Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft
File: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft (raw, json)
Hash identifier: 4z+ZxQAFNC+dUzaKisjVrTuI7OiwK1itmhYnkUaBBXQ=
Subject key identifier: 44:70:0D:AB:2F:45:9D:F0:3B:3B:CC:BF:51:8A:58:EC:BE:40:07:64
Authority key identifier: EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66
Certificate issuer: /CN=A9126A3C/serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66
Certificate serial: 18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft
Manifest number: 15
Signing time: Fri 31 Jan 2025 07:04:35 +0000
Manifest this update: Fri 31 Jan 2025 07:04:35 +0000
Manifest next update: Fri 07 Feb 2025 07:04:35 +0000
Files and hashes: 1: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl (hash: ohW7xYm5Zv8vLRuj1oUOfaxOvGUb2QfnuZSRyTxFRF8=)
2: 16E1C8ECC6DB11EFBDDB8A0AC4F9AE02.roa (hash: NFkplWmsMA3dKF672WmukIl9RpnNjHUYN1V/j7l+GN0=)
3: E11BD76CC6D911EF8CC3C849C4F9AE02.roa (hash: FPrJ8rYYz3zXm+ulxONvcKZWR1V8127XQSJ/4rwqktA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24 (0x18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9126A3C/serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66
Validity
Not Before: Jan 31 07:04:35 2025 GMT
Not After : Feb 7 07:04:35 2025 GMT
Subject: CN=679c7603-00bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:39:80:2e:7d:7f:21:32:7b:7d:8a:aa:4e:7f:
2b:0b:b0:2d:4e:71:d4:15:ac:b4:25:29:92:6a:48:
48:7d:7b:f7:5e:dd:19:a0:8a:7a:fd:fd:0c:9f:8c:
73:32:79:57:5a:f9:4b:71:f7:ff:56:19:ef:3d:2d:
27:90:c0:19:25:8b:4c:72:15:01:28:d9:99:10:5b:
99:c3:58:65:f2:d4:55:fa:a2:fa:75:11:bb:66:9e:
cb:d0:50:79:2a:0a:2c:9c:91:67:a0:c0:2c:5b:0a:
ad:78:cb:a6:30:88:0d:56:bf:2a:8e:11:7a:b8:cd:
2a:b3:0d:7b:f0:62:47:a6:c9:1d:df:5d:c1:c0:90:
ad:48:2d:75:96:d9:e4:a0:cf:83:c9:ca:32:17:29:
0c:f5:25:ad:95:37:bf:d9:d5:b0:bf:31:ff:fa:b1:
9d:d7:15:da:39:87:36:d4:83:46:7a:54:90:35:2f:
c9:e5:1f:eb:7e:82:95:3b:09:02:10:47:32:c4:74:
5e:7a:83:49:46:c4:a1:a7:a3:d8:3b:7f:d5:a6:24:
49:8a:d9:3d:59:07:47:6b:0d:77:f7:db:0a:a2:e9:
26:0d:fe:75:1f:b3:2e:73:f4:55:45:cf:3c:d3:c5:
e6:5b:e3:c8:b8:2d:01:57:36:31:09:af:63:7e:27:
85:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:70:0D:AB:2F:45:9D:F0:3B:3B:CC:BF:51:8A:58:EC:BE:40:07:64
X509v3 Authority Key Identifier:
keyid:EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
53:31:68:ac:59:ba:9a:35:5a:5b:8a:c8:d3:87:2c:8b:f6:d0:
3c:c3:6a:af:e2:e2:cc:54:e6:e1:79:2f:1c:d8:a7:07:c5:21:
fb:1e:28:c2:e8:89:3c:a1:35:55:61:d4:d5:54:e7:2f:25:38:
d9:2a:fb:37:5b:31:8c:ee:f7:6e:8d:45:89:b0:bf:02:7c:a8:
ef:ac:03:42:d2:f4:72:ce:df:78:b3:59:f0:28:34:83:38:54:
c2:88:d2:42:df:08:fe:3e:c4:57:03:0c:47:2e:da:a6:64:0d:
8b:53:26:8f:eb:61:fd:08:ec:98:eb:c5:cb:bc:6c:1f:23:8e:
5b:70:39:4c:fb:8a:e7:c0:61:5a:61:f8:50:29:a2:5d:fe:c7:
ab:77:04:fa:10:bb:95:f8:fc:89:83:d6:14:ce:d8:8b:ce:92:
a7:af:a3:f5:a4:88:a1:02:17:c1:3f:09:00:5a:cc:bd:d7:74:
e5:dc:1b:29:c3:f2:9f:a4:76:3a:78:9e:8d:94:80:0b:85:f0:
70:e2:e8:1f:33:57:79:a4:6b:ee:cf:23:3a:d1:4d:2e:79:d5:
f8:fe:6e:cd:33:ed:c7:21:73:19:75:37:7b:b4:94:15:ec:02:
ff:25:6f:34:54:b7:a3:f1:71:c6:06:ff:1e:36:2d:5c:b8:68:
69:f9:da:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:27:13 2025 by rpki-client