Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft
File: 34Jss7t6i7KhHuS64uCH6sOnIdI.mft (raw, json)
Hash identifier: AU3HA/ZnUqsKv/eHmk4hykDnElomPzfEArLm+hZz/IE=
Subject key identifier: 88:7C:01:C3:1C:8E:71:84:2D:CC:FD:D2:31:92:0E:9D:23:0E:48:B4
Authority key identifier: DF:82:6C:B3:BB:7A:8B:B2:A1:1E:E4:BA:E2:E0:87:EA:C3:A7:21:D2
Certificate issuer: /CN=A91162DE/serialNumber=DF826CB3BB7A8BB2A11EE4BAE2E087EAC3A721D2
Certificate serial: 0239
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34Jss7t6i7KhHuS64uCH6sOnIdI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft
Manifest number: 0230
Signing time: Fri 31 Jan 2025 02:03:48 +0000
Manifest this update: Fri 31 Jan 2025 02:03:48 +0000
Manifest next update: Fri 07 Feb 2025 02:03:48 +0000
Files and hashes: 1: 34Jss7t6i7KhHuS64uCH6sOnIdI.crl (hash: BVxl1mPpFTNYcug1De/3h+MuAwC4PtA53G90+FOV4kA=)
2: 7C754058415411ED8133414DC4F9AE02.roa (hash: l47Gy8uLHHO9oyMWzHntqbTvL69ppWBGcq5K8U2N6Ws=)
3: C303879E415111EDBC3A1D19C4F9AE02.roa (hash: S+ycEkxlExSiIAk8iubLwdKE1ijDKJmAZke+yPsWDEw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 569 (0x239)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91162DE/serialNumber=DF826CB3BB7A8BB2A11EE4BAE2E087EAC3A721D2
Validity
Not Before: Jan 31 02:03:48 2025 GMT
Not After : Feb 7 02:03:48 2025 GMT
Subject: CN=679c2f84-278b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:61:7e:1f:66:40:8a:16:2d:a8:6a:8f:a2:2e:
bf:53:d4:6c:e4:0f:2f:9e:df:44:7e:7b:14:13:1a:
0c:8e:68:b5:01:03:2a:73:9f:22:ba:44:d8:e4:c8:
30:68:04:68:13:04:04:c7:06:8f:ae:79:62:ad:b6:
dd:19:28:f7:98:65:66:f8:7d:64:52:d1:16:bc:c3:
6c:6f:70:33:82:c2:1a:6a:dc:79:4f:3b:6c:f0:bb:
93:9e:4c:56:06:d2:aa:39:51:f7:41:b5:76:30:3f:
bc:e0:c9:59:7b:26:ce:79:56:dc:33:e9:23:c6:2d:
0b:7f:49:f8:2a:2a:e3:dc:78:c5:e3:41:17:a9:83:
1d:e4:7a:00:dd:d3:49:be:ce:5a:8a:5d:49:46:eb:
63:13:ee:6c:40:b0:16:0a:5e:5a:cf:b0:11:5d:5a:
c1:6b:c5:14:6a:46:4f:98:1f:84:2d:1a:bc:72:d7:
86:88:3b:f9:e3:2a:1a:42:85:c2:22:86:1e:1b:e6:
0c:6c:8e:61:b1:4a:f3:fe:ee:f1:a1:c3:c1:e3:5a:
db:6d:57:cd:dc:ce:51:22:55:c4:59:fb:7e:c1:40:
d0:84:a5:10:38:4c:8f:80:78:f0:6d:df:89:49:a6:
f1:ad:f8:ba:1f:90:26:0e:ac:96:0a:99:49:61:ab:
24:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:7C:01:C3:1C:8E:71:84:2D:CC:FD:D2:31:92:0E:9D:23:0E:48:B4
X509v3 Authority Key Identifier:
keyid:DF:82:6C:B3:BB:7A:8B:B2:A1:1E:E4:BA:E2:E0:87:EA:C3:A7:21:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34Jss7t6i7KhHuS64uCH6sOnIdI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
