Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
File: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft (raw, json)
Hash identifier: 1woCIyZ1SokWNyZrJ3IhDRgfcKKSHBgX7aTv4rJW5Ew=
Subject key identifier: 93:F0:06:7B:5A:6B:3B:4A:91:75:90:50:B4:CF:88:A2:8D:AE:CD:35
Authority key identifier: 96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
Certificate issuer: /CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Certificate serial: 4134
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
Subject info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
Manifest number: 412D
Signing time: Fri 03 May 2024 02:50:24 +0000
Manifest this update: Fri 03 May 2024 02:50:23 +0000
Manifest next update: Fri 10 May 2024 02:50:23 +0000
Files and hashes: 1: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl (hash: HVIs6HTI9XGQQU9tQejc1ei+deAwzTEqdsoNv0/39hc=)
2: 4kPzvoJVabsWrLN0vJjavmkLF8E.cer (hash: as1OtBtIoUQ64SB6/fpXeVK8c5b9KBZQRzmSHmW0dNQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 02:50:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16692 (0x4134)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Validity
Not Before: May 3 02:50:23 2024 GMT
Not After : May 10 02:50:23 2024 GMT
Subject: CN=663450f0-05b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e7:bc:1e:8e:2c:4b:29:8c:90:ab:c4:23:68:
6e:ec:31:21:63:23:9b:d4:17:c5:59:c3:73:0e:66:
69:e3:ac:5f:1e:9d:e1:84:31:8a:fe:49:84:79:bf:
0b:4b:a9:aa:18:f7:23:27:69:ed:d9:6d:96:53:01:
e3:1d:d2:1b:96:71:fc:5c:48:3a:95:ef:b9:99:4c:
91:55:b7:95:dd:80:87:6e:ec:4a:ab:60:55:6f:5f:
57:c9:56:5c:fe:4c:a1:cf:cd:fc:49:e8:f7:53:f6:
71:1e:2d:76:33:b1:44:6d:b4:f3:b7:44:98:7f:bf:
d0:03:49:4d:e8:f3:45:0a:f6:e6:25:c0:aa:f5:9b:
6e:ec:d3:99:cf:49:4d:d3:25:e0:c5:31:c6:a7:9d:
41:e1:29:2e:a5:21:ab:dc:8d:0c:6e:26:fc:c7:37:
97:fe:7c:df:6d:e7:c0:12:2f:9c:80:b8:1d:f5:79:
8e:9d:3f:47:e2:f7:25:fd:5d:e1:b0:e0:c3:34:b7:
ea:a0:72:11:9f:1d:85:55:7a:7e:ee:44:99:7d:fe:
5f:39:4e:fe:46:dd:54:df:d2:d2:6b:37:41:bc:bc:
cb:4b:61:29:c1:66:f2:46:a5:f4:1a:1e:55:27:40:
95:1b:59:4d:8a:25:4b:5c:9e:dc:bd:98:78:00:32:
fd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:F0:06:7B:5A:6B:3B:4A:91:75:90:50:B4:CF:88:A2:8D:AE:CD:35
X509v3 Authority Key Identifier:
keyid:96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8f:f0:cc:e3:4f:fc:6b:fb:b3:8e:ca:ab:86:c8:87:e4:ed:53:
e5:16:af:79:2d:29:5f:aa:bc:8c:d7:be:5e:4a:8d:e4:0e:80:
be:63:5b:4f:09:4a:3b:79:84:cf:21:c7:ee:02:f3:d1:b9:70:
3d:b8:22:a0:5f:93:77:1a:67:f1:cd:cc:ac:03:aa:2b:82:2d:
3f:76:5b:bb:a2:b9:c8:c3:99:93:15:32:d3:c6:13:24:ac:92:
ca:c8:61:e6:8d:01:42:35:00:6b:57:15:dd:b9:05:12:a2:01:
1f:55:12:38:d2:17:3a:63:77:36:cd:78:19:31:d4:5e:f9:c3:
87:33:2b:06:6a:ea:22:03:a4:9a:67:44:c9:57:de:23:43:33:
11:03:64:a6:5f:3a:ba:61:cf:e7:68:9c:7c:ac:c1:47:aa:5e:
48:11:56:1e:28:b0:9b:a4:c8:26:b6:ca:e5:3d:34:06:04:c4:
df:55:1f:a4:9a:89:5b:b5:2b:df:f7:d0:45:17:41:12:49:43:
6d:a2:85:61:79:d0:f4:c8:9d:32:dd:77:47:03:5a:c5:9d:fc:
2e:83:fb:06:24:40:46:dc:66:15:e1:c1:6a:61:a5:66:e6:b8:
d5:2d:1c:61:60:e0:13:7f:6b:0a:43:a1:6c:3a:12:09:0a:59:
78:13:57:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:59 2024 by rpki-client on console-ams.rpki-client.org