Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
File: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft (raw, json)
Hash identifier: AFV71ugiLcmoxRV1bbHm5sbdesLIAdF3Xku73htudhs=
Subject key identifier: 59:43:23:BE:D4:37:7A:FE:E6:EA:7A:64:01:45:54:7B:AB:A5:E4:62
Authority key identifier: 96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
Certificate issuer: /CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Certificate serial: 43AD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
Subject info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
Manifest number: 43A5
Signing time: Fri 22 Nov 2024 02:50:28 +0000
Manifest this update: Fri 22 Nov 2024 02:50:27 +0000
Manifest next update: Fri 29 Nov 2024 02:50:27 +0000
Files and hashes: 1: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl (hash: KF615GbzjH71Xi4MH4VeM5QpYvomXcCiWmHu37iaEBg=)
2: 4kPzvoJVabsWrLN0vJjavmkLF8E.cer (hash: AYWGFvwUByg/qqQVdaQIffRzOvV/lSsH6Y0ettSlDW4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17325 (0x43ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Validity
Not Before: Nov 22 02:50:27 2024 GMT
Not After : Nov 29 02:50:27 2024 GMT
Subject: CN=673ff173-d4dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4d:a1:ac:01:a8:11:64:30:39:79:9c:9f:6b:
75:ee:43:22:0b:cf:ac:ae:ab:b7:9e:b1:6e:a7:54:
81:cc:1f:9a:53:fa:8d:53:e9:fe:bc:8e:e2:8b:74:
61:28:16:e1:91:33:ca:0e:38:ad:5e:28:a9:83:be:
23:48:b6:22:df:e5:df:c2:78:d5:d8:7a:94:54:e2:
a0:fe:6a:3c:60:fe:61:5f:81:e9:fe:f3:d1:70:66:
ab:94:2c:26:9d:00:62:70:5e:b3:e1:08:7c:b3:87:
28:26:c5:79:2c:c4:f9:c3:8a:24:57:36:87:0f:f1:
9d:a3:26:93:e4:04:35:fb:45:bd:f3:59:4d:29:e9:
15:e2:3b:ea:39:78:f7:c7:30:a4:e5:cd:c5:f7:83:
91:79:d8:95:1f:b9:57:29:79:cd:cb:32:7e:97:ff:
d2:fc:7b:d1:40:f8:d5:c3:31:be:33:50:76:86:08:
2b:e0:2a:7a:ad:b5:62:40:53:42:42:22:8e:fd:ef:
1b:27:a8:7b:40:16:01:c2:59:d0:eb:7d:bc:63:e5:
4b:ea:44:79:61:e9:75:e7:14:f0:eb:6c:96:87:af:
31:8f:39:79:84:d2:49:59:6b:58:be:bd:89:f2:89:
d4:84:0c:4b:97:54:70:5c:ba:a6:03:bd:89:ed:2f:
5a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:43:23:BE:D4:37:7A:FE:E6:EA:7A:64:01:45:54:7B:AB:A5:E4:62
X509v3 Authority Key Identifier:
keyid:96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
d6:4a:c7:9b:03:bc:8e:bf:de:57:e3:f6:03:13:62:d2:4b:45:
80:d6:05:11:61:64:5d:b1:a0:04:ec:96:69:3f:66:46:99:4e:
d0:ec:6b:e6:41:9d:5f:b5:d0:18:94:cc:9f:35:3a:95:a5:42:
99:3e:88:0f:58:e3:26:e1:94:e6:3f:7a:c1:86:d4:6f:7f:2b:
b1:d1:3a:b1:18:4b:04:d9:fa:a9:24:71:7c:d9:63:d4:c5:9b:
0b:56:6f:1e:aa:7a:28:d7:64:6e:c6:9d:19:d3:38:83:d9:26:
b2:d9:69:47:e7:05:b6:98:08:fa:07:9e:f9:af:f6:6f:17:4b:
86:32:55:ae:82:8d:14:59:57:a2:fa:b2:f5:85:48:cb:d2:54:
47:3a:68:56:04:c6:c9:33:53:04:70:71:79:a8:80:d1:e8:1f:
ac:52:b3:eb:49:8f:77:fb:ae:37:c8:f1:cd:2a:69:7c:44:7c:
9e:63:c7:43:5a:f0:ae:79:70:e3:5d:68:40:e1:a1:7c:6d:f3:
4e:2f:35:1b:93:b3:47:7b:67:25:81:99:42:3c:b8:18:0f:99:
01:3a:c8:6e:44:cf:f1:1f:d9:76:08:a6:3f:de:6d:1a:de:df:
4d:e2:ee:80:46:53:c6:b2:be:81:3d:4b:82:18:98:68:65:61:
95:60:58:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:47 2024 by rpki-client on console-ams.rpki-client.org