Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
File: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft (raw, json)
Hash identifier: UxB5nlGLurJSYEhgVL6UcFkeyN2fKPH6UfgnXFwTPgI=
Subject key identifier: 9D:B1:74:45:C1:74:5D:FB:48:3C:10:E5:4E:D8:BC:FC:34:22:3C:BA
Authority key identifier: 96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
Certificate issuer: /CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Certificate serial: 4578
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
Subject info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
Manifest number: 4570
Signing time: Thu 24 Apr 2025 14:50:30 +0000
Manifest this update: Thu 24 Apr 2025 14:50:29 +0000
Manifest next update: Thu 01 May 2025 14:50:29 +0000
Files and hashes: 1: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl (hash: GzCjnYDWGsdNrDQ/SqsBNsoSyckufzCORUUJ1KzaSCw=)
2: 4kPzvoJVabsWrLN0vJjavmkLF8E.cer (hash: AYWGFvwUByg/qqQVdaQIffRzOvV/lSsH6Y0ettSlDW4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 01 May 2025 14:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17784 (0x4578)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Validity
Not Before: Apr 24 14:50:29 2025 GMT
Not After : May 1 14:50:29 2025 GMT
Subject: CN=680a4fb5-b0ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7a:ad:4d:a8:3b:c5:96:c9:6f:c5:1d:1b:a9:
2e:4b:61:39:a3:ee:e7:10:33:72:7a:a3:23:26:21:
49:a9:98:a0:81:d0:e2:01:4f:cf:01:3f:f2:9b:03:
af:30:c6:c4:28:6d:27:b4:99:44:d1:d9:09:17:19:
36:be:0f:a1:d2:86:29:53:a5:03:26:6c:31:9a:9c:
e1:1c:14:f6:5c:bd:61:31:2d:c6:66:e0:3b:76:c1:
c8:ad:3e:ba:cd:c1:ba:57:70:54:d5:a8:bd:ab:7b:
ee:18:20:cf:d3:8e:46:93:2d:45:3a:96:a7:ec:a7:
45:bf:b8:aa:6f:54:b9:5c:39:36:41:be:6e:be:8d:
aa:cc:e3:ee:ef:c1:b2:24:13:70:13:c5:01:cf:9b:
f2:44:29:4e:6e:97:82:d8:36:52:54:d5:4e:3f:3c:
9a:09:fa:66:95:82:58:91:cd:c8:01:a2:51:af:1e:
47:e8:ff:2f:f8:2e:9e:43:a7:c3:c9:da:7e:2f:d5:
54:08:7f:e2:c8:12:cb:c8:b7:e9:4e:49:52:eb:78:
ab:27:a0:80:88:8c:db:51:b7:ca:64:35:31:00:7a:
d8:f5:68:df:07:e7:40:be:88:9d:ef:9b:a1:9b:77:
65:a4:5f:8b:ca:3f:4f:33:ad:ee:67:80:c3:a2:53:
0f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:B1:74:45:C1:74:5D:FB:48:3C:10:E5:4E:D8:BC:FC:34:22:3C:BA
X509v3 Authority Key Identifier:
keyid:96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a7:b2:32:a5:17:55:f3:8a:94:bc:f9:49:67:5b:16:67:e8:f7:
00:74:46:85:7a:61:ec:b5:ce:0a:a9:0c:cf:e3:4b:3f:6b:36:
fb:d2:b0:29:c7:42:51:f3:42:0c:6f:c5:31:84:e9:b4:1c:95:
91:ac:a0:f9:aa:8d:d7:1a:67:03:7b:6f:e6:ea:ee:44:89:3f:
