Manifest
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3624132/8BFBD952D1AC11EFA5D11655762E951A/ksorQe7D4BoZOJ4iIIisP8OhSO0.mft
File: ksorQe7D4BoZOJ4iIIisP8OhSO0.mft (raw, json)
Hash identifier: PqxbbFeWeMe2U/GEuf5smFYFHB4S6uviJsalexmS5DI=
Subject key identifier: 7D:AE:4B:95:A9:9F:2E:73:FB:66:E0:33:C0:4B:12:0D:F1:54:C6:25
Authority key identifier: 92:CA:2B:41:EE:C3:E0:1A:19:38:9E:22:20:88:AC:3F:C3:A1:48:ED
Certificate issuer: /CN=F3624132AF/serialNumber=92CA2B41EEC3E01A19389E222088AC3FC3A148ED
Certificate serial: CE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ksorQe7D4BoZOJ4iIIisP8OhSO0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3624132/8BFBD952D1AC11EFA5D11655762E951A/ksorQe7D4BoZOJ4iIIisP8OhSO0.mft
Manifest number: CC
Signing time: Thu 31 Jul 2025 05:16:53 +0000
Manifest this update: Thu 31 Jul 2025 05:16:53 +0000
Manifest next update: Sat 02 Aug 2025 05:16:53 +0000
Files and hashes: 1: ksorQe7D4BoZOJ4iIIisP8OhSO0.crl (hash: 7RwZHjr/uNUUyu7kPrwtA9ffnFU7Cg5WtHDRBoLQ/MQ=)
2: 2C6E0438D1B111EFAE9F9072762E951A.roa (hash: B0CbiM/bAowuKqrYGTi8MxK8c+r/1xQQXbcFOdolRIY=)
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3624132/8BFBD952D1AC11EFA5D11655762E951A/ksorQe7D4BoZOJ4iIIisP8OhSO0.crl
rsync://rpki.afrinic.net/repository/member_repository/F3624132/8BFBD952D1AC11EFA5D11655762E951A/ksorQe7D4BoZOJ4iIIisP8OhSO0.mft
rsync://rpki.afrinic.net/repository/afrinic/ksorQe7D4BoZOJ4iIIisP8OhSO0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 02 Aug 2025 00:08:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206 (0xce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3624132AF, serialNumber=92CA2B41EEC3E01A19389E222088AC3FC3A148ED
Validity
Not Before: Jul 31 05:16:53 2025 GMT
Not After : Aug 2 05:16:53 2025 GMT
Subject: CN=688afc45-803d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f3:11:1f:f1:cf:5d:52:39:47:18:0c:04:17:
66:30:3d:09:31:41:6d:08:60:2b:68:a7:34:fd:de:
b9:b5:a6:dc:41:b2:dd:69:0e:a1:a3:23:01:76:fb:
30:08:d2:b1:24:b3:9d:ab:93:53:41:4e:0c:30:2d:
24:04:41:6c:26:05:f1:ee:7a:d1:6f:f2:c4:a0:cf:
4f:ac:f2:4d:f7:a9:c1:ea:0d:82:5d:e1:72:15:7d:
82:58:a1:d9:5d:22:33:70:1a:8a:f8:6d:d7:ce:09:
cc:58:e4:62:14:35:50:c7:bc:4a:c4:42:55:7c:e3:
9b:40:b4:a2:4b:05:da:f9:94:a6:df:6f:36:b3:fe:
58:42:ca:9c:93:a6:7d:bb:7e:7f:a9:61:d6:3d:1b:
05:f6:40:86:c9:bf:e6:d9:e3:43:b3:91:4f:9e:e2:
d4:c9:fa:46:cd:1c:eb:12:85:9a:10:3c:12:86:93:
ee:42:a3:0f:ae:7d:c1:07:e1:77:d1:6e:db:04:b3:
e4:3d:28:3d:ee:43:84:9c:94:23:48:57:d2:a7:94:
97:40:32:f7:52:15:13:88:0f:5e:89:30:21:1c:80:
46:09:bb:7d:6c:76:cf:d2:0d:64:92:2d:45:f4:15:
88:e7:fc:65:24:8e:95:f8:e8:d5:4d:59:0e:ae:a2:
f9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:AE:4B:95:A9:9F:2E:73:FB:66:E0:33:C0:4B:12:0D:F1:54:C6:25
X509v3 Authority Key Identifier:
keyid:92:CA:2B:41:EE:C3:E0:1A:19:38:9E:22:20:88:AC:3F:C3:A1:48:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3624132/8BFBD952D1AC11EFA5D11655762E951A/ksorQe7D4BoZOJ4iIIisP8OhSO0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ksorQe7D4BoZOJ4iIIisP8OhSO0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3624132/8BFBD952D1AC11EFA5D11655762E951A/ksorQe7D4BoZOJ4iIIisP8OhSO0.mft
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4e:0a:c5:fc:54:aa:ae:37:2a:5c:2e:a4:8c:6e:52:0c:c6:28:
b8:d6:5d:41:d6:8e:04:c5:7f:88:26:a6:ad:af:20:98:bb:29:
92:68:4e:9c:af:7a:13:15:b1:60:9a:e0:cb:04:e7:7d:4f:91:
1b:58:17:14:9d:c0:4d:e9:9b:f8:1e:5a:c5:ec:83:7f:4e:53:
1d:2f:22:56:07:79:c2:65:b4:38:ab:be:2c:a0:49:2f:0b:c6:
03:1c:e1:c5:dc:b4:28:f6:1f:69:6e:a2:b7:06:e0:a1:44:e6:
a9:08:80:48:47:e4:bc:2c:9e:44:b9:a4:7a:e0:f6:b8:a9:91:
59:27:46:bc:68:35:1e:10:d3:d8:d5:f2:a0:22:1f:c8:28:7a:
4c:5e:87:9e:dd:f7:f7:74:1e:f3:ef:4a:7a:7f:25:7b:3e:45:
cc:e5:36:72:bf:52:61:f3:96:55:89:d1:74:b0:5b:b3:1e:80:
70:53:e8:0b:d3:d9:a7:4b:47:ee:75:46:3e:19:17:ae:51:e7:
a7:13:db:0d:61:9a:45:ec:56:83:f9:c2:d5:9b:39:68:fe:07:
82:9a:e9:59:2e:ba:d3:12:f0:d5:42:c2:32:08:23:d3:d3:c6:
69:d6:08:2a:78:fe:1f:31:69:16:08:19:f1:49:53:d3:c6:4b:
98:e9:a2:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 11:15:32 2025 by rpki-client