Manifest
$ rpki-client -vvf rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
File: C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft (raw, json)
Hash identifier: TUvRBtqOxUVeGpoNKE6/z9OImtKiO57dqAdb073cWSE=
Subject key identifier: 93:77:84:DF:1B:0C:9D:C8:31:80:81:F5:7E:A6:FF:BB:06:35:B1:5C
Authority key identifier: 0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2
Certificate issuer: /CN=apnic-rpki-root-iana-origin
Certificate serial: F5
Authority info access: rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Subject info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
Manifest number: C3
Signing time: Thu 14 Nov 2024 22:39:40 +0000
Manifest this update: Thu 14 Nov 2024 22:39:40 +0000
Manifest next update: Sat 21 Dec 2024 22:39:40 +0000
Files and hashes: 1: C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl (hash: A3lLxoE4m9Vxyv33i9EX5pSZ+KoHfvHKuACfJd1mvGs=)
2: mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer (hash: DERyYyYeyojAQFzl2zf0lI465bx/4Wz/Xvtdm6FqIQU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 21 Dec 2024 22:39:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 245 (0xf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-iana-origin
Validity
Not Before: Nov 14 22:39:40 2024 GMT
Not After : Dec 21 22:39:40 2024 GMT
Subject: CN=67367c2c-deaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:db:b5:98:f3:6c:9b:e3:51:7b:8e:d7:ca:f3:
ac:07:22:69:4a:a7:bb:d5:49:f9:1a:35:72:b2:a3:
52:0d:73:f0:a9:d7:b7:53:1a:34:b4:c0:fb:ba:73:
f7:b1:25:ae:1d:11:06:05:7b:08:ce:6f:d5:99:93:
c2:ac:67:91:ab:e2:12:d6:40:b7:42:3a:66:bb:6b:
db:c1:72:1a:a2:ca:7c:2e:50:db:71:59:dc:6d:40:
0b:2d:19:60:44:d8:d5:fb:22:03:13:b1:5d:14:37:
af:63:bd:5c:72:19:3b:3d:31:b0:45:de:e5:23:10:
cf:54:60:a8:bd:61:30:2e:39:82:24:b6:b9:ef:16:
ed:9d:35:72:3b:ce:a9:c8:0c:50:2f:86:b0:32:44:
e8:c8:bf:c6:bb:ee:bb:5b:ce:d2:00:1f:6f:9b:9a:
55:02:ac:60:23:87:fd:86:1e:f9:02:22:66:e5:96:
19:e2:9e:07:09:7e:f9:67:6e:ac:11:75:6f:c4:8d:
ee:7f:f1:52:f0:40:2a:10:ab:a1:17:a9:03:69:d4:
ee:db:52:5b:07:3a:4e:47:3e:dc:86:a3:55:79:2b:
82:a8:70:c8:cd:70:80:3d:e3:b4:0a:63:82:1b:05:
eb:31:b8:bb:0a:c1:53:37:0b:8c:a7:71:86:67:45:
38:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:77:84:DF:1B:0C:9D:C8:31:80:81:F5:7E:A6:FF:BB:06:35:B1:5C
X509v3 Authority Key Identifier:
keyid:0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
15:d3:11:6c:80:cb:d8:50:a6:e8:a1:2d:34:24:3b:eb:ea:d5:
87:42:d9:81:c8:bb:17:82:4c:a5:ea:5e:4c:d9:dd:b5:7a:ef:
37:e8:ce:a8:de:a2:d8:52:aa:2f:1a:27:79:24:19:13:ce:48:
