Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
File: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft (raw, json)
Hash identifier: HRi0ickvQNejNuWLQjTz4jDdqbnJ5uEZ3qpF78zt+IM=
Subject key identifier: 79:A1:95:5A:B0:30:4E:F1:CB:4C:3B:2D:88:09:53:73:5D:6A:5C:C0
Authority key identifier: 96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
Certificate issuer: /CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Certificate serial: 4249
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
Subject info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
Manifest number: 4241
Signing time: Fri 26 Jul 2024 22:55:40 +0000
Manifest this update: Fri 26 Jul 2024 22:55:39 +0000
Manifest next update: Fri 02 Aug 2024 22:55:39 +0000
Files and hashes: 1: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl (hash: HxL2Ja48d6v/V++w+cIauDB/Ryo/LGNa4WTfRAvAIRo=)
2: 4kPzvoJVabsWrLN0vJjavmkLF8E.cer (hash: AYWGFvwUByg/qqQVdaQIffRzOvV/lSsH6Y0ettSlDW4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 Aug 2024 22:55:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16969 (0x4249)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Validity
Not Before: Jul 26 22:55:39 2024 GMT
Not After : Aug 2 22:55:39 2024 GMT
Subject: CN=66a4296b-ff0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fa:b0:3e:f0:b9:3d:a4:fb:08:a7:97:3c:76:
63:80:e4:cc:a0:a2:10:23:5d:1d:66:b7:46:80:90:
63:fc:d2:39:1e:7a:fd:96:2a:93:54:c6:b5:da:00:
da:4e:3a:5a:4e:97:b7:2f:b4:5c:8c:ff:e7:7c:4f:
cf:3f:b4:cb:01:61:20:40:de:99:0e:61:70:cb:20:
7f:2b:f9:27:28:ae:a6:87:07:f1:25:fd:77:d8:e3:
72:eb:04:2f:97:bb:45:c1:2d:54:df:ac:d0:90:64:
ea:c2:89:4b:f4:f5:26:80:70:79:81:31:28:16:12:
5f:c4:7c:73:5e:44:bc:c6:99:c0:c0:7e:7f:fb:a4:
83:a7:6c:4d:60:8e:1f:1e:e8:38:ea:27:b9:1c:ea:
dc:cc:72:0f:1f:e4:08:73:1d:03:6f:8a:2d:2a:e3:
76:3e:93:c8:5e:e5:46:2a:a3:73:01:4d:2b:85:e2:
5d:67:6b:3b:64:1d:68:16:f2:54:37:94:a7:f3:1a:
8c:e3:5e:87:aa:64:30:c8:19:5c:cd:13:c8:17:cc:
70:19:e5:8c:41:9d:50:13:f0:06:1f:64:8e:3a:58:
6d:69:39:5f:9d:05:66:62:33:11:62:64:89:25:01:
e2:b8:8a:b8:e2:94:e6:a4:17:95:91:f4:0a:cb:30:
2a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A1:95:5A:B0:30:4E:F1:CB:4C:3B:2D:88:09:53:73:5D:6A:5C:C0
X509v3 Authority Key Identifier:
keyid:96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
94:7a:09:e7:b5:4e:3a:7c:64:cf:83:6e:1e:06:25:c3:e4:fc:
c1:f4:4b:48:ad:5e:aa:f9:6d:28:84:24:5c:7a:e8:60:59:9f:
d5:aa:e4:07:64:08:ed:58:19:13:7d:a4:9d:11:99:64:d0:68:
95:f8:cf:b6:61:9f:eb:49:de:ae:a6:b8:e9:d4:5a:fd:32:bc:
53:8e:b1:9f:fe:ed:38:a6:be:89:cf:64:aa:b2:a4:70:d8:9a:
c7:75:be:16:e4:3b:c8:47:d0:64:01:69:1f:9a:09:69:d0:66:
f6:9f:d0:d3:02:1f:d5:f9:2d:6a:c4:df:7a:d4:2e:a6:67:96:
d5:86:d2:c2:a2:a9:f0:c0:fe:1e:fb:bb:d0:62:4d:a8:00:5c:
fa:7a:4f:5c:af:72:8b:0b:92:9b:b0:85:d9:29:98:05:eb:b6:
af:cb:34:c9:da:19:88:af:58:2a:52:0b:85:18:4e:3b:96:4e:
69:df:20:ba:46:3e:48:79:07:84:6f:09:1a:00:1f:1a:4b:f9:
cb:72:29:ec:e5:f8:f5:47:1e:ca:aa:af:04:b6:f5:bc:ba:2a:
1f:5f:d0:eb:bc:93:fe:8e:a0:fe:87:b8:5a:56:28:fa:dc:e1:
92:a8:1e:92:87:a9:d2:ea:e5:47:f7:23:99:4b:fc:b7:32:ec:
ca:70:84:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 27 00:18:43 2024 by rpki-client on console-fra.rpki-client.org