Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft
File: 3dU_UiXtL42o0J56rZgsgLbOrag.mft (raw, json)
Hash identifier: IScyHJcXEANY0o044WP+6BtqMoaF6iOvDY/IURbv3/c=
Subject key identifier: DE:49:C2:51:77:6F:C1:20:BD:FA:B9:BA:C5:28:1F:0A:D1:8C:0C:10
Authority key identifier: DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8
Certificate issuer: /CN=A91658EF/serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8
Certificate serial: 0753
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft
Manifest number: 2AD2
Signing time: Fri 31 Jan 2025 16:50:25 +0000
Manifest this update: Fri 31 Jan 2025 16:50:25 +0000
Manifest next update: Fri 07 Feb 2025 16:50:25 +0000
Files and hashes: 1: 3dU_UiXtL42o0J56rZgsgLbOrag.crl (hash: mcktNV/+YORVxvwFs48YfkQd8B/qnyanklsF/Mh2jqM=)
2: A20F3364D9CD11EF93ACA765C4F9AE02.roa (hash: 9j2lGvD1E7NEBY/FBdpStd/rUbAqxjV4iBlBalULt0s=)
3: CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa (hash: +0aLF83TGQFFH5lnNHLVGdwtITWpI0fA1IvHIrOGTdQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1875 (0x753)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91658EF/serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8
Validity
Not Before: Jan 31 16:50:25 2025 GMT
Not After : Feb 7 16:50:25 2025 GMT
Subject: CN=679cff51-82fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d8:07:c6:72:41:23:46:d5:51:ba:01:66:79:
f6:c7:b6:52:95:ae:b8:7d:38:8d:02:b0:aa:b4:80:
8e:ca:95:28:15:c0:80:f9:b1:cf:d9:ef:9e:99:d4:
75:bf:19:52:6c:0f:e4:94:ac:95:78:77:37:90:ca:
05:fe:6e:db:3d:14:04:4e:cb:39:aa:a9:d4:97:6f:
7e:10:ab:75:22:bb:04:c3:80:01:56:71:58:c5:5d:
41:1d:d3:e6:35:8a:a0:bb:5c:fa:ba:1d:39:91:10:
56:6c:09:71:a1:a0:b8:5a:9f:8d:c0:d5:d3:12:0c:
31:17:f3:66:f3:4c:80:8b:24:93:b6:f6:03:ae:c0:
59:8a:37:d9:1b:16:e7:2b:9d:10:58:59:f1:6b:73:
b7:fb:30:0c:58:38:75:e1:1f:f8:d2:8c:0d:ac:05:
3e:3c:c9:b4:59:b0:04:63:00:bd:05:df:ba:a8:93:
ae:bd:f7:7a:dc:f3:1d:5e:b7:1b:d2:cb:da:f4:de:
5b:2d:71:31:ff:8b:59:64:c8:7b:c4:80:93:2e:49:
ff:9c:f1:66:15:a1:cb:55:07:5f:98:5c:dd:a1:7f:
b8:f2:94:54:45:6b:29:77:f3:6c:d8:bd:e4:a1:af:
00:30:d1:9e:09:25:5f:33:68:a3:ad:52:4b:a3:67:
01:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:49:C2:51:77:6F:C1:20:BD:FA:B9:BA:C5:28:1F:0A:D1:8C:0C:10
X509v3 Authority Key Identifier:
keyid:DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
04:49:80:ee:58:49:bc:01:bf:a0:5d:c8:40:40:1a:8c:23:f4:
fc:ad:95:9e:09:a2:be:5a:cf:37:5f:b9:db:b2:98:a4:1c:12:
4f:64:0f:42:f8:69:da:f5:98:55:18:7e:6e:48:2c:59:27:e0:
49:34:8d:ee:9a:d0:4b:0a:e6:23:47:bc:e9:6a:c7:3e:9b:9b:
0b:e0:a4:1d:3c:2e:fa:70:ca:24:2b:2e:ff:45:99:bf:bf:87:
e1:2c:06:e1:97:5a:75:62:7e:d2:47:31:75:10:71:e2:f4:e4:
20:af:03:12:2e:23:e5:cf:02:a2:35:08:26:09:a8:8e:4f:9d:
1f:b5:3f:03:98:fa:aa:1a:7b:9f:4c:2b:2a:a5:f8:38:8f:3b:
47:c6:f0:ec:d0:ae:47:06:6a:2c:6e:56:2c:33:51:3e:c4:22:
50:74:6c:9b:82:e9:b3:a4:00:6e:0d:bd:0e:31:cc:b4:1e:dd:
c0:51:fa:5a:0c:98:1f:5b:23:e8:e3:8b:02:14:db:58:d5:d5:
59:5e:02:91:90:19:d8:63:53:e5:21:52:96:1a:bb:4f:e9:7f:
7c:7d:fd:26:c6:a5:ef:c9:2f:a6:c0:a6:cb:9c:4a:a4:4c:68:
25:57:51:ef:5f:6c:46:c0:98:c2:ee:17:64:fe:61:90:b0:45:
c0:1f:b8:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:20:02 2025 by rpki-client