Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft
File: 8XiofFRzBDe6WfqpzhhP-HkP5PE.mft (raw, json)
Hash identifier: Xduug7TFrAtt53hkF3Wyc+0tWiBDjlGY1ueNx/KRGhY=
Subject key identifier: D8:27:D3:7E:8C:94:46:37:A3:16:06:12:FB:48:B9:B3:97:D9:1D:75
Authority key identifier: F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1
Certificate issuer: /CN=A91D6792/serialNumber=F178A87C54730437BA59FAA9CE184FF8790FE4F1
Certificate serial: 04BD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft
Manifest number: 04B8
Signing time: Tue 08 Apr 2025 23:36:35 +0000
Manifest this update: Tue 08 Apr 2025 23:36:35 +0000
Manifest next update: Tue 15 Apr 2025 23:36:34 +0000
Files and hashes: 1: 8XiofFRzBDe6WfqpzhhP-HkP5PE.crl (hash: Wm1A2MrzExYdGJjv575T7UWv1Md6X1SEsKUMR4MZqas=)
2: CB89040A73EA11EC8A823312C4F9AE02.roa (hash: 6pWGQwdhpFKj5uyRVvtM8M7iiAHBMFerXsGqI0l0KTo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl
rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 23:36:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1213 (0x4bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D6792
Validity
Not Before: Apr 8 23:36:35 2025 GMT
Not After : Apr 15 23:36:34 2025 GMT
Subject: CN=67f5b303-cc53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5f:66:94:a6:b8:b9:c4:6f:b6:d7:15:eb:87:
9c:6c:1c:25:9c:ca:a5:27:1e:f0:32:71:e9:ba:fd:
33:f1:f0:bc:37:73:55:3c:64:7b:a1:01:0c:d9:0a:
ee:48:c6:12:99:8a:97:30:e0:56:59:98:b3:df:a9:
38:9d:77:ff:0f:79:40:06:c1:42:6b:ef:57:2c:75:
65:45:cb:d4:65:0d:44:34:5b:82:e5:4b:69:9e:34:
e4:fe:65:3e:0c:ea:0c:34:fc:d6:9c:71:73:ea:53:
a3:c2:a5:16:f7:12:19:33:07:94:c2:d4:27:97:5a:
40:c8:56:79:1b:22:2e:7b:3d:3d:23:de:d8:f5:00:
cc:98:a8:b0:17:8a:3a:63:2d:9e:64:2d:e7:1d:06:
04:34:74:26:d0:7f:cf:97:fd:16:20:43:fe:b6:49:
77:2e:7f:58:54:24:e6:ef:8b:b4:48:b4:ec:d9:fd:
02:e6:cb:76:b3:1f:bb:03:54:12:72:92:e8:a2:fd:
04:a1:a6:e7:50:6b:dc:6a:e1:bd:b1:a2:9a:90:3f:
f6:74:2f:08:9d:af:8a:c0:e7:02:42:d3:41:51:ab:
0f:0a:2e:10:0b:36:a4:56:14:06:51:ef:22:e4:0c:
de:df:ea:ea:0d:52:39:cd:e2:43:2e:94:6d:d1:97:
44:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:27:D3:7E:8C:94:46:37:A3:16:06:12:FB:48:B9:B3:97:D9:1D:75
X509v3 Authority Key Identifier:
keyid:F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6f:95:32:61:14:38:d5:25:52:22:74:f1:e0:42:3a:76:35:9a:
1b:dc:87:df:62:1a:44:f8:0e:7c:d4:7a:42:44:a8:20:97:aa:
95:2b:5c:ea:56:14:f8:72:55:01:f7:f2:25:33:c8:92:78:e2:
07:a5:da:eb:19:0c:81:ed:ee:31:a4:14:46:34:8b:a3:55:f2:
1c:44:c6:ce:8c:97:c2:89:d8:4c:ab:34:f9:90:37:71:76:29:
52:fd:76:5e:95:a4:fb:b9:06:23:52:27:89:fe:ab:b3:fa:b4:
a2:23:83:06:60:d1:a5:48:42:cd:d5:76:ee:e9:ad:9d:ac:c9:
bd:2e:9f:d0:7b:32:fb:c9:eb:6d:58:64:19:81:60:f0:5f:f8:
13:5a:9f:56:b8:63:32:49:82:df:79:aa:60:76:e7:64:11:5b:
9e:9a:72:65:b1:8f:13:e6:80:a4:34:0f:d9:75:e1:52:ec:c4:
3e:51:0b:c4:fb:9a:a6:f4:aa:7b:13:01:7e:ae:37:57:77:9d:
b2:62:53:a7:57:08:2c:61:0b:eb:51:87:30:0a:93:4d:8b:e1:
6a:38:67:a4:1b:bd:39:d5:1f:75:30:cb:d5:15:f5:a4:c5:a4:
6a:2f:03:71:43:59:40:b0:33:f5:be:b7:40:b7:17:7e:c1:5d:
76:de:62:09
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDY3OTIxMTAvBgNVBAUTKEYxNzhBODdDNTQ3MzA0MzdCQTU5RkFBOUNFMTg0RkY4
NzkwRkU0RjEwHhcNMjUwNDA4MjMzNjM1WhcNMjUwNDE1MjMzNjM0WjAYMRYwFAYD
VQQDEw02N2Y1YjMwMy1jYzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzl9mlKa4ucRvttcV64ecbBwlnMqlJx7wMnHpuv0z8fC8N3NVPGR7oQEM2Qru
SMYSmYqXMOBWWZiz36k4nXf/D3lABsFCa+9XLHVlRcvUZQ1ENFuC5UtpnjTk/mU+
DOoMNPzWnHFz6lOjwqUW9xIZMweUwtQnl1pAyFZ5GyIuez09I97Y9QDMmKiwF4o6
Yy2eZC3nHQYENHQm0H/Pl/0WIEP+tkl3Ln9YVCTm74u0SLTs2f0C5st2sx+7A1QS
cpLoov0EoabnUGvcauG9saKakD/2dC8Ina+KwOcCQtNBUasPCi4QCzakVhQGUe8i
5Aze3+rqDVI5zeJDLpRt0ZdEjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgn036M
lEY3oxYGEvtIubOX2R11MB8GA1UdIwQYMBaAFPF4qHxUcwQ3uln6qc4YT/h5D+Tx
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjc5Mi9EQkYxQzc3MjIx
RUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJEZTZXZnFwemhoUC1Ia1A1
UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzhYaW9mRlJ6QkRlNldmcXB6aGhQLUhrUDVQRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
Njc5Mi9EQkYxQzc3MjIxRUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJE
ZTZXZnFwemhoUC1Ia1A1UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBvlTJhFDjVJVIidPHgQjp2NZob3IffYhpE+A581HpCRKggl6qVK1zq
VhT4clUB9/IlM8iSeOIHpdrrGQyB7e4xpBRGNIujVfIcRMbOjJfCidhMqzT5kDdx
dilS/XZelaT7uQYjUieJ/quz+rSiI4MGYNGlSELN1Xbu6a2drMm9Lp/QezL7yett
WGQZgWDwX/gTWp9WuGMySYLfeapgdudkEVuemnJlsY8T5oCkNA/ZdeFS7MQ+UQvE
+5qm9Kp7EwF+rjdXd52yYlOnVwgsYQvrUYcwCpNNi+FqOGekG7051R91MMvVFfWk
xaRqLwNxQ1lAsDP1vrdAtxd+wV123mIJ
-----END CERTIFICATE-----
Generated at Thu Apr 10 05:04:17 2025 by rpki-client