![](/console.gif)
Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: uOzOeYDtp1jOoGgS+aZkoOw3Xr77d2RRMINjjRUvi+s=
Subject key identifier: D4:EB:F1:A9:B5:E1:B7:3B:CE:A3:F5:B7:C0:91:05:6F:E4:40:9B:72
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0339
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 0197
Signing time: Tue 09 Jul 2024 06:34:35 +0000
Manifest this update: Tue 09 Jul 2024 06:34:34 +0000
Manifest next update: Fri 16 Aug 2024 06:34:34 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: KiTdH44Nsoc2LJakt7KNzOhvhfU0YPj3VVSTz5sw9z0=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: gMkNwePdBF1NT/8LHBiK2+zBiy3mBQwZn3Jc5VgErXE=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: FwOgX33ITDHuFPELL7as+3F/7ZiTGDclsoVbZyJXSSU=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: zpbwy41hRyWwJ7fTsGL6GrpweGmBkIiKg/dSn0a6OHc=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: Q0b20xvIb9OTcKtAEh6DkNQgtZyxwUgyD+55R4EvV/U=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: 0bd8fg7Cugm+k4AitgoAURsr4cxRRS/4lbnBphwV4ME=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 19 Jul 2024 23:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 825 (0x339)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Jul 9 06:34:34 2024 GMT
Not After : Aug 16 06:34:34 2024 GMT
Subject: CN=668cd9fa-e786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cf:12:31:11:bf:32:8e:8e:55:9d:67:f6:9a:
1d:4d:08:4b:6d:1f:3a:be:c5:2c:80:32:77:3c:14:
8f:f0:37:f6:02:76:98:b4:f2:1a:2f:c4:02:cc:1d:
66:1c:fd:e0:35:24:00:b6:df:a7:3f:f0:50:56:68:
4a:c9:74:8d:cd:a2:15:5b:0f:67:33:52:2c:49:e0:
15:49:66:1b:da:25:a8:5b:d0:9a:f7:45:40:9f:80:
ec:99:a2:25:32:ec:13:ac:7f:d9:73:0a:79:91:1c:
0d:59:75:db:02:23:10:18:31:f2:e7:d1:12:7a:99:
11:97:14:1b:d2:a4:ed:aa:18:1a:c0:cc:eb:b7:dc:
03:31:25:26:e4:0d:fe:b4:26:f1:f0:6e:03:06:b7:
24:aa:ce:dc:17:d7:6e:3e:c3:da:6b:4d:84:60:cc:
bc:70:00:ed:af:e0:24:2d:ac:81:e2:ba:ed:7a:46:
29:a1:f1:61:72:08:60:f3:fd:76:05:c1:f9:94:b1:
18:81:c1:53:3a:bd:c5:e7:e7:75:0c:ae:a4:c4:8a:
62:95:d9:3d:a5:c0:d1:3a:e5:59:d2:26:e1:d3:3d:
68:09:c2:fc:a3:49:6f:8c:be:5c:5b:6d:6a:cc:35:
67:0d:eb:cb:14:db:47:11:65:86:42:54:59:8f:a8:
51:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:EB:F1:A9:B5:E1:B7:3B:CE:A3:F5:B7:C0:91:05:6F:E4:40:9B:72
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6f:e4:03:62:ed:40:6c:34:59:95:de:69:1f:4d:20:20:61:97:
6e:64:87:86:af:b4:9c:c1:b2:a8:4f:6a:56:1c:16:ac:e7:27:
f9:98:f3:fe:33:3c:45:fb:c5:2f:1f:38:4e:45:7d:55:b9:46:
5b:ec:97:20:99:a0:07:8c:a1:24:9a:4f:4b:80:cd:8b:91:cd:
eb:00:0b:a8:3b:a2:d6:4f:1f:9c:55:46:b8:d4:c1:35:34:98:
0f:93:7b:9c:3d:5b:1e:02:9e:1d:af:60:a3:a0:2c:1e:3b:74:
b9:b6:8f:a3:33:01:78:e4:1e:5e:72:eb:46:df:35:64:68:89:
0d:3a:ae:9a:bf:20:6a:2e:e7:de:71:02:e2:56:53:e8:49:5f:
82:10:44:d7:10:f9:8b:1d:05:e8:d1:0a:58:2b:75:e9:3d:5e:
1b:b9:b0:ec:3f:1a:95:cc:01:a0:11:81:f6:ca:bb:56:60:90:
ce:2e:48:3f:83:b1:80:7b:ab:21:f6:8a:bb:7a:31:6e:50:87:
c4:52:8f:52:f5:dc:6d:5b:34:7d:7f:95:7e:c1:52:f1:ae:ea:
ec:4c:6e:82:ef:0e:18:2f:2b:bf:c1:58:88:9b:e1:6f:cc:2f:
3f:d1:14:60:f7:82:cb:13:a6:6a:ed:2f:50:2a:d5:51:bc:87:
53:52:3a:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 9 07:57:26 2024 by rpki-client on console-ams.rpki-client.org