7e:d9:3d:e2:51:49:1a:ab:e9:b7:b4:31:0c:07:02:f5:78:c0:
6e:48:ef:93:da:0c:c0:4c:45:47:7c:a9:d4:39:38:60:b4:81:
7b:82:c8:d7:1d:9e:09:e2:80:bd:6c:8e:3d:13:b3:54:7a:ef:
fe:ee:9a:c2:54:86:66:7c:cc:e3:6c:55:e2:87:60:64:29:07:
15:28:3b:5f:54:ca:4e:f3:c1:20:c5:66:6e:07:33:5d:05:28:
07:e7:ee:68:1c:be:4c:8d:60:63:97:6b:ce:9a:a4:68:b4:63:
86:d1:e7:65:d2:12:c1:d7:f6:ed:0a:44:45:5a:37:66:8d:e7:
1c:3d:b7:18:ae:4b:f6:d0:4e:5b:3c:b5:8e:94:6e:cd:ec:11:
99:bb:ae:51:29:6c:2c:a2:f8:d8:88:27:a1:38:24:27:37:80:
30:5a:96:a3:57:fc:74:aa:fd:d3:88:0e:9f:97:4c:c4:32:10:
15:7b:05:dd
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgICRXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDk2QTg1RUY0QjhDQUY1RDRDMzVBMTU3RjRFMTI1RUU0
OTRCQUY5MzkwHhcNMjUwNDI0MTQ1MDI5WhcNMjUwNTAxMTQ1MDI5WjAYMRYwFAYD
VQQDEw02ODBhNGZiNS1iMGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuHqtTag7xZbJb8UdG6kuS2E5o+7nEDNyeqMjJiFJqZiggdDiAU/PAT/ymwOv
MMbEKG0ntJlE0dkJFxk2vg+h0oYpU6UDJmwxmpzhHBT2XL1hMS3GZuA7dsHIrT66
zcG6V3BU1ai9q3vuGCDP045Gky1FOpan7KdFv7iqb1S5XDk2Qb5uvo2qzOPu78Gy
JBNwE8UBz5vyRClObpeC2DZSVNVOPzyaCfpmlYJYkc3IAaJRrx5H6P8v+C6eQ6fD
ydp+L9VUCH/iyBLLyLfpTklS63irJ6CAiIzbUbfKZDUxAHrY9WjfB+dAvoid75uh
m3dlpF+Lyj9PM63uZ4DDolMPdwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFJ2xdEXB
dF37SDwQ5U7YvPw0Ijy6MB8GA1UdIwQYMBaAFJaoXvS4yvXUw1oVf04SXuSUuvk5
MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjRBMUJFQTYxRDY2MTFFMkIyQ0Q4QjdDNzJG
RDFGRjIvbHFoZTlMaks5ZFREV2hWX1RoSmU1SlM2LVRrLmNybDB+BggrBgEFBQcB
AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np
dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9scWhlOUxqSzlk
VERXaFZfVGhKZTVKUzYtVGsuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw
MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk
ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNEExQkVBNjFENjYxMUUyQjJDRDhCN0M3MkZE
MUZGMi9scWhlOUxqSzlkVERXaFZfVGhKZTVKUzYtVGsubWZ0MDMGCCsGAQUFBzAN
hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB
BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA
AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCnsjKlF1XzipS8+UlnWxZn6PcAdEaFemHs
tc4KqQzP40s/azb70rApx0JR80IMb8UxhOm0HJWRrKD5qo3XGmcDe2/m6u5EiT9+
2T3iUUkaq+m3tDEMBwL1eMBuSO+T2gzATEVHfKnUOThgtIF7gsjXHZ4J4oC9bI49
E7NUeu/+7prCVIZmfMzjbFXih2BkKQcVKDtfVMpO88EgxWZuBzNdBSgH5+5oHL5M
jWBjl2vOmqRotGOG0edl0hLB1/btCkRFWjdmjeccPbcYrkv20E5bPLWOlG7N7BGZ
u65RKWwsovjYiCehOCQnN4AwWpajV/x0qv3TiA6fl0zEMhAVewXd
-----END CERTIFICATE-----
Generated at Thu Apr 24 18:09:30 2025 by rpki-client on console.sobornost.net