![](/console.gif)
Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier: eDc+nI1rGKbwzalp48iKPmag6Gbv5OFRQVi5SFc3k/s=
Subject key identifier: BD:04:48:44:4C:C1:6D:33:1D:B5:07:6B:02:E5:47:EA:E4:FD:82:9C
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 4358
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number: 42B5
Signing time: Fri 26 Jul 2024 14:50:09 +0000
Manifest this update: Fri 26 Jul 2024 14:50:09 +0000
Manifest next update: Fri 02 Aug 2024 14:50:09 +0000
Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 3eZts79Yn5aKa9FfzTdZ7JSlumb5QN7cYYorHlHVnB8=)
2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: NfJ53EghURDMb4YUUQ2khLIOYv3z+PllwEEllV4RSvY=)
3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: N0F8HE1OKVKKKHAEjBQrKcxyApq01oZoxtlct6NIs44=)
4: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: /UW3JtgCtF5fWiYKRezlOOrOjrKDeAy672BjlI2Yvc4=)
5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: wPpie+ThAR/1TthkCM7hgEd/wJa4M0QWrfReez52vcc=)
6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: nH4HcxvHCks4lwSYOfj8uqEK1Tlggt8L6lAOWOozK/U=)
7: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: szEprYu4wi6Cg+c7jnvZyVGVK4glrb/TFfOLJ8yLGZE=)
8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: okjzU3E4UBevhxAwJ+/GBUGWv9CrjBdiXIkVX/kNLUw=)
9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: yeZNkJNHC+qtIscVm8AAik64XQjEl1j01cQ1Y6MWxhE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 Aug 2024 14:50:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17240 (0x4358)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Jul 26 14:50:09 2024 GMT
Not After : Aug 2 14:50:09 2024 GMT
Subject: CN=66a3b7a1-6584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:da:a3:a0:b6:ba:a4:ab:ae:08:82:e9:50:00:
7e:d3:ac:14:d2:8b:a0:03:7a:d8:a9:fb:4c:7e:65:
52:d1:cb:85:2b:ff:88:95:f1:e1:ed:76:85:58:37:
59:e0:b1:33:c1:da:75:a1:77:66:40:1c:40:58:ce:
94:9e:1f:37:76:57:ff:89:c5:68:b0:a6:c3:c3:3f:
05:f5:15:a4:cf:ca:5e:ef:3f:fd:f8:cd:1c:c0:95:
a4:0c:b5:9f:47:c1:60:6a:ca:6e:04:38:1a:f7:c6:
d7:47:66:91:57:37:64:92:05:5f:1b:87:fa:7c:6f:
89:98:7d:e4:52:11:2d:ac:45:1e:b2:b4:08:ae:27:
b2:59:94:75:c1:b8:29:47:73:65:a5:05:a8:f5:82:
f3:be:29:a8:69:8e:74:0e:4e:46:2b:d9:1e:0a:b4:
6b:17:40:bd:5d:74:a7:fd:3f:a3:7d:e6:0d:09:95:
d6:13:10:10:2e:87:fd:b5:44:54:0d:83:66:58:92:
68:6b:a8:41:3c:f5:ab:e7:33:12:0d:0d:78:eb:ff:
a0:de:e6:0b:21:54:66:3a:a1:f2:a7:e2:a6:30:b7:
d6:7d:e7:a0:31:80:97:6b:cd:96:b3:25:1c:74:9c:
28:e3:be:37:f6:49:8d:df:d9:d0:2d:43:0c:14:bf:
97:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:04:48:44:4C:C1:6D:33:1D:B5:07:6B:02:E5:47:EA:E4:FD:82:9C
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
89:df:59:0b:c6:7e:85:06:7f:5f:8a:0a:32:4c:c5:52:46:88:
37:19:5c:ff:87:77:bb:da:91:29:52:ca:52:8a:8e:6b:82:d0:
92:b5:d3:76:ee:b9:50:b7:be:b2:1d:2d:b7:75:63:bd:f2:f3:
86:26:b2:60:0e:2a:39:b9:9d:3a:b0:48:d2:74:45:15:05:96:
26:0e:6e:e1:72:ef:2a:12:7a:30:c6:e5:ae:42:87:54:2e:3c:
72:5c:13:78:ef:84:d6:ea:5c:7c:23:a1:15:e9:46:a1:bf:85:
18:2b:78:9a:11:47:2b:48:f1:e7:c3:5a:a2:84:1f:78:dd:d1:
41:ce:08:51:c0:3d:34:a4:3c:13:3e:28:8b:98:de:e4:79:a8:
83:b7:36:54:b9:54:f1:8b:64:07:60:18:c8:a8:f5:5e:c9:db:
61:07:6d:88:bb:c9:dc:e1:36:d8:6d:18:74:e9:de:66:05:54:
c2:b5:7f:f3:33:0d:81:95:d8:63:c6:35:ba:2a:62:0e:aa:aa:
71:3d:2a:86:d1:e8:4e:19:00:3d:35:2b:41:5c:9e:64:14:30:
28:67:1c:0d:ed:e0:b6:20:4c:22:34:4f:ab:d6:a6:61:d8:64:
86:e7:32:5b:d2:a6:01:4e:01:9f:46:58:ee:75:c6:47:c9:1e:
5a:31:ca:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 16:11:53 2024 by rpki-client on console-ams.rpki-client.org