Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173EFB/738DBFFAB42411EC96728235C4F9AE02/3Y0sg7tKHqnhN3dvzFURBMqyuCM.mft
File: 3Y0sg7tKHqnhN3dvzFURBMqyuCM.mft (raw, json)
Hash identifier: labSgby0NPoYKwZfMekjtLytILj5CNyf4Dep+iylE6M=
Subject key identifier: EA:3C:15:A6:F0:18:35:26:5F:1D:95:0F:6C:8B:07:3B:EA:04:39:A3
Authority key identifier: DD:8D:2C:83:BB:4A:1E:A9:E1:37:77:6F:CC:55:11:04:CA:B2:B8:23
Certificate issuer: /CN=A9173EFB/serialNumber=DD8D2C83BB4A1EA9E137776FCC551104CAB2B823
Certificate serial: 0329
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y0sg7tKHqnhN3dvzFURBMqyuCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9173EFB/738DBFFAB42411EC96728235C4F9AE02/3Y0sg7tKHqnhN3dvzFURBMqyuCM.mft
Manifest number: 0320
Signing time: Fri 31 Jan 2025 01:13:56 +0000
Manifest this update: Fri 31 Jan 2025 01:13:56 +0000
Manifest next update: Fri 07 Feb 2025 01:13:56 +0000
Files and hashes: 1: 3Y0sg7tKHqnhN3dvzFURBMqyuCM.crl (hash: JSpC+JTjI24Xy7FScT3xIe5oST4w/nA7bjjUqnL+ecY=)
2: 39F3DCDABBB711EC8B27B129C4F9AE02.roa (hash: BjnEXUQnM/w5/elkxHxhuklRbVefDC0b1z2jDyjryYY=)
3: 7618919ABBB411EC91E89B0CC4F9AE02.roa (hash: Swm8wcaeAGU6W3RSshCj74MA0EDyTsqkbcfipXQ6I6k=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 809 (0x329)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9173EFB/serialNumber=DD8D2C83BB4A1EA9E137776FCC551104CAB2B823
Validity
Not Before: Jan 31 01:13:56 2025 GMT
Not After : Feb 7 01:13:56 2025 GMT
Subject: CN=679c23d4-1754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:95:c8:f3:a3:42:de:63:4e:3d:27:2c:d3:32:
4f:63:7f:4c:f4:3d:cd:1b:d0:77:29:26:d3:df:fb:
2b:85:c4:db:62:f2:92:92:a7:17:4b:05:0c:75:bc:
16:52:13:75:43:58:3a:02:41:91:6d:98:37:cb:62:
0f:4d:1e:e3:d1:b1:e8:b6:39:31:27:2b:80:66:cf:
24:f7:e5:05:64:25:72:44:31:a7:a8:06:49:0d:2f:
1f:37:2f:6a:c9:21:bc:c9:c3:83:58:16:46:06:7e:
54:dc:3b:14:60:58:7e:29:d2:45:f6:c5:09:60:4b:
71:f5:5b:7d:c9:58:82:fc:3b:10:90:e6:da:ac:a8:
9b:68:a7:71:81:06:31:c0:42:5f:2a:91:42:db:c3:
f0:58:44:c7:f8:c1:6a:9f:52:05:df:67:02:31:92:
70:b2:bc:26:e6:d3:d7:0c:d2:3d:56:72:14:1b:b0:
5a:fe:94:39:e4:3a:f3:7a:0a:5b:5e:e0:2d:86:a7:
c5:36:68:32:47:1e:cf:11:1d:55:5e:79:e3:4a:04:
31:d6:c9:b3:35:49:e8:a5:e9:1b:ac:7d:49:48:bf:
60:8c:f5:ac:58:0b:a7:2a:8a:90:3e:c6:5b:75:0a:
a5:36:98:99:de:cf:2a:9b:04:06:be:45:9f:0b:a4:
3e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:3C:15:A6:F0:18:35:26:5F:1D:95:0F:6C:8B:07:3B:EA:04:39:A3
X509v3 Authority Key Identifier:
