Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
File: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft (raw, json)
Hash identifier: Eo+onDWaWigeElOuYX6K7H2IEtIOU+RJOMJKhg6v5Z0=
Subject key identifier: 7E:C0:E3:6A:0B:C8:A8:E6:22:BB:38:03:10:32:D0:44:7F:CD:8E:39
Authority key identifier: 96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
Certificate issuer: /CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Certificate serial: 453C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
Subject info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
Manifest number: 4534
Signing time: Fri 04 Apr 2025 14:50:28 +0000
Manifest this update: Fri 04 Apr 2025 14:50:28 +0000
Manifest next update: Fri 11 Apr 2025 14:50:28 +0000
Files and hashes: 1: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl (hash: Ho955Ow3Ad4zdFt+JBwZZ5Eq7JSsWJoiWGGk3UWlQ6o=)
2: 4kPzvoJVabsWrLN0vJjavmkLF8E.cer (hash: AYWGFvwUByg/qqQVdaQIffRzOvV/lSsH6Y0ettSlDW4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 14:50:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17724 (0x453c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Apr 4 14:50:28 2025 GMT
Not After : Apr 11 14:50:28 2025 GMT
Subject: CN=67eff1b4-73c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ec:f3:06:fa:76:21:97:cf:ef:98:5d:16:da:
59:c2:79:27:7b:13:ed:e4:7c:f9:43:a4:63:4e:bb:
96:6c:30:f1:e8:3a:6f:4c:49:d9:32:c6:a7:0a:88:
68:c7:77:0c:bb:71:15:a1:85:44:d6:3a:6f:4b:e9:
79:d9:7c:e3:42:6c:b9:8c:73:cb:af:6b:03:45:1f:
82:c5:a4:87:32:d6:85:57:5e:f1:04:a0:90:4b:d7:
ec:79:06:7d:ab:a5:59:8d:69:db:09:86:48:a4:10:
42:1a:be:d1:49:e1:35:f5:e2:e9:ae:0b:f4:a3:76:
c1:cc:c2:77:f8:b0:14:b3:c5:68:85:c2:8a:7d:9a:
a7:ac:1f:9f:02:41:a8:cf:cb:37:94:6b:68:3b:fa:
36:7b:6a:45:ba:5a:5b:38:13:68:c7:77:6b:95:e2:
a8:88:af:57:eb:ba:6a:c9:9d:24:13:b3:e3:28:d1:
8d:14:32:60:d3:7f:bb:80:4b:af:d0:47:be:f5:b5:
84:eb:da:f1:9b:f1:6e:a1:b7:97:d4:8e:5c:e3:b5:
9b:0c:8e:3a:bf:cd:f4:30:db:57:28:98:e4:a8:50:
3d:00:96:db:31:37:31:d2:fc:17:e2:4c:f2:94:f4:
1e:38:b0:93:d7:bd:f1:79:65:fc:10:ba:bd:a7:24:
f7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:C0:E3:6A:0B:C8:A8:E6:22:BB:38:03:10:32:D0:44:7F:CD:8E:39
X509v3 Authority Key Identifier:
keyid:96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
06:05:c1:89:e9:1d:db:1b:7b:6f:04:c2:eb:dc:94:23:97:9a:
7b:71:94:11:17:c3:c7:36:c0:27:4b:10:33:41:ad:95:ab:f8:
7c:ea:a7:de:97:92:cc:1d:40:ee:72:92:fc:fa:ce:1a:af:e0:
43:ee:79:b5:b4:1c:a9:84:d0:f5:69:24:d9:f4:82:3d:4d:62:
74:24:78:aa:f3:d2:28:85:bc:d5:16:35:0f:2b:80:b5:0c:7f:
26:c4:ec:6c:e8:34:7a:91:89:16:08:1a:e5:67:9b:13:30:66:
d3:63:fb:ba:38:21:9e:3a:82:98:22:88:12:b2:7c:f3:57:ba:
c3:3b:41:1e:a6:2c:27:46:fb:09:ee:bf:1e:a0:ce:c3:56:e2:
61:1a:84:28:11:5e:11:62:a2:46:1d:e4:24:d9:bd:73:fd:71:
3a:df:b6:b1:a8:b5:2f:40:f9:8f:03:f2:e8:df:a3:73:86:4a:
99:2f:b2:7f:87:78:c0:ab:28:8e:3f:f1:3e:f1:45:4d:67:7a:
31:47:98:e7:f9:ab:29:17:eb:98:7b:b1:e8:fb:ed:2e:fc:e8:
6f:c1:42:d1:3c:3e:0c:8a:80:12:51:f0:19:5c:5a:61:c9:0a:
03:a0:e1:4c:1d:13:29:3b:97:54:c7:7b:c1:f0:b4:05:8a:39:
e9:35:f6:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:45:46 2025 by rpki-client