Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
File: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft (raw, json)
Hash identifier: qV1gxM+dufTcwssXXS6nhvaSMuTkC4PIfR6c85PnfmQ=
Subject key identifier: 0F:93:F2:A9:62:70:D8:EA:C4:56:FC:F5:F7:23:9B:EB:4C:C3:05:5D
Authority key identifier: 96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
Certificate issuer: /CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Certificate serial: 45E6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
Subject info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
Manifest number: 45DE
Signing time: Sat 31 May 2025 02:50:32 +0000
Manifest this update: Sat 31 May 2025 02:50:31 +0000
Manifest next update: Sat 07 Jun 2025 02:50:31 +0000
Files and hashes: 1: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl (hash: WjOfDUzgqI/cbVzx+WmhcbdPY6KGOwUISYx0s7y7phY=)
2: 4kPzvoJVabsWrLN0vJjavmkLF8E.cer (hash: AYWGFvwUByg/qqQVdaQIffRzOvV/lSsH6Y0ettSlDW4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 07 Jun 2025 02:50:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17894 (0x45e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Validity
Not Before: May 31 02:50:31 2025 GMT
Not After : Jun 7 02:50:31 2025 GMT
Subject: CN=683a6e77-d224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cc:4d:12:68:b3:c8:73:f5:28:7f:27:75:f4:
41:f8:79:e0:b6:0e:fb:ab:9e:ef:06:80:0d:cc:33:
1d:c0:a1:91:cf:c3:11:2c:e2:e4:90:b0:34:3b:40:
58:52:31:02:f3:6e:fd:66:f3:1d:64:3b:02:33:bd:
00:27:3c:fe:b3:36:94:c3:b8:e5:f1:a0:3f:1b:78:
a4:a3:25:19:4b:95:e9:0a:58:a7:f1:f6:72:0c:c2:
73:d4:fa:67:b5:04:a9:a2:05:44:6a:7c:e0:cc:05:
28:6c:34:8e:ed:de:56:50:2a:d8:e7:a7:52:e5:2e:
c5:0e:de:70:d8:22:85:ac:36:1f:44:99:f7:9a:d0:
a5:a7:3d:7b:f3:22:ad:7e:8b:c5:4e:c3:45:10:22:
ad:ea:e3:1d:91:50:2d:fc:1b:74:b1:11:8e:69:f0:
f9:57:3a:7f:61:7c:a9:fe:7b:9b:90:85:00:f0:df:
c1:4b:89:12:e4:54:c9:56:cc:1f:b4:7f:29:c2:35:
6a:69:59:20:ce:fa:5a:18:e4:f7:81:01:ba:73:d5:
ff:b8:2a:09:07:73:b5:44:c2:e9:4f:5f:9c:70:0e:
13:f9:fe:bf:0c:84:5c:8e:40:db:e9:96:29:b5:b6:
89:4d:6c:e5:69:06:e2:d8:12:4c:22:4d:24:4a:ca:
6a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:93:F2:A9:62:70:D8:EA:C4:56:FC:F5:F7:23:9B:EB:4C:C3:05:5D
X509v3 Authority Key Identifier:
keyid:96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b2:1a:14:8a:16:68:88:90:4f:61:e2:ac:e2:68:87:20:3b:42:
41:81:41:f5:8b:cb:84:97:47:68:c6:24:1b:d2:42:fa:6f:9b:
9c:d1:86:a1:f0:6b:49:33:0b:83:4b:a1:b2:43:ca:98:19:c8:
64:f8:60:62:97:07:c3:b1:7d:e0:66:bc:45:38:b2:5d:db:be:
66:dc:84:04:1a:ed:97:39:bf:30:92:3d:62:29:17:20:fe:dc:
cb:70:0b:a2:b1:a1:1c:bd:5a:bb:9c:35:d2:c4:ad:ad:d0:28:
cd:af:2d:cc:32:14:fb:35:15:28:3c:14:97:36:cd:12:d7:94:
37:50:83:70:3e:d2:70:c0:34:54:a2:ce:a4:2d:47:db:dc:7e:
5e:46:07:45:2f:ee:51:e1:c9:61:fe:e9:2b:cd:5c:ae:a7:49:
74:e8:87:40:e8:0a:cc:bc:04:3e:e3:93:e0:59:ff:7d:29:fc:
78:88:e8:99:13:3a:97:4a:25:15:9a:bb:80:1a:18:5d:37:2b:
08:6f:16:4b:84:ca:26:10:64:67:2a:ec:96:8e:2d:6e:a3:e9:
4f:5d:2a:f6:58:f7:c3:28:a9:cf:44:19:74:d4:e2:43:26:39:
b5:e2:cb:78:a9:76:48:e2:99:16:74:5f:81:d7:d0:94:e0:25:
1c:bd:fb:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 31 16:29:42 2025 by rpki-client