keyid:DD:8D:2C:83:BB:4A:1E:A9:E1:37:77:6F:CC:55:11:04:CA:B2:B8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9173EFB/738DBFFAB42411EC96728235C4F9AE02/3Y0sg7tKHqnhN3dvzFURBMqyuCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y0sg7tKHqnhN3dvzFURBMqyuCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173EFB/738DBFFAB42411EC96728235C4F9AE02/3Y0sg7tKHqnhN3dvzFURBMqyuCM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5c:84:2b:5b:63:f6:54:3b:35:51:5c:2a:7e:b9:15:d0:4a:c6:
65:cf:d6:87:51:96:00:72:36:9e:de:e3:46:f5:bf:e3:5d:4f:
7d:6b:4d:70:40:06:25:f2:72:98:f5:43:a5:01:e9:47:9e:2b:
00:43:d1:f5:5f:5b:c4:a6:c2:e1:ea:d7:4e:ee:b8:9f:d7:25:
45:27:2e:bb:91:59:1b:79:f9:03:e0:dc:45:1e:0d:d5:fd:13:
28:d9:03:7e:ce:7c:1d:89:ac:97:22:fd:e3:a0:8e:21:c5:5d:
ad:c0:0b:cf:f9:b5:7c:55:aa:93:52:df:7a:31:dc:05:b3:10:
fe:61:f3:bf:5a:93:2e:c1:d7:0e:af:23:49:7a:d9:72:92:3c:
5a:98:ad:0f:db:1c:a6:02:e4:09:0f:f4:62:35:5b:8c:35:14:
f8:aa:00:15:c1:f9:9d:19:35:cb:72:a9:95:71:6d:b0:f7:d6:
f8:6a:66:69:e5:2a:85:a9:38:fa:00:97:07:b4:3e:3b:db:5d:
8a:20:9b:07:ba:93:61:a5:c5:15:01:18:fc:aa:ee:f3:d1:0a:
02:72:55:73:c7:85:b5:1b:a3:1f:14:ea:c5:3c:57:e8:2a:5d:
51:82:0e:04:e0:1f:6b:e4:93:12:0b:69:30:2a:3c:ee:26:fb:
e7:48:d8:7d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzNFRkIxMTAvBgNVBAUTKEREOEQyQzgzQkI0QTFFQTlFMTM3Nzc2RkNDNTUxMTA0
Q0FCMkI4MjMwHhcNMjUwMTMxMDExMzU2WhcNMjUwMjA3MDExMzU2WjAYMRYwFAYD
VQQDEw02NzljMjNkNC0xNzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAw5XI86NC3mNOPScs0zJPY39M9D3NG9B3KSbT3/srhcTbYvKSkqcXSwUMdbwW
UhN1Q1g6AkGRbZg3y2IPTR7j0bHotjkxJyuAZs8k9+UFZCVyRDGnqAZJDS8fNy9q
ySG8ycODWBZGBn5U3DsUYFh+KdJF9sUJYEtx9Vt9yViC/DsQkObarKibaKdxgQYx
wEJfKpFC28PwWETH+MFqn1IF32cCMZJwsrwm5tPXDNI9VnIUG7Ba/pQ55Drzegpb
XuAthqfFNmgyRx7PER1VXnnjSgQx1smzNUnopekbrH1JSL9gjPWsWAunKoqQPsZb
dQqlNpiZ3s8qmwQGvkWfC6Q+wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOo8Fabw
GDUmXx2VD2yLBzvqBDmjMB8GA1UdIwQYMBaAFN2NLIO7Sh6p4Td3b8xVEQTKsrgj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0VGQi83MzhEQkZGQUI0
MjQxMUVDOTY3MjgyMzVDNEY5QUUwMi8zWTBzZzd0S0hxbmhOM2R2ekZVUkJNcXl1
Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzNZMHNnN3RLSHFuaE4zZHZ6RlVSQk1xeXVDTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
M0VGQi83MzhEQkZGQUI0MjQxMUVDOTY3MjgyMzVDNEY5QUUwMi8zWTBzZzd0S0hx
bmhOM2R2ekZVUkJNcXl1Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBchCtbY/ZUOzVRXCp+uRXQSsZlz9aHUZYAcjae3uNG9b/jXU99a01w
QAYl8nKY9UOlAelHnisAQ9H1X1vEpsLh6tdO7rif1yVFJy67kVkbefkD4NxFHg3V
/RMo2QN+znwdiayXIv3joI4hxV2twAvP+bV8VaqTUt96MdwFsxD+YfO/WpMuwdcO
ryNJetlykjxamK0P2xymAuQJD/RiNVuMNRT4qgAVwfmdGTXLcqmVcW2w99b4amZp
5SqFqTj6AJcHtD47212KIJsHupNhpcUVARj8qu7z0QoCclVzx4W1G6MfFOrFPFfo
Kl1Rgg4E4B9r5JMSC2kwKjzuJvvnSNh9
-----END CERTIFICATE-----
Generated at Sun Apr 27 03:40:52 2025 by rpki-client