Manifest
$ rpki-client -vvf rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
File: C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft (raw, json)
Hash identifier: zOm2Ix/Dyn2l9moKY17+yTkpF2ugQyqKpfCab51yfSU=
Subject key identifier: ED:13:C9:B3:10:C9:75:AF:B6:FB:CF:98:21:59:A2:CE:AA:8E:8E:20
Authority key identifier: 0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2
Certificate issuer: /CN=apnic-rpki-root-iana-origin
Certificate serial: DC
Authority info access: rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Subject info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
Manifest number: AE
Signing time: Mon 08 May 2023 23:30:47 +0000
Manifest this update: Mon 08 May 2023 23:30:47 +0000
Manifest next update: Thu 15 Jun 2023 23:30:46 +0000
Files and hashes: 1: C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl (hash: fHUxEAjvggD24lHFh0NYGu2EwTRi4gt/VwyguoEyqtQ=)
2: mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer (hash: 8m9lQm6/3rY/Lpkt8gs/eKQshQxj9H8qy1+uGY6UY1A=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 15 Jun 2023 23:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 220 (0xdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-iana-origin
Validity
Not Before: May 8 23:30:47 2023 GMT
Not After : Jun 15 23:30:46 2023 GMT
Subject: CN=64598627-ae0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3e:81:78:3a:f9:18:70:93:d3:b8:56:e4:15:
19:5b:f6:e6:d1:a1:4a:aa:2a:f6:68:d7:d8:7a:02:
d2:2b:fa:38:5d:71:26:15:df:01:47:f0:f0:12:29:
c5:d8:de:94:51:14:c7:64:f2:d3:d4:f4:23:cf:24:
f6:74:70:52:fa:60:9d:36:b0:e6:61:ed:3a:93:b4:
55:0b:0a:fe:f7:e5:27:1f:dc:68:dd:60:40:c6:b4:
25:2e:a7:07:b9:3c:c0:ea:e1:ed:ba:8b:69:83:7f:
f6:7a:6c:dd:95:59:4f:c6:3a:85:27:1a:60:aa:46:
5a:5d:21:fa:b0:65:6c:b9:b0:9b:6b:30:0d:5b:9c:
1b:bd:2b:f5:b7:a2:59:64:07:54:14:f4:3e:26:1e:
f6:d5:11:f2:69:86:f3:dd:45:8f:b4:74:3b:c1:e4:
3d:6a:44:96:9d:b0:ba:08:20:66:b6:ac:1c:8f:ff:
47:3d:4d:76:37:19:c6:47:2e:6b:2f:41:b0:a0:c1:
9e:a5:b4:3a:64:ca:0b:d0:e8:5c:a9:b0:e1:74:38:
68:f0:a1:6b:25:fa:00:a8:ac:68:e8:24:77:05:18:
ca:df:21:3e:40:53:b5:45:d2:3b:35:1f:8e:8f:63:
81:20:c9:89:7f:c8:a6:cf:cd:f9:70:ad:f2:b5:d6:
d6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:13:C9:B3:10:C9:75:AF:B6:FB:CF:98:21:59:A2:CE:AA:8E:8E:20
X509v3 Authority Key Identifier:
keyid:0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
54:5d:69:9e:22:5c:7d:72:71:c1:c9:89:9d:6c:c3:d3:7d:92:
19:9d:3d:63:b7:5b:d3:c0:bd:79:e5:2e:4e:e3:de:8a:e2:46:
