Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: VG4/fI8x6v3l48eSm8OvuIpCkoVrCWzzhilvehhFhz0=
Subject key identifier: 42:EE:85:40:D9:F8:55:5F:06:53:F4:FD:17:C7:88:4F:20:A6:94:CF
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 02D7
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 0166
Signing time: Thu 01 Jun 2023 00:20:13 +0000
Manifest this update: Thu 01 Jun 2023 00:20:12 +0000
Manifest next update: Sat 08 Jul 2023 00:20:12 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: qovYYk/L/H8E5eH1+tlVWgEvr1gmOlO/cuRJnzVkXHI=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: 0u7RWX1zSwJAnxG+KX+BllBirfzccgmaCykDm3Q6aMU=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: jCp7ik2sY52zvjSSXOiVMgGgVrGsXjdRvJco9qpSrso=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: ncEbiVi6krSHwF/Ioz6cjZ3//rnwYw697s8zrkabD1k=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: 0/nU7hmEq3voSaqFQLwEpMnjwQTURQkIfw7lrP5FDYw=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: kNQH4nKYKNI7D6ZOYfzFfPovmbmTacaxo2VtYuxEaSE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 15 Jun 2023 23:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 727 (0x2d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Jun 1 00:20:12 2023 GMT
Not After : Jul 8 00:20:12 2023 GMT
Subject: CN=6477e43d-3ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b6:93:5c:42:1a:7b:18:ad:4d:17:1d:3e:d1:
22:33:e8:c1:ea:b9:5f:9b:8c:c1:ef:1f:af:bf:19:
62:ca:25:62:41:c3:27:93:0a:e3:72:18:3a:21:aa:
08:79:a5:e3:da:57:04:94:b6:9c:b4:e3:a1:80:01:
76:46:ed:ce:98:ae:a0:33:cb:60:a7:39:66:a0:15:
3d:df:ed:36:3c:98:e0:d2:f4:cc:a7:d1:d1:bb:67:
0f:1b:26:9c:a0:56:02:bb:54:ee:f2:65:eb:41:77:
35:cb:e6:21:ce:b8:9d:4b:be:5c:1a:54:10:28:d2:
ab:f3:6b:9d:6f:92:69:48:0b:18:65:ec:2a:45:cb:
ac:f7:fb:0a:07:1c:cf:e3:32:95:87:df:bc:9b:d7:
cd:00:ba:c6:12:71:4c:3f:a7:6e:33:2e:ad:f4:5d:
10:5f:48:de:b3:39:c4:0f:1b:12:d6:3a:f7:f1:74:
56:e7:52:b5:a4:96:fc:95:a2:55:05:1c:0c:aa:00:
7f:6e:78:ff:a7:9c:a4:0f:5e:58:99:cb:97:cf:d2:
2a:cd:6d:bd:d0:2e:30:99:bd:51:a8:b2:10:f9:fc:
c2:01:26:36:1c:32:8b:8a:72:47:60:c9:49:7f:97:
b7:d6:1f:d2:0b:25:d9:9a:c2:bd:f8:3c:1d:53:f4:
47:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:EE:85:40:D9:F8:55:5F:06:53:F4:FD:17:C7:88:4F:20:A6:94:CF
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
25:16:5d:eb:7d:80:19:8e:34:50:f9:83:b9:d9:7a:be:f0:4a:
3f:36:80:af:11:d1:dd:92:6a:e9:88:2f:a4:0d:5a:bd:c4:3e:
99:f0:2a:bf:b1:75:a1:a2:59:a0:62:8f:e3:b4:5d:1c:53:ce:
c0:72:5d:28:66:4f:32:2c:8d:2a:bb:43:7a:06:93:38:0b:b7:
0f:2b:6b:a9:62:37:ea:b6:fe:8c:31:7f:f5:9f:96:bc:09:b4:
38:c2:15:12:b6:36:3c:d2:58:a3:27:95:9a:8c:43:48:55:ae:
50:21:00:b6:72:3c:ed:a6:44:26:3e:86:30:7a:48:13:b9:83:
e0:8f:9c:a3:72:d3:38:97:f5:41:05:20:fb:93:f1:4c:a0:24:
b2:df:02:3b:b6:79:e7:b6:c7:50:58:6b:90:f0:a8:af:a6:9a:
2f:7b:ef:7b:63:2e:ad:12:7d:de:a5:ed:b2:f7:04:14:f3:be:
86:a9:91:11:3a:e2:0d:34:8b:b9:0c:ba:b3:4d:23:66:f7:83:
2f:ba:fa:3d:03:b6:6f:32:e4:95:ab:a5:68:fe:a0:e1:02:e4:
63:f4:6f:42:a3:fd:95:c8:e1:0a:7c:ea:9b:f2:81:83:0d:0a:
92:12:e6:a5:e4:f7:66:86:ee:a4:7f:83:d8:33:df:9e:2d:6b:
ca:c4:71:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 1 00:39:49 2023 by rpki-client on console-fra.rpki-client.org