Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft
File: KZYjJd4LreTcndvFdq4ncBK8N1g.mft (raw, json)
Hash identifier: 0vwPz4yu8/p/Rn/7Qd/awKT3eRB+sAQgw5uZ9rl7w9E=
Subject key identifier: 06:37:0B:9D:98:EB:FA:4A:EE:8E:B0:A3:7D:97:28:71:46:C7:AB:CC
Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58
Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758
Certificate serial: 1A14
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft
Manifest number: 19FA
Signing time: Fri 31 Jan 2025 16:24:12 +0000
Manifest this update: Fri 31 Jan 2025 16:24:11 +0000
Manifest next update: Fri 07 Feb 2025 16:24:11 +0000
Files and hashes: 1: KZYjJd4LreTcndvFdq4ncBK8N1g.crl (hash: ZnfeC+Nkdfje4YqnaCOrZMJGA38wAf3BD52Crkq4xMo=)
2: A0769964641D11EFA3C4902EC4F9AE02.roa (hash: t5K6AqvleSo216upA/bWqmGHo904QC0Pfe/exQVGjfs=)
3: B201496EF3A311EC8804FE09C4F9AE02.roa (hash: 9Yic7ZudnM+/3y+rGwCOY5Ix5lQBB7EQE64c16elJaU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6676 (0x1a14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758
Validity
Not Before: Jan 31 16:24:11 2025 GMT
Not After : Feb 7 16:24:11 2025 GMT
Subject: CN=679cf92b-6a16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b5:23:94:49:0f:50:74:28:3a:e0:b5:04:de:
77:c3:0b:15:6e:84:49:6b:b6:c8:91:20:2f:5f:d6:
97:18:d6:95:2b:a5:68:6d:80:48:35:79:1c:a8:38:
83:74:81:79:aa:b5:2b:1e:69:9e:e5:34:c1:93:0e:
67:57:99:e0:2d:43:3b:61:4a:a0:87:eb:78:b1:3c:
8d:48:15:ad:39:07:13:73:35:38:43:4e:2b:d1:5a:
03:db:49:f8:9b:1a:1f:8d:35:09:dd:d3:d3:d7:0c:
f1:c0:16:f0:99:10:04:f3:58:b7:ad:e6:15:c7:2a:
d6:cb:d5:cd:dc:34:6d:00:68:f8:67:bb:ed:17:78:
de:3e:90:f5:56:82:04:4f:40:96:e7:07:77:9a:3c:
ea:8e:35:bc:12:cd:7f:3d:47:31:5e:8f:e7:81:03:
0a:03:c2:46:d4:c4:c0:76:57:39:9b:bc:1e:ed:d6:
a3:fe:32:8d:b3:f1:19:01:5c:2b:57:4e:59:c9:be:
2f:e9:b3:b5:9a:a9:04:46:38:9d:d1:2a:17:4c:80:
b3:c9:90:b4:f3:27:b7:20:c1:ec:bc:19:aa:ea:19:
01:c1:5f:1e:96:85:0f:13:25:80:c9:05:99:ae:2c:
6c:6e:1c:e2:4f:a4:79:04:ca:03:81:4e:f9:ca:b5:
0b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:37:0B:9D:98:EB:FA:4A:EE:8E:B0:A3:7D:97:28:71:46:C7:AB:CC
X509v3 Authority Key Identifier:
keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
bc:9a:0b:12:d8:99:f4:59:30:46:22:50:07:40:13:fc:36:eb:
a0:9c:e9:b6:a4:13:b5:5f:9a:4f:6f:0f:a4:d0:90:7c:2c:63:
20:91:a4:dd:a6:21:bd:03:c7:bc:ab:8c:9f:49:7b:c5:bf:2a:
8a:30:c6:f2:59:c7:48:a3:8a:ff:a4:49:32:b0:33:bc:8c:14:
9f:cd:07:2d:ac:b8:a4:41:ee:fd:ca:56:eb:f3:6d:94:89:f9:
b7:4c:26:63:38:44:eb:ed:7d:8b:50:09:7f:6e:d4:e8:35:72:
bc:4f:6d:52:21:7c:82:6a:6d:0f:ac:a0:03:06:f9:79:9d:49:
2e:5e:8b:6d:b3:f4:e5:9b:14:c2:e0:75:37:b4:ef:e4:41:57:
75:68:2f:8b:8e:84:a1:69:d0:77:ac:c9:e0:a9:ff:7f:f6:70:
7e:4f:fe:92:85:d7:36:6f:76:75:91:77:8d:91:cb:f4:79:48:
23:7e:0f:4d:89:84:7e:11:31:05:c0:63:16:c3:16:95:e4:c7:
b0:d0:a1:e4:24:25:d5:d8:3f:60:c8:b5:c5:5c:75:c2:10:8d:
b2:f2:01:c3:ae:e3:5d:50:02:b8:f9:fc:2f:4d:6a:4c:1b:87:
06:d4:62:05:2a:e4:6d:25:9f:3b:1e:6d:b0:28:27:6d:87:23:
16:7c:19:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:50:25 2025 by rpki-client