Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft
File: U78N14DbA47OFNQEWbq5xo9phTs.mft (raw, json)
Hash identifier: 0XuDbiyR+onOdMj2eStMyRB+A/VXBhoxGBskSDGkPko=
Subject key identifier: 50:2B:46:4A:FB:67:EE:FD:C5:6B:41:19:51:04:47:6B:47:B8:14:04
Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Certificate serial: 21F1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft
Manifest number: 21B2
Signing time: Fri 31 Jan 2025 15:54:32 +0000
Manifest this update: Fri 31 Jan 2025 15:54:31 +0000
Manifest next update: Fri 07 Feb 2025 15:54:31 +0000
Files and hashes: 1: U78N14DbA47OFNQEWbq5xo9phTs.crl (hash: dTo5Dv4bjIZfYhpcwl/kLe9BGTJ32vrAFr/Xhk7Qg+g=)
2: 3EEE50E6A36B11EF9E46987EC4F9AE02.roa (hash: f7G+JecOso1tq/2DrQIIrvlSbJcZUWeFUA+OwYgWNPo=)
3: B937CBBA6DD411EF977CA52AC4F9AE02.roa (hash: DNPEZoiqquqZXGfdK28t7zQLFNY8ea/+gAa4O/ZRs1s=)
4: 0809AEC4B3A411EF8E395A46C4F9AE02.roa (hash: FJxtXoJAWcorl6RDk7PE4WH5CYVDPRaE5B5A9meyGbg=)
5: E6EA5626B3A311EF9D9F7429C4F9AE02.roa (hash: 3+JDVuiPlbwikbiK7IFOC7PgUQwiTHWoco7qtA33ENw=)
6: 235019148A3911EF864D8512C4F9AE02.roa (hash: hnfY3HHIXsd6wmd3BY/eNxymbtFAwmDiWZ9khlttIH8=)
7: FD2941A0BBC311EEBE58430EC4F9AE02.roa (hash: X2aoTMKWDO3O+NQTnXw87sQERWlGRf5FlK95mjGB8r4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8689 (0x21f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Validity
Not Before: Jan 31 15:54:31 2025 GMT
Not After : Feb 7 15:54:31 2025 GMT
Subject: CN=679cf238-3fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ec:75:0b:de:bb:c1:8f:05:1e:3f:4b:7f:e6:
2a:90:58:2c:d4:24:54:4c:5d:3b:ee:da:0a:5b:41:
c2:80:fa:d7:fd:a3:fe:d4:28:bb:6e:96:47:7a:7e:
23:c1:f6:50:f3:70:e2:f3:3f:3a:b1:8d:3d:5c:65:
c6:15:39:3f:98:16:c5:16:b6:76:96:a8:22:9e:e0:
f3:5d:83:ad:d7:bf:6c:4b:38:bf:38:f8:06:ab:4c:
a4:d0:29:22:0b:b2:b4:27:4f:54:43:55:8d:11:07:
a4:77:db:b9:76:83:09:04:b3:50:f7:39:e7:36:b0:
6d:1a:80:45:6a:07:de:f7:16:db:f7:f2:db:e7:89:
be:0d:c1:cf:95:de:d6:70:f8:0c:2c:fc:96:63:3f:
58:76:a3:21:f9:52:83:1e:ea:68:52:32:e8:3b:7e:
4e:a2:c0:7f:53:1a:a1:22:28:b2:22:07:7a:35:11:
2d:78:e1:01:a0:64:b6:0d:5e:08:7e:e2:c3:b6:04:
64:c0:a4:0f:0d:4c:6a:f2:6b:5e:a3:5d:51:75:3b:
37:80:bd:3a:7e:9e:01:40:f7:7d:cb:c7:64:99:27:
02:a6:a8:19:d6:aa:f8:ee:40:70:e0:ea:d6:71:1f:
9d:8b:ba:aa:fc:76:47:d1:c7:e8:0d:27:0f:32:fb:
73:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:2B:46:4A:FB:67:EE:FD:C5:6B:41:19:51:04:47:6B:47:B8:14:04
X509v3 Authority Key Identifier:
keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3f:12:1a:bb:68:ca:d5:88:7e:6d:6c:6d:f8:43:c0:44:a5:cb:
f6:25:3b:56:83:14:af:bc:f1:2e:0b:e6:05:8c:e0:30:ff:43:
23:fe:c9:70:c7:56:fc:1a:3b:1f:f0:2e:c0:fe:44:50:8e:bd:
fc:a0:c5:7e:f9:ec:bf:d0:70:13:c4:02:e3:a8:f9:d7:ea:46:
08:06:4c:0c:ed:02:94:f6:0d:c6:c7:f2:cf:39:58:75:8b:8c:
58:9b:36:3c:fe:73:7d:69:7b:d8:f0:34:47:f8:92:cc:cb:d3:
7a:5c:87:77:3e:82:57:55:60:a4:88:07:25:78:17:08:b5:0e:
34:80:b3:6a:68:16:7f:54:fc:ca:a8:34:72:a0:fc:62:53:ca:
55:4b:64:20:6a:c8:2a:8e:8f:94:ac:63:a6:f2:05:d0:98:92:
ed:e5:ce:98:08:8c:bb:f3:5d:87:77:aa:d2:a3:89:7a:4e:d5:
9a:d5:d5:4e:5b:d8:4f:07:6f:39:dc:c9:bf:21:c4:09:46:a0:
cd:27:a5:6e:96:b4:3a:05:25:e1:26:91:25:86:15:d7:a2:2d:
e2:46:bc:d0:df:31:05:41:98:40:c2:88:6f:fb:19:95:2f:f1:
de:83:45:0c:2e:e0:1d:ff:ec:a0:35:15:92:9d:22:a7:4f:31:
2c:85:ff:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:13:00 2025 by rpki-client