d4:26:57:70:b5:36:38:bd:56:88:cc:2e:7a:5f:f2:89:53:ec:
a4:b5:9f:ba:d4:53:52:54:87:e5:14:3d:95:95:3c:ba:6f:c8:
9f:6c:a1:b2:9d:aa:e8:a2:78:77:c9:5d:de:33:a8:86:ed:4b:
6a:46:ca:5f:0b:f3:9e:48:86:73:91:86:f1:42:09:4e:e4:74:
62:d9:b1:f4:7e:3f:f8:74:06:a3:36:e9:e3:d0:8d:e8:5f:54:
42:ab:52:61:a2:24:6c:05:5a:07:20:4f:65:7e:96:f8:86:d8:
dd:21:d8:ab:c8:6b:5e:17:3d:9c:17:c7:8c:03:f6:60:46:cd:
40:ea:0d:35:0a:3e:43:6d:9b:8f:9f:4c:cf:8b:c4:c6:50:50:
ff:90:4f:e1:0a:a3:1f:4f:34:8c:a9:5a:c5:61:2e:c7:5f:26:
da:c6:aa:76:85:6a:93:9a:6b:ea:ba:28:b9:67:c1:c4:68:a2:
26:57:df:14:b6:a5:42:47:31:88:0f:99:ae:d7:41:3e:35:76:
92:35:1e:f1:33:05:f2:7c:0c:9b:f7:6a:69:4d:af:35:55:a5:
6b:75:de:dd
-----BEGIN CERTIFICATE-----
MIIE6jCCA9KgAwIBAgICANwwDQYJKoZIhvcNAQELBQAwJjEkMCIGA1UEAxMbYXBu
aWMtcnBraS1yb290LWlhbmEtb3JpZ2luMB4XDTIzMDUwODIzMzA0N1oXDTIzMDYx
NTIzMzA0NlowGDEWMBQGA1UEAxMNNjQ1OTg2MjctYWUwYzCCASIwDQYJKoZIhvcN
AQEBBQADggEPADCCAQoCggEBAK8+gXg6+Rhwk9O4VuQVGVv25tGhSqoq9mjX2HoC
0iv6OF1xJhXfAUfw8BIpxdjelFEUx2Ty09T0I88k9nRwUvpgnTaw5mHtOpO0VQsK
/vflJx/caN1gQMa0JS6nB7k8wOrh7bqLaYN/9nps3ZVZT8Y6hScaYKpGWl0h+rBl
bLmwm2swDVucG70r9beiWWQHVBT0PiYe9tUR8mmG891Fj7R0O8HkPWpElp2wuggg
ZrasHI//Rz1NdjcZxkcuay9BsKDBnqW0OmTKC9DoXKmw4XQ4aPChayX6AKisaOgk
dwUYyt8hPkBTtUXSOzUfjo9jgSDJiX/Ips/N+XCt8rXW1mECAwEAAaOCAi4wggIq
MB0GA1UdDgQWBBTtE8mzEMl1r7b7z5ghWaLOqo6OIDAfBgNVHSMEGDAWgBQLnMqQ
3Q16ijdmaxkhf+DYQDe3ojAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5LzgzOERCMjE0MTY2
NTExRTJCM0JDMjg2MTcyRkQxRkYyL0M1ektrTjBOZW9vM1ptc1pJWF9nMkVBM3Q2
SS5jcmwwXQYIKwYBBQUHAQEEUTBPME0GCCsGAQUFBzAChkFyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvYXBuaWMtcnBraS1yb290LWlhbmEtb3JpZ2lu
LmNlcjBKBgNVHSABAf8EQDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0
dHBzOi8vd3d3LmFwbmljLm5ldC9SUEtJL0NQUy5wZGYwfgYIKwYBBQUHAQsEcjBw
MG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv
ODM4REIyMTQxNjY1MTFFMkIzQkMyODYxNzJGRDFGRjIvQzV6S2tOME5lb28zWm1z
WklYX2cyRUEzdDZJLm1mdDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUF
BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAFRd
aZ4iXH1yccHJiZ1sw9N9khmdPWO3W9PAvXnlLk7j3oriRtQmV3C1Nji9VojMLnpf
8olT7KS1n7rUU1JUh+UUPZWVPLpvyJ9sobKdquiieHfJXd4zqIbtS2pGyl8L855I
hnORhvFCCU7kdGLZsfR+P/h0BqM26ePQjehfVEKrUmGiJGwFWgcgT2V+lviG2N0h
2KvIa14XPZwXx4wD9mBGzUDqDTUKPkNtm4+fTM+LxMZQUP+QT+EKox9PNIypWsVh
LsdfJtrGqnaFapOaa+q6KLlnwcRooiZX3xS2pUJHMYgPma7XQT41dpI1HvEzBfJ8
DJv3amlNrzVVpWt13t0=
-----END CERTIFICATE-----
Generated at Tue May 9 01:52:53 2023 by rpki-client on console-fra.rpki-client.org