Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier: 0bmfS4uFbOiImlj2sHpMoVgQ9GdaYXwEz5MMrnEcXsA=
Subject key identifier: 82:FB:E0:5A:BD:DD:E4:15:0F:A4:9A:3D:E3:B4:65:A2:F5:CB:DD:32
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 476E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number: 46C0
Signing time: Thu 03 Jul 2025 02:50:10 +0000
Manifest this update: Thu 03 Jul 2025 02:50:09 +0000
Manifest next update: Thu 10 Jul 2025 02:50:09 +0000
Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: FhnYaF/4wVUAiLH1gO4fZZu3Corsy5FsC7AFJbQdWpc=)
2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: dIUmjSrIjTBexv9/ceLPC3WswXZRCQ+E7X3cPIrgsiw=)
3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=)
4: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: EBPO+j383ZTZL3W25SBCuUDnWsryeNl/oCk3sCJDyPg=)
5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=)
6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=)
7: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: lK432uTKMzI/MWDWDCT/5eSJfdDwnCex4YbKV+8mZxI=)
8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=)
9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Jul 2025 02:50:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18286 (0x476e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Jul 3 02:50:09 2025 GMT
Not After : Jul 10 02:50:09 2025 GMT
Subject: CN=6865efe1-77e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:05:06:6e:38:5f:50:79:c5:b7:5c:5e:9c:70:
b7:79:6b:de:99:dd:9b:c0:b8:31:bc:11:9b:d1:49:
f6:a5:4a:82:e6:31:ef:cc:9f:8f:7d:56:f7:cc:c5:
26:a2:a4:af:25:7d:1c:95:87:61:a8:d3:50:49:cc:
a3:ce:4b:ee:48:86:e7:19:b2:1b:1f:00:53:c2:95:
84:a2:72:09:25:78:6f:27:b7:4f:c7:72:09:33:78:
be:64:b3:f2:7b:40:dd:3a:95:a0:23:86:44:6e:33:
95:55:f5:d1:2e:a3:5d:ad:6d:8d:5e:a0:fb:3e:3f:
6b:be:2a:46:b0:23:64:9e:39:b6:13:6f:6b:dd:85:
a9:b2:b9:11:75:ac:37:82:46:f7:69:37:ef:13:07:
59:83:0e:d9:6f:dc:38:b2:d0:ef:c5:8c:94:43:cc:
90:38:de:6f:f3:30:2c:42:19:fb:6b:70:8f:fb:92:
8f:b8:73:17:20:4a:dd:c8:0c:53:e9:82:45:96:07:
c2:61:1f:ca:70:b4:bd:e5:df:69:8d:7c:9c:ad:f9:
5a:0f:30:9d:46:5e:07:4d:f9:1d:ad:a8:4c:11:f6:
b6:07:dd:4e:73:b6:db:7b:6e:5c:aa:08:00:fb:6a:
79:78:85:a5:51:b0:58:06:c7:e9:78:75:90:7d:8c:
a6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FB:E0:5A:BD:DD:E4:15:0F:A4:9A:3D:E3:B4:65:A2:F5:CB:DD:32
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
98:16:fa:09:20:8d:17:da:e7:1d:7a:d2:4a:90:aa:f0:db:7b:
98:12:4b:e8:6b:9a:ed:02:ff:26:ae:08:d7:98:9b:94:6e:42:
4a:dc:ae:55:98:62:16:66:1c:5a:1a:9c:41:f7:be:df:ab:de:
4f:12:96:b4:48:55:ec:9c:ae:83:de:1c:1b:da:db:5a:a6:c8:
bf:db:2c:f2:4f:52:10:91:fc:0a:3d:8b:ce:3e:1f:d2:e2:cb:
ef:c9:c1:55:d3:70:d4:5c:d7:1e:19:a9:49:39:28:a9:e7:d6:
d0:bd:0f:62:c5:a6:cc:65:3a:05:37:65:74:07:ed:09:f9:b8:
eb:f2:23:b0:df:95:4f:b1:9a:06:da:73:e4:9e:60:d2:a2:05:
d3:99:71:2f:bf:67:4d:45:0b:1e:69:de:74:3b:3f:1e:2e:85:
14:a0:49:1c:86:b0:09:ad:f9:b8:c2:86:fd:85:58:40:a1:a9:
af:bd:61:b5:ea:a5:eb:05:88:90:d9:49:74:0d:a4:e6:4c:5f:
bb:02:6b:31:03:23:41:cb:62:65:8f:1f:f4:43:34:f4:58:d2:
98:b0:5e:a7:9b:06:e5:88:d3:5c:5a:db:85:74:4b:47:8a:24:
d1:d0:1a:28:03:ab:73:34:65:f0:0e:65:63:6a:1c:96:bd:86:
f0:ce:56:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 05:31:21 2025 by rpki-client