55:8c:b9:34:f0:71:0c:c2:f7:9e:47:d7:a9:cd:2b:1a:10:38:
8b:1d:0a:52:2c:83:bd:68:65:e4:d6:99:e0:10:e3:ea:3a:73:
59:ed:fa:24:d8:bb:2f:b9:98:58:2c:5c:6f:d1:7f:39:f0:2d:
4a:2c:93:7b:82:19:05:50:d3:51:c3:99:14:3b:1d:2f:57:9e:
ba:71:87:5b:23:f4:af:d6:f6:5c:10:a4:35:d5:8d:e2:14:1e:
90:2a:d7:0a:33:9f:71:02:7a:a9:7e:d4:2a:c4:e0:a4:a4:8a:
fe:d6:fe:92:0e:e0:d0:36:c4:f6:71:11:69:34:9d:b9:c4:94:
4c:ff:71:fb:bf:6c:18:7d:cd:9a:7a:6a:de:25:89:89:a4:aa:
4f:4c:83:45:25:0c:c9:e4:f3:60:b1:65:5a:21:ed:28:1f:78:
49:84:4a:3e:45:86:a4:e0:76:09:c5:98:a4:87:a5:a8:4b:7e:
e9:62:e1:6a:b2:a1:ad:7a:48:b8:85:c3:13:c7:b8:a9:17:e5:
a7:43:44:cd:ed:eb:f9:df:1b:88:12:ef:2f:9c:a1:b3:7f:ca:
ca:51:77:52:d7:27:8e:45:43:12:4f:f5:16:33:ca:09:04:34:
24:41:9e:64:2b:8a:b9:fa:dd:d1:fb:8a:e6:e6:98:ec:d9:fe:
d3:07:66:8d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTYyREUxMTAvBgNVBAUTKERGODI2Q0IzQkI3QThCQjJBMTFFRTRCQUUyRTA4N0VB
QzNBNzIxRDIwHhcNMjUwMTMxMDIwMzQ4WhcNMjUwMjA3MDIwMzQ4WjAYMRYwFAYD
VQQDEw02NzljMmY4NC0yNzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA52F+H2ZAihYtqGqPoi6/U9Rs5A8vnt9EfnsUExoMjmi1AQMqc58iukTY5Mgw
aARoEwQExwaPrnlirbbdGSj3mGVm+H1kUtEWvMNsb3AzgsIaatx5Tzts8LuTnkxW
BtKqOVH3QbV2MD+84MlZeybOeVbcM+kjxi0Lf0n4Kirj3HjF40EXqYMd5HoA3dNJ
vs5ail1JRutjE+5sQLAWCl5az7ARXVrBa8UUakZPmB+ELRq8cteGiDv54yoaQoXC
IoYeG+YMbI5hsUrz/u7xocPB41rbbVfN3M5RIlXEWft+wUDQhKUQOEyPgHjwbd+J
Sabxrfi6H5AmDqyWCplJYaskmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIh8AcMc
jnGELcz90jGSDp0jDki0MB8GA1UdIwQYMBaAFN+CbLO7eouyoR7kuuLgh+rDpyHS
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjJERS8xNzY3OTRENDE1
NUExMUVEQjBBMTI3MjBDNEY5QUUwMi8zNEpzczd0Nmk3S2hIdVM2NHVDSDZzT25J
ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzM0SnNzN3Q2aTdLaEh1UzY0dUNINnNPbklkSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
NjJERS8xNzY3OTRENDE1NUExMUVEQjBBMTI3MjBDNEY5QUUwMi8zNEpzczd0Nmk3
S2hIdVM2NHVDSDZzT25JZEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBVjLk08HEMwveeR9epzSsaEDiLHQpSLIO9aGXk1pngEOPqOnNZ7fok
2LsvuZhYLFxv0X858C1KLJN7ghkFUNNRw5kUOx0vV566cYdbI/Sv1vZcEKQ11Y3i
FB6QKtcKM59xAnqpftQqxOCkpIr+1v6SDuDQNsT2cRFpNJ25xJRM/3H7v2wYfc2a
emreJYmJpKpPTINFJQzJ5PNgsWVaIe0oH3hJhEo+RYak4HYJxZikh6WoS37pYuFq
sqGteki4hcMTx7ipF+WnQ0TN7ev53xuIEu8vnKGzf8rKUXdS1yeORUMST/UWM8oJ
BDQkQZ5kK4q5+t3R+4rm5pjs2f7TB2aN
-----END CERTIFICATE-----
Generated at Sun Apr 27 18:48:17 2025 by rpki-client