Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier: jTOHwB9tdaYGFEl8cjhTrO0CFrv9I70m60AS1iXvOIU=
Subject key identifier: 0E:A8:F6:B7:56:D7:F3:7C:74:0C:57:E9:87:6C:02:9F:2D:06:C3:21
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 423B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number: 419D
Signing time: Fri 03 May 2024 00:26:23 +0000
Manifest this update: Fri 03 May 2024 00:26:22 +0000
Manifest next update: Fri 10 May 2024 00:26:22 +0000
Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: h8TUY9qNyoZTRUBR+bEUPo8c07e/fgyG+Zn3uqwPAO8=)
2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: NfJ53EghURDMb4YUUQ2khLIOYv3z+PllwEEllV4RSvY=)
3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: I57g7UURifl1rN5HCmANeVZX/RZ1zm10FgQBzo4Ieak=)
4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: nH4HcxvHCks4lwSYOfj8uqEK1Tlggt8L6lAOWOozK/U=)
5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: /UW3JtgCtF5fWiYKRezlOOrOjrKDeAy672BjlI2Yvc4=)
6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: szEprYu4wi6Cg+c7jnvZyVGVK4glrb/TFfOLJ8yLGZE=)
7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: JfmnhAczYnZDlsnqA/UDLN5g2nk9WzAYWsyL4Kstl+A=)
8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: /QFaqjwzIGN7jLFULhOAmvu0olDCiNJa+/UK89T3stc=)
9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: zJB5Ytp3hpkxLSO5RSO4jarjOh0LhETvjYF4YUB0++M=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 00:26:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16955 (0x423b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: May 3 00:26:22 2024 GMT
Not After : May 10 00:26:22 2024 GMT
Subject: CN=66342f2f-8cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:01:39:3e:72:a1:5a:3a:3e:a9:ba:9d:45:e5:
78:00:3f:a6:aa:ef:c2:1d:63:0c:81:66:a3:c4:33:
8b:2a:33:68:b8:2c:72:23:f0:fb:dd:6c:a2:66:b1:
4a:f5:65:14:69:37:57:ba:95:21:a7:1c:ab:f6:ef:
2f:79:cd:1d:78:ae:01:83:8a:4f:bf:3b:d7:bd:55:
41:61:ac:2f:1e:3f:39:b1:7b:fc:12:88:a0:19:6b:
ce:12:42:55:7a:e4:ba:8a:2d:0a:08:2c:94:6e:17:
7d:83:d4:d1:a2:97:cd:fa:be:ab:5c:6a:bb:38:90:
4d:57:28:34:4f:fe:52:40:c3:44:63:34:f1:06:88:
ea:7b:4b:61:31:39:b5:15:86:a3:ed:4f:97:5e:50:
34:b9:65:93:03:dd:2d:d7:61:af:82:03:57:82:22:
05:93:19:fa:1e:ba:c7:7f:08:d9:8f:e3:25:51:fd:
7e:fe:f5:01:ef:76:27:a1:a2:0d:59:f6:0f:74:cf:
57:32:96:c9:b8:dd:6b:2c:9e:55:2b:56:8a:13:d1:
e9:38:ca:dd:ce:7d:08:71:74:2f:4c:4f:52:e4:ec:
da:a9:87:06:b1:52:ac:2f:d4:da:e7:29:98:d0:ab:
85:29:a9:23:0e:6b:45:f4:ef:54:63:70:35:78:dd:
11:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A8:F6:B7:56:D7:F3:7C:74:0C:57:E9:87:6C:02:9F:2D:06:C3:21
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
08:94:45:77:d9:4f:25:89:68:32:44:bf:30:92:bb:cd:07:cf:
f1:3c:c9:8c:b7:e7:f9:00:7d:73:2f:7a:b7:af:18:ee:d3:56:
8a:70:9f:f8:64:ec:be:e9:d2:0f:e5:86:da:92:77:f7:7c:78:
68:95:ef:90:b2:e3:a1:9a:83:e7:5f:11:b8:19:76:a9:99:f7:
40:fe:8a:7b:0b:9a:a0:ee:e4:a4:89:ee:61:54:c2:b1:dd:36:
0e:65:37:7e:41:f1:a1:12:32:5c:2d:2a:bc:71:c5:b5:b3:7d:
8b:0c:78:ef:38:b9:66:0a:fa:6c:31:7b:8e:31:e7:54:9e:cc:
f1:13:90:39:39:e1:7f:a6:b4:49:e8:14:36:03:c0:45:b6:56:
5a:ca:d7:79:84:09:f8:1b:74:2c:87:b9:d1:a2:2e:b6:80:e8:
cc:58:24:a6:fb:45:ff:50:bb:9b:dc:01:04:61:8e:56:83:9b:
21:5f:fc:eb:13:f6:9a:8c:6c:89:4e:b3:f3:52:d1:ca:7b:45:
e9:c5:5d:b4:19:03:d5:30:71:47:1c:13:28:df:9a:d7:74:81:
fc:79:3b:b1:9a:ba:e0:09:c7:78:4e:d1:a6:a6:3f:7c:be:c0:
37:34:8e:1b:cb:81:ea:86:f9:b8:1f:c3:ca:32:03:22:5d:11:
6e:c6:31:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:31 2024 by rpki-client on console-fra.rpki-client.org