2a:9b:14:1f:6a:d2:66:08:1d:36:23:eb:6c:3f:81:f6:2d:b0:
05:33:c7:70:eb:63:d0:d3:96:5c:44:e5:cb:b8:40:07:ee:7b:
00:75:bc:7b:11:3a:c8:81:39:df:8d:94:7f:87:58:8b:bd:66:
a4:44:4d:74:fa:82:6d:b0:1f:a6:a6:b8:0b:23:84:63:de:76:
9d:6c:39:9b:50:22:99:31:7a:99:2e:97:d6:87:50:b9:1d:b2:
d8:0d:6c:97:87:88:a7:10:54:ea:30:d1:11:4a:f3:50:c1:ec:
f6:02:13:c5:58:5d:5b:66:6f:d5:b3:3e:91:7a:62:f7:cf:aa:
64:40:36:a8:7d:32:7e:b7:c9:51:0d:5d:d3:81:86:f9:87:ba:
b7:6c:24:8c:61:eb:c8:fb:9f:e6:7a:2e:63:c9:17:8b:9b:3d:
61:e6:e0:9f:cd:62:17:e9:c7:09:60:5b:e7:c6:e0:45:2c:29:
81:d8:a5:08:13:29:49:c3:bf:44:90:8d:39:3f:75:2c:98:d3:
85:b3:00:2a
-----BEGIN CERTIFICATE-----
MIIE6jCCA9KgAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwJjEkMCIGA1UEAxMbYXBu
aWMtcnBraS1yb290LWlhbmEtb3JpZ2luMB4XDTI0MTExNDIyMzk0MFoXDTI0MTIy
MTIyMzk0MFowGDEWMBQGA1UEAxMNNjczNjdjMmMtZGVhZjCCASIwDQYJKoZIhvcN
AQEBBQADggEPADCCAQoCggEBAOjbtZjzbJvjUXuO18rzrAciaUqnu9VJ+Ro1crKj
Ug1z8KnXt1MaNLTA+7pz97Elrh0RBgV7CM5v1ZmTwqxnkaviEtZAt0I6Zrtr28Fy
GqLKfC5Q23FZ3G1ACy0ZYETY1fsiAxOxXRQ3r2O9XHIZOz0xsEXe5SMQz1RgqL1h
MC45giS2ue8W7Z01cjvOqcgMUC+GsDJE6Mi/xrvuu1vO0gAfb5uaVQKsYCOH/YYe
+QIiZuWWGeKeBwl++WdurBF1b8SN7n/xUvBAKhCroRepA2nU7ttSWwc6Tkc+3Iaj
VXkrgqhwyM1wgD3jtApjghsF6zG4uwrBUzcLjKdxhmdFOEsCAwEAAaOCAi4wggIq
MB0GA1UdDgQWBBSTd4TfGwydyDGAgfV+pv+7BjWxXDAfBgNVHSMEGDAWgBQLnMqQ
3Q16ijdmaxkhf+DYQDe3ojAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5LzgzOERCMjE0MTY2
NTExRTJCM0JDMjg2MTcyRkQxRkYyL0M1ektrTjBOZW9vM1ptc1pJWF9nMkVBM3Q2
SS5jcmwwXQYIKwYBBQUHAQEEUTBPME0GCCsGAQUFBzAChkFyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvYXBuaWMtcnBraS1yb290LWlhbmEtb3JpZ2lu
LmNlcjBKBgNVHSABAf8EQDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0
dHBzOi8vd3d3LmFwbmljLm5ldC9SUEtJL0NQUy5wZGYwfgYIKwYBBQUHAQsEcjBw
MG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv
ODM4REIyMTQxNjY1MTFFMkIzQkMyODYxNzJGRDFGRjIvQzV6S2tOME5lb28zWm1z
WklYX2cyRUEzdDZJLm1mdDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUF
BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBABXT
EWyAy9hQpuihLTQkO+vq1YdC2YHIuxeCTKXqXkzZ3bV67zfozqjeothSqi8aJ3kk
GRPOSCqbFB9q0mYIHTYj62w/gfYtsAUzx3DrY9DTllxE5cu4QAfuewB1vHsROsiB
Od+NlH+HWIu9ZqRETXT6gm2wH6amuAsjhGPedp1sOZtQIpkxepkul9aHULkdstgN
bJeHiKcQVOow0RFK81DB7PYCE8VYXVtmb9WzPpF6YvfPqmRANqh9Mn63yVENXdOB
hvmHurdsJIxh68j7n+Z6LmPJF4ubPWHm4J/NYhfpxwlgW+fG4EUsKYHYpQgTKUnD
v0SQjTk/dSyY04WzACo=
-----END CERTIFICATE-----
Generated at Fri Nov 15 00:26:52 2024 by rpki-client on console-fra.rpki-client.org