Manifest
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
File: hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft (raw, json)
Hash identifier: WnQvYtP814G7O5axxEhNpsUVVcKwpE3TvAbrwXHEJsM=
Subject key identifier: DF:FD:D3:84:2D:4D:88:F3:63:EC:89:C0:3E:B0:EF:F9:43:8E:7A:27
Authority key identifier: 86:96:44:48:77:5B:2F:8F:86:35:9D:54:16:8E:22:0C:1E:87:1B:F5
Certificate issuer: /CN=F36D8D30AF/serialNumber=86964448775B2F8F86359D54168E220C1E871BF5
Certificate serial: 03D8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hpZESHdbL4-GNZ1UFo4iDB6HG_U.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
Manifest number: 03D7
Signing time: Wed 17 Sep 2025 03:15:44 +0000
Manifest this update: Wed 17 Sep 2025 03:15:43 +0000
Manifest next update: Fri 19 Sep 2025 03:15:43 +0000
Files and hashes: 1: hpZESHdbL4-GNZ1UFo4iDB6HG_U.crl (hash: smRkgnZf+9B3G0Q5wkFu1OBDOPVNWJCKtSkw4RMqxFc=)
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
rsync://rpki.afrinic.net/repository/afrinic/hpZESHdbL4-GNZ1UFo4iDB6HG_U.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 19 Sep 2025 03:15:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 984 (0x3d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D8D30AF, serialNumber=86964448775B2F8F86359D54168E220C1E871BF5
Validity
Not Before: Sep 17 03:15:43 2025 GMT
Not After : Sep 19 03:15:43 2025 GMT
Subject: CN=68ca27e0-b47e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:36:45:9e:13:8b:cd:cc:5f:43:03:a0:3f:0c:
e2:44:af:95:b1:f1:23:d5:31:e0:9c:c1:d4:f4:77:
16:79:b8:3c:d7:d7:b8:fb:6b:59:93:97:b4:f2:47:
8e:98:7d:ae:7d:44:cf:fa:ef:ac:78:e9:b5:66:24:
cf:fd:76:2c:57:86:92:d9:c0:22:11:f8:b5:e3:49:
29:0e:76:9b:45:20:a2:bf:92:d6:19:98:40:5d:e3:
59:24:e7:c7:4d:6a:2f:c7:1d:09:a7:24:6b:b5:9d:
2f:30:fa:06:d3:2f:4f:58:4b:a9:14:85:0f:cd:f1:
4d:27:5a:04:4c:53:27:81:d3:30:30:40:fc:10:1d:
47:9c:b9:7a:7a:fc:92:fe:cb:79:f7:90:38:5e:ff:
23:81:e7:77:b9:58:15:9e:d2:6d:bc:04:85:da:1d:
90:ee:79:d6:ca:2d:e3:34:88:d3:c5:8d:07:16:42:
de:a0:1c:3f:b2:5d:54:76:40:f6:ac:0b:3f:a6:15:
44:9d:79:3e:76:62:9e:1e:89:c9:c4:5b:fa:ea:76:
de:0a:7e:19:23:2d:b5:5e:e0:29:77:b1:fd:4b:99:
b9:cd:14:82:25:77:8c:bf:0c:ae:ba:67:c8:1e:1a:
ea:cd:a5:bf:7b:56:75:f4:08:79:ce:36:65:44:a1:
ee:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:FD:D3:84:2D:4D:88:F3:63:EC:89:C0:3E:B0:EF:F9:43:8E:7A:27
X509v3 Authority Key Identifier:
keyid:86:96:44:48:77:5B:2F:8F:86:35:9D:54:16:8E:22:0C:1E:87:1B:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hpZESHdbL4-GNZ1UFo4iDB6HG_U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8D30/5697D44CA6B011ED847B379DF1222468/hpZESHdbL4-GNZ1UFo4iDB6HG_U.mft
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
89:08:2e:8b:50:21:be:80:77:01:37:c4:b5:e6:25:18:58:2e:
62:15:cd:e7:a9:66:1b:3e:93:99:b6:82:18:7f:7b:05:ff:94:
94:49:f0:d1:4f:d7:50:8f:3f:b3:61:dc:66:31:94:0e:ab:8a:
56:00:06:48:df:58:1f:6f:3f:2b:9e:ac:15:0e:d2:38:37:2e:
1b:df:1e:d6:87:b5:6f:3b:c3:40:22:c9:cc:eb:d9:77:53:50:
31:d1:cb:fc:4f:06:48:93:93:91:bc:61:82:6e:44:07:da:4b:
da:b2:a9:8d:f4:c5:25:cd:83:9c:7e:a4:59:01:ea:29:15:4d:
cf:ac:2d:aa:45:8c:55:d0:f9:b5:9c:56:7d:da:1f:1e:fc:5a:
49:68:be:99:f9:1e:74:52:3f:ea:4d:59:55:8c:93:ff:c9:4f:
b8:38:c4:9a:3a:3d:1e:4b:da:5f:11:d2:f2:43:39:85:ea:c2:
34:34:18:cb:7e:7d:16:02:a6:36:c9:91:b6:88:b0:b2:50:1b:
c0:ed:e7:2d:73:ae:7b:fe:d1:df:18:e1:32:96:0d:f1:ea:a6:
89:c8:fd:d5:10:e8:a5:3e:15:10:5d:3a:5b:d0:cb:54:d5:eb:
25:5d:93:a0:24:91:37:22:56:db:59:3c:f7:97:b2:0e:56:51:
a3:f3:01:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 17 23:31:42 2025 by rpki-client