Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
File: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft (raw, json)
Hash identifier: 2qtR54Scx1CmIXLBLg3wR7Lz4muZyCj2x17XTb4rLyg=
Subject key identifier: 49:33:3F:EF:81:CC:71:BB:1B:0E:68:C5:05:2E:0B:6D:BD:FA:79:60
Authority key identifier: 96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
Certificate issuer: /CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Certificate serial: 4184
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
Subject info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
Manifest number: 417D
Signing time: Wed 29 May 2024 14:50:39 +0000
Manifest this update: Wed 29 May 2024 14:50:38 +0000
Manifest next update: Wed 05 Jun 2024 14:50:38 +0000
Files and hashes: 1: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl (hash: Q1ufRSKKLJKaan/LP8az6jihdoJIY7Eg6HvxGF6g6kY=)
2: 4kPzvoJVabsWrLN0vJjavmkLF8E.cer (hash: as1OtBtIoUQ64SB6/fpXeVK8c5b9KBZQRzmSHmW0dNQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 05 Jun 2024 14:50:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16772 (0x4184)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Validity
Not Before: May 29 14:50:38 2024 GMT
Not After : Jun 5 14:50:38 2024 GMT
Subject: CN=665740be-3810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:47:7c:8e:ff:08:03:f5:79:b3:55:9c:72:84:
e9:c9:05:f6:61:16:e1:c3:54:5e:a3:6e:2b:05:e2:
e9:cd:39:3d:47:c3:7a:27:25:6d:05:f3:2a:03:60:
9d:0d:ed:4e:63:ff:41:39:d2:16:43:b4:cc:14:f8:
fc:4e:2e:da:48:51:2c:6b:0b:74:7f:4d:39:f4:30:
e1:31:c3:5a:6f:5e:88:41:c4:03:b2:ee:bc:a4:0c:
1c:dc:01:b9:02:cc:58:87:1d:b7:86:d4:8a:8d:5f:
38:80:11:c8:93:23:2f:16:e3:2f:04:93:63:bf:8d:
cd:de:1f:18:09:d4:15:d3:c6:e8:10:b7:0d:20:f7:
b5:17:ce:33:ff:00:5c:cb:aa:29:bb:9e:20:9d:54:
ca:16:89:54:63:97:18:8d:74:18:39:93:47:17:40:
53:cf:0c:f5:77:8c:2b:a3:0f:84:7e:a4:9e:49:3a:
0c:b0:30:85:13:b4:9c:00:d3:1b:a4:a0:b4:d0:6b:
71:1e:ba:63:a2:ad:b9:26:fe:57:d4:ef:b7:44:9a:
fa:84:2b:28:f1:85:e2:53:51:57:99:59:a5:13:36:
4c:06:44:c5:24:01:9c:1f:9f:7a:e8:99:4e:cb:05:
70:88:33:ee:a2:8f:fd:6d:d5:eb:82:36:e6:32:9d:
cf:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:33:3F:EF:81:CC:71:BB:1B:0E:68:C5:05:2E:0B:6D:BD:FA:79:60
X509v3 Authority Key Identifier:
keyid:96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
13:b4:57:e6:9c:fb:31:bd:cc:b6:09:d7:46:82:52:47:42:f5:
4e:19:77:df:57:4e:c9:6b:8d:d6:84:87:68:16:1c:fc:0c:39:
92:9d:73:b9:d8:3d:09:56:1f:b2:1a:de:c9:57:3a:f4:6b:a6:
88:78:0b:5c:09:6b:01:0b:26:74:22:23:6d:f4:88:62:82:5d:
6a:26:62:9c:31:52:b3:6f:00:31:0d:78:60:14:72:75:64:62:
8c:49:3a:fa:39:b7:70:3a:78:22:62:33:50:68:9c:3d:a1:17:
a0:b1:89:c5:3a:3e:5a:a8:1e:1d:b8:f0:bc:e2:1f:30:fc:fc:
ca:49:44:c4:ba:ea:6f:3f:87:d7:79:7f:4e:4f:d9:63:09:8a:
07:76:7f:84:79:18:66:af:86:68:40:42:7e:b1:9e:66:ae:e1:
ca:fa:4a:ca:6e:f1:8b:55:22:83:9d:10:1c:c9:3a:a3:5e:db:
7b:c2:cf:84:07:3d:6f:1c:e1:49:10:e5:ea:30:f8:e0:4d:8f:
0b:fa:f2:ce:98:42:90:a3:2c:a4:4b:22:df:e8:c1:ba:34:11:
a1:4a:0c:2d:1e:70:f7:9d:72:bb:a5:9c:b7:a7:23:83:04:61:
c1:9d:44:62:21:8c:74:dc:6a:94:8d:3b:7c:52:50:00:4e:70:
1a:80:b2:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 29 17:55:03 2024 by rpki-client on console-ams.rpki-client.org