7e:
cf:1d:db:4f:de:00:df:30:f3:62:de:e3:2c:ec:27:e8:cd:31:
76:93:3c:28:41:08:5b:79:d8:0c:1d:b1:99:1b:d5:d4:b9:4d:
ba:97:3a:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:36:59 2025 by rpki-client