Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier: QtnQQVL5ztqg+F5NZnGJVY/5Kl/FnxUpf+nbCGOVhuo=
Subject key identifier: D0:F3:79:ED:9F:6A:4A:33:12:2D:00:FC:3B:26:63:66:5D:2A:C5:1C
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 44C1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number: 441C
Signing time: Fri 22 Nov 2024 02:50:09 +0000
Manifest this update: Fri 22 Nov 2024 02:50:09 +0000
Manifest next update: Fri 29 Nov 2024 02:50:09 +0000
Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: Hdvr7F60J1H4RxqqaEIerYVXnTU38VZKoWp337sfJ68=)
2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: NfJ53EghURDMb4YUUQ2khLIOYv3z+PllwEEllV4RSvY=)
3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: N0F8HE1OKVKKKHAEjBQrKcxyApq01oZoxtlct6NIs44=)
4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: wPpie+ThAR/1TthkCM7hgEd/wJa4M0QWrfReez52vcc=)
5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: /UW3JtgCtF5fWiYKRezlOOrOjrKDeAy672BjlI2Yvc4=)
6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: nH4HcxvHCks4lwSYOfj8uqEK1Tlggt8L6lAOWOozK/U=)
7: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: okjzU3E4UBevhxAwJ+/GBUGWv9CrjBdiXIkVX/kNLUw=)
8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: lK432uTKMzI/MWDWDCT/5eSJfdDwnCex4YbKV+8mZxI=)
9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: yeZNkJNHC+qtIscVm8AAik64XQjEl1j01cQ1Y6MWxhE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17601 (0x44c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Nov 22 02:50:09 2024 GMT
Not After : Nov 29 02:50:09 2024 GMT
Subject: CN=673ff161-f8ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:8e:42:4d:28:db:0d:ea:cc:ba:ea:2b:18:c3:
d3:c3:34:ed:8b:12:b6:80:9b:f9:9c:0a:24:52:dc:
01:84:5f:11:cc:c0:6e:a2:83:3d:ef:76:e5:20:72:
4a:87:22:d3:19:26:72:4c:98:6d:fc:0a:3f:5c:41:
6a:7e:10:ed:48:ad:63:05:2a:a5:7f:20:d5:46:5a:
90:f4:76:14:dd:df:08:69:e3:ad:b8:74:35:4f:94:
07:f7:aa:15:a8:e3:06:24:03:c6:30:d2:d3:20:77:
f1:93:aa:c5:e8:1d:52:20:83:b6:bd:5a:32:31:61:
19:d3:b9:c8:c0:c3:b2:a2:b9:e5:cf:79:65:a2:2d:
e9:5c:0d:39:86:3b:f7:32:37:72:34:00:9b:4f:4d:
3e:73:fa:26:ad:d3:74:d7:48:a7:bb:6e:e3:38:19:
97:b7:56:f3:c0:ef:0c:14:e7:bf:c4:e9:1c:9d:9a:
fd:9c:ef:34:3d:69:5f:34:08:4d:74:28:1e:26:2e:
93:74:84:66:f8:64:d9:59:dc:45:25:9c:f7:bf:0f:
0c:f6:07:9f:99:70:1b:a6:6a:3f:38:1f:3c:8d:7e:
96:76:30:b2:04:72:cc:71:0e:fb:bd:20:79:85:d6:
11:74:51:c8:39:a6:ef:70:25:80:e8:93:88:11:11:
d7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:F3:79:ED:9F:6A:4A:33:12:2D:00:FC:3B:26:63:66:5D:2A:C5:1C
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2b:dc:5e:84:5b:a7:8c:33:f4:b3:62:56:4a:39:ca:a7:7d:54:
35:f0:2f:a4:c2:0b:c3:64:ff:f7:7d:e9:b0:b5:ac:ea:9e:cb:
99:8c:7d:4a:f5:47:40:a3:01:46:b6:48:ec:92:99:50:30:0e:
b5:28:d5:c4:1d:43:92:03:77:34:73:c5:81:17:c2:8a:d8:88:
21:e1:6d:5b:59:55:27:71:6c:d1:15:ab:04:10:9d:3e:7d:2f:
93:54:4b:5d:91:16:5e:14:42:5e:30:46:06:90:31:e1:f3:9b:
4a:3b:a3:46:55:d6:c3:41:45:b6:ac:a0:da:61:34:28:20:e9:
45:29:ab:ed:b7:df:85:2a:80:58:4f:fc:ec:61:bb:3e:eb:db:
68:24:bf:92:27:60:84:5f:37:8c:45:9e:f3:7a:e3:ee:65:15:
f8:35:e6:a7:66:96:72:8a:45:84:c2:a2:b2:68:39:ec:23:17:
54:3f:2b:11:c1:db:99:e9:38:b2:e1:3f:c9:b6:09:90:9e:99:
53:1d:ec:b8:2a:b5:51:d9:77:f6:ce:b4:1f:8c:4f:84:57:f8:
82:45:71:a8:82:74:90:27:18:02:94:fa:0d:7e:54:ec:fb:63:
82:43:ca:c9:b3:14:24:e7:6b:22:e5:e8:fa:f8:35:cf:52:6f:
63:87:ce:ad
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgICRMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz
M0NDOEVBMjIwHhcNMjQxMTIyMDI1MDA5WhcNMjQxMTI5MDI1MDA5WjAYMRYwFAYD
VQQDEw02NzNmZjE2MS1mOGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0Y5CTSjbDerMuuorGMPTwzTtixK2gJv5nAokUtwBhF8RzMBuooM973blIHJK
hyLTGSZyTJht/Ao/XEFqfhDtSK1jBSqlfyDVRlqQ9HYU3d8IaeOtuHQ1T5QH96oV
qOMGJAPGMNLTIHfxk6rF6B1SIIO2vVoyMWEZ07nIwMOyornlz3lloi3pXA05hjv3
MjdyNACbT00+c/omrdN010inu27jOBmXt1bzwO8MFOe/xOkcnZr9nO80PWlfNAhN
dCgeJi6TdIRm+GTZWdxFJZz3vw8M9gefmXAbpmo/OB88jX6WdjCyBHLMcQ77vSB5
hdYRdFHIOabvcCWA6JOIERHXwQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFNDzee2f
akozEi0A/DsmY2ZdKsUcMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi
MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG
RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB
AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np
dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN
X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw
MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk
ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE
MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN
hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB
BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA
AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAr3F6EW6eMM/SzYlZKOcqnfVQ18C+kwgvD
ZP/3femwtazqnsuZjH1K9UdAowFGtkjskplQMA61KNXEHUOSA3c0c8WBF8KK2Igh
4W1bWVUncWzRFasEEJ0+fS+TVEtdkRZeFEJeMEYGkDHh85tKO6NGVdbDQUW2rKDa
YTQoIOlFKavtt9+FKoBYT/zsYbs+69toJL+SJ2CEXzeMRZ7zeuPuZRX4NeanZpZy
ikWEwqKyaDnsIxdUPysRwduZ6Tiy4T/JtgmQnplTHey4KrVR2Xf2zrQfjE+EV/iC
RXGognSQJxgClPoNflTs+2OCQ8rJsxQk52si5ej6+DXPUm9jh86t
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:47 2024 by rpki-client on console-ams.rpki-client.org