Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft
File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json)
Hash identifier: vJmKivCSXHw+FJSWhlnKOEBifIbyJvXH5I6HkoQ/pqc=
Subject key identifier: 2A:45:4C:09:95:D4:C5:E9:00:9A:88:41:F3:7C:5D:FC:96:94:11:A9
Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A
Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A
Certificate serial: 1703
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft
Manifest number: 16EF
Signing time: Fri 31 Jan 2025 16:38:52 +0000
Manifest this update: Fri 31 Jan 2025 16:38:52 +0000
Manifest next update: Fri 07 Feb 2025 16:38:52 +0000
Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: XD7+DI6vfI8iB6OjTrMg3U61zH7w//OfjmlT/kRcZ8o=)
2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: iXjwV45fwne/rI84HJKZlfBWV1ptmSntosF8B4rHHyw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5891 (0x1703)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A
Validity
Not Before: Jan 31 16:38:52 2025 GMT
Not After : Feb 7 16:38:52 2025 GMT
Subject: CN=679cfc9c-ea9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:da:02:91:54:84:16:f9:a7:be:ef:d3:99:1a:
15:01:9e:c9:64:01:f5:4a:63:3d:1e:ce:e4:a7:2b:
73:64:bd:f5:1f:cc:f4:b3:0c:4f:95:f8:6f:9d:36:
19:20:30:ba:a7:b1:02:a8:76:af:17:f4:f0:5b:77:
de:d3:2f:7e:8d:c8:c1:99:c6:7b:7b:c9:9b:09:51:
4e:db:cd:d6:93:ba:6f:4e:b6:a3:9a:a9:59:9e:06:
9f:c2:13:74:3c:bb:1c:b7:6e:2b:2f:14:db:6f:31:
60:c8:c5:87:d3:fa:b7:94:b4:8d:5a:97:8b:e8:17:
58:bf:56:de:88:8a:19:92:41:ff:a7:4b:66:01:a6:
aa:eb:f6:49:a4:2a:98:22:7e:52:aa:fb:d7:0a:4c:
5f:a9:92:09:39:4d:c1:e3:ce:66:ac:71:b1:55:be:
f8:dc:ee:f2:e1:41:dc:bf:4b:fe:e6:f6:84:9d:39:
06:2e:4d:74:a0:d5:c0:75:2d:d9:38:30:fc:9f:c3:
73:2c:0a:14:f8:7f:f1:df:0d:c2:07:99:e2:a1:34:
6e:3a:29:43:4c:3d:95:2d:6f:46:79:ce:c0:3c:49:
67:01:c0:16:ec:6e:10:1b:b0:62:47:93:01:71:73:
13:2a:dd:ab:c6:a5:9e:c7:59:2f:d0:7d:ac:00:20:
e1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:45:4C:09:95:D4:C5:E9:00:9A:88:41:F3:7C:5D:FC:96:94:11:A9
X509v3 Authority Key Identifier:
keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
86:d9:51:e5:7f:1e:b4:07:e6:38:c0:fe:a2:7d:30:90:68:7b:
10:64:f5:00:8f:d5:0d:96:14:fd:89:cd:6a:f8:15:6e:d8:55:
03:77:dc:bb:fe:e7:70:e5:cc:4f:2b:de:dd:ba:8b:fe:e4:6f:
44:db:79:7d:46:d8:4b:ac:e9:fc:79:fe:f2:e7:02:c9:dd:d7:
b9:ea:14:ca:ca:0b:63:38:77:d4:f6:34:93:a0:71:71:da:51:
c7:3a:e5:cd:e1:cb:03:23:eb:d6:d0:01:22:7c:32:95:c4:05:
66:d6:2a:5c:ec:4b:43:7a:8a:55:27:85:f6:35:ae:e4:5e:c4:
b1:33:f0:04:4a:48:42:16:e5:5e:45:18:04:bf:9a:ba:46:23:
fb:c9:88:77:8e:a4:b8:30:14:27:38:05:13:64:3d:fb:dc:f3:
8d:b5:a7:e2:7a:68:7c:76:3c:0b:f8:54:5d:05:47:74:06:a8:
ff:a3:11:ed:7e:8c:88:b9:ba:b4:b8:26:fa:5f:31:7a:a8:2d:
e0:84:6e:ed:e8:20:02:b4:c8:a8:95:ae:94:46:84:6d:13:d3:
02:93:d8:79:9d:a9:8e:96:b4:b5:4e:23:bd:45:04:61:aa:5d:
19:22:f0:e3:d2:d8:26:ce:42:2e:fd:88:b6:77:aa:a4:fa:31:
37:79:7e:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:40:25 2025 by rpki-client