Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft
File: sgBZBkA-medoWaqrsdy92uRCBvY.mft (raw, json)
Hash identifier: 4wQSfqGGEGq0xdCcmbzEcDHaj1KJHRyx4/imeBGSMaI=
Subject key identifier: C1:D6:D9:2B:30:2F:D4:62:54:07:CA:B5:3B:61:EE:C4:85:DB:36:73
Authority key identifier: B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6
Certificate issuer: /CN=A913A748/serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6
Certificate serial: 68
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft
Manifest number: 67
Signing time: Fri 31 Jan 2025 05:59:20 +0000
Manifest this update: Fri 31 Jan 2025 05:59:19 +0000
Manifest next update: Fri 07 Feb 2025 05:59:19 +0000
Files and hashes: 1: sgBZBkA-medoWaqrsdy92uRCBvY.crl (hash: xbWgT4ijY+p0AA0SNpBQTJvDT2Lut1hQSG84AKMj+L4=)
2: 0B7CF64642B211EF82734679C4F9AE02.roa (hash: SLWE2DPVkEquMfz8hHroSU4zXY18AR0tkk1tXcWxdMg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104 (0x68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913A748/serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6
Validity
Not Before: Jan 31 05:59:19 2025 GMT
Not After : Feb 7 05:59:19 2025 GMT
Subject: CN=679c66b7-24af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:cf:9c:72:de:b5:3f:c0:91:51:b1:a9:f5:e2:
8d:c6:01:a5:c9:97:e9:af:3f:ae:9f:29:ae:52:56:
bb:87:1d:35:a3:13:84:dd:4d:ce:b9:bc:f5:1a:43:
e2:6a:bc:db:51:60:4a:0f:a8:f1:38:8f:95:67:82:
9f:27:52:90:c4:91:12:26:60:9f:fe:84:5d:dc:03:
61:0c:ca:a0:6a:d9:0a:02:a7:fc:e5:71:f3:6f:6a:
50:8c:ca:c8:9f:b1:30:6c:75:4d:0d:68:0e:32:14:
69:32:bd:84:4e:46:e8:db:2b:44:97:fc:73:70:40:
b5:c0:cc:cf:70:4d:e3:be:51:53:07:d8:4e:1e:32:
5a:6a:2c:d4:9f:6a:0c:76:50:12:20:b6:cb:54:14:
4b:36:5a:e3:58:1f:04:01:2c:7f:0c:9f:96:18:2d:
6d:1d:e6:51:29:f0:b4:6d:4b:5d:68:bb:d8:64:e6:
92:95:b6:a0:e7:cb:e4:ef:81:3a:c4:85:c4:03:28:
5b:ef:22:53:a8:79:04:86:61:a4:d9:b3:c8:e8:66:
86:1d:55:79:e4:35:98:de:3e:77:d0:39:db:f8:07:
72:c5:66:4d:db:82:91:51:09:1a:77:84:2d:fa:5e:
13:fe:64:09:df:79:dd:d4:5a:9d:2b:dc:e3:45:e0:
99:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:D6:D9:2B:30:2F:D4:62:54:07:CA:B5:3B:61:EE:C4:85:DB:36:73
X509v3 Authority Key Identifier:
keyid:B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6b:1a:a4:c6:0a:95:bd:c3:4b:21:98:aa:1c:77:a7:04:bf:60:
df:c2:7f:b0:8f:93:fd:6b:6e:04:3a:62:8f:e3:9d:8c:b2:b0:
b7:86:4e:be:83:31:ba:d1:2b:4b:c9:da:5a:f9:3c:6c:4e:6d:
21:73:53:df:b0:71:f6:ac:78:8b:20:c8:c5:7f:02:93:42:74:
da:e8:91:2c:6e:59:52:8a:81:9b:a0:4f:0b:09:09:64:3c:84:
aa:14:ba:f5:6b:4a:77:fd:96:71:86:3c:d3:9a:0e:ac:c3:f7:
b1:f6:8f:ec:8c:af:04:5b:f8:83:80:b4:0e:5d:44:60:a8:2d:
a7:d3:af:32:fd:e7:15:68:5a:40:bd:ba:ac:97:32:12:a4:4a:
1a:57:5e:52:fd:bd:0d:98:bc:5e:2c:70:54:89:5d:16:ad:f8:
76:6a:66:a3:82:bb:f8:c0:9d:d7:83:51:a5:70:11:75:9e:0e:
e6:51:96:a5:67:bd:de:4c:df:2e:11:07:db:ce:cf:d0:b1:ce:
09:f5:d3:f7:43:63:61:7b:2a:a0:6a:c4:56:0d:d1:4d:4c:c8:
33:12:7c:6e:21:aa:c6:49:00:f3:68:96:89:9b:e6:f0:1f:30:
ae:79:55:94:b9:11:24:47:5c:e3:ec:fe:d6:a0:43:bb:7b:49:
aa:35:8c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:59:02 2025 by rpki-client