Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft
File: OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft (raw, json)
Hash identifier: /RSj2GCwda6R/4sP9VsdIt0sLXhW2qwwJ3yhIPJ5kKk=
Subject key identifier: 7E:10:81:DC:47:0C:99:12:9C:9F:B1:DF:D3:26:98:BA:16:56:21:5B
Authority key identifier: 3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28
Certificate issuer: /CN=A91592B3/serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028
Certificate serial: 23DF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft
Manifest number: 23CC
Signing time: Fri 31 Jan 2025 15:49:39 +0000
Manifest this update: Fri 31 Jan 2025 15:49:38 +0000
Manifest next update: Fri 07 Feb 2025 15:49:38 +0000
Files and hashes: 1: OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl (hash: qFi9rwD/PbaY1gIH8Jy/pzkeiTrNSYVixMQDvCV5X6w=)
2: 9876A6C025B211ECB5356475C4F9AE02.roa (hash: 4loc4urPVQS5L/hzKU13Pxjs5//WgdnLbBjxon1o65M=)
3: 54EE8F7615FE11ECAF541012C4F9AE02.roa (hash: Mt0fQZWhWQhdOjSfwp4ovls7hDEd5rk64993ERty+U0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9183 (0x23df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91592B3/serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028
Validity
Not Before: Jan 31 15:49:38 2025 GMT
Not After : Feb 7 15:49:38 2025 GMT
Subject: CN=679cf112-bcf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d5:bf:dc:8a:69:fb:7b:df:f0:6b:51:ff:8d:
74:1c:0c:70:1a:0f:52:a3:42:f0:e0:45:65:c5:5a:
ed:23:67:5d:bd:0b:2b:03:e3:98:05:07:38:dc:6d:
4e:8c:f6:23:01:5c:1f:7d:d1:57:c2:2f:40:d6:57:
77:9b:39:6c:99:24:96:83:9b:4f:f7:9d:69:be:09:
96:b0:47:08:fb:d0:e0:91:6a:27:18:47:ea:82:f2:
7a:39:e6:d9:2c:6a:5c:f4:2c:57:f1:7b:23:6b:54:
ac:a9:e1:be:26:78:e7:16:f3:89:d5:ff:b1:66:70:
4d:df:59:de:7a:86:66:b1:3c:fe:d1:70:75:8f:33:
a7:ee:cb:00:b4:a1:69:7c:18:86:02:7b:23:6c:ef:
bf:be:30:63:ad:da:5d:9a:ec:7d:8a:72:8c:cb:12:
92:2f:bf:db:ec:40:a9:2a:55:91:2f:5c:1a:46:7d:
35:b6:85:62:b2:91:fe:d0:35:61:94:04:60:55:00:
5e:cb:68:7f:3a:0e:8b:ea:bd:d9:55:44:47:75:03:
f1:cf:0f:b2:60:8b:d6:59:11:11:17:bf:f4:b2:5a:
6b:b2:f3:c9:4e:f5:2f:6c:17:ce:28:0a:0a:60:d9:
36:5e:f5:b5:62:b2:13:ad:d0:20:c4:1a:71:45:1a:
fe:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:10:81:DC:47:0C:99:12:9C:9F:B1:DF:D3:26:98:BA:16:56:21:5B
X509v3 Authority Key Identifier:
keyid:3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b2:b6:67:1a:d5:46:f3:77:51:97:25:92:ec:26:a9:f0:b0:85:
d9:eb:10:57:03:e8:48:52:35:f7:f1:9f:13:de:3c:c7:42:f8:
92:fb:34:0b:49:ae:19:ad:da:14:3d:3f:2b:93:c6:c5:b7:d5:
0a:b7:fd:49:2c:95:a7:03:53:77:24:85:7e:f4:84:52:1a:b4:
1a:f6:7d:a8:c1:d7:3f:9c:e9:09:5c:bb:f1:e4:93:79:4e:0c:
72:f5:9c:ca:cc:95:11:5f:cc:ce:d3:b8:53:aa:92:85:d8:e2:
a1:80:08:fb:80:90:fd:3b:7b:6a:57:31:d5:86:05:0f:33:9c:
f8:d7:ab:3b:a5:50:b8:43:71:60:66:90:55:cb:e5:c3:66:be:
74:fc:e3:4b:88:43:78:4f:ae:22:c0:af:3c:ff:a0:3b:61:f9:
59:44:dc:16:f0:a8:da:22:00:fe:1f:1c:82:4f:cf:65:f2:97:
70:e5:9f:df:44:10:7b:6c:8e:bd:d1:fc:8e:47:e6:1b:e1:5c:
bb:dd:1b:68:49:9d:e3:78:bd:78:73:31:eb:d4:61:c5:be:5f:
76:8b:c8:b6:d9:77:16:fa:93:7f:6d:32:b8:2e:79:f4:f0:ee:
4c:b6:b4:a4:c6:b8:9f:0b:5d:2b:64:2b:5a:b4:35:7d:06:ce:
d2:f2:33:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:54:43 2025 by rpki-client