Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft
File: QSE7L18kKfwyjsP06V1YhkAv62k.mft (raw, json)
Hash identifier: FLLj4IGkjIl1tApNjOkkyDbVuERZleHfdzx2lqPzfdc=
Subject key identifier: B7:2B:7D:65:F5:16:9D:4B:01:14:E7:93:1C:4E:DB:B6:75:33:34:DE
Authority key identifier: 41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69
Certificate issuer: /CN=A91757CB/serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69
Certificate serial: AB
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft
Manifest number: A2
Signing time: Fri 31 Jan 2025 05:26:09 +0000
Manifest this update: Fri 31 Jan 2025 05:26:08 +0000
Manifest next update: Fri 07 Feb 2025 05:26:08 +0000
Files and hashes: 1: QSE7L18kKfwyjsP06V1YhkAv62k.crl (hash: jsLztH2oldFds3bXzo2Yxi6TkMg9DKV8SNcn7vExNQc=)
2: 47142068221311EFB680F113C4F9AE02.roa (hash: Wz7+GyEz4KEH5axb8P5kr/PKoJv9dBdTnqoEdl36Fic=)
3: EE01A248F2FB11EE9AA9E24CC4F9AE02.roa (hash: u90GvXDC2nj38gPxwI7H6zVq1FrynP/V/Ah+aJjG8F8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171 (0xab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91757CB/serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69
Validity
Not Before: Jan 31 05:26:08 2025 GMT
Not After : Feb 7 05:26:08 2025 GMT
Subject: CN=679c5ef1-e2d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ac:1d:0a:ab:b0:3e:9b:2f:53:82:b7:b4:93:
2a:75:b8:1b:d6:eb:36:67:02:72:26:19:bb:c6:2a:
c3:30:76:9a:65:3b:fc:62:73:e2:5b:60:28:7a:d5:
2f:c2:ab:5d:5b:21:2f:b1:9f:59:f1:46:10:1e:ad:
00:90:65:57:2a:1a:42:e6:f4:c9:fc:38:87:bd:09:
5e:46:36:cf:1b:f0:0b:23:63:ad:de:cd:9e:d1:dd:
0c:f2:f8:d1:b0:df:52:16:fb:c8:3b:73:a6:31:40:
4f:d1:39:9d:f3:15:41:9f:6e:bb:d4:ad:de:62:7e:
4e:d3:7f:ce:76:5c:31:9e:9c:dc:38:58:de:44:ce:
1a:42:4d:b0:cf:9b:02:01:9a:45:25:f4:ef:ea:a6:
24:8c:3a:33:a5:12:04:3d:76:be:f4:72:6c:ef:a8:
43:a7:42:14:a0:27:f6:f0:12:23:08:ec:96:9b:58:
cd:88:3a:d8:72:a2:c5:1f:28:6c:4a:c9:93:92:25:
c5:f1:43:b2:3c:8e:a1:fb:45:47:65:25:3a:b2:ac:
91:6d:c9:eb:de:96:48:56:91:28:a7:c6:30:d0:af:
eb:65:fb:9e:ec:e6:31:20:6d:1f:32:f9:d2:c5:2f:
d3:ef:7c:8d:96:a3:ab:80:5a:d4:81:d3:83:4a:de:
d1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:2B:7D:65:F5:16:9D:4B:01:14:E7:93:1C:4E:DB:B6:75:33:34:DE
X509v3 Authority Key Identifier:
keyid:41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
22:62:99:4e:60:ef:26:29:b7:14:7d:aa:c8:43:b1:56:54:df:
c5:d6:8f:03:f9:99:60:aa:84:c8:53:0d:6a:53:43:64:39:c4:
80:83:0e:bc:a1:16:80:25:a1:7d:95:79:da:8d:73:39:9d:86:
ee:85:e6:e2:c9:25:21:fa:8a:a6:aa:c8:e9:d7:b9:5a:07:06:
e3:84:fb:4e:72:76:ed:67:40:1f:47:b0:66:fe:31:ad:64:8a:
a3:eb:bb:54:e7:1f:88:58:27:7a:f3:84:9a:21:6c:cc:10:87:
09:34:67:0d:ea:95:8f:ed:5f:d8:ec:f6:e9:fa:07:70:de:60:
35:c6:60:0e:8b:df:ad:34:62:d6:cf:c3:fe:ad:c8:81:1d:e1:
41:f2:22:81:7c:1a:f9:a3:31:24:3d:2c:dc:84:87:e4:8f:3b:
b2:04:40:cd:80:6e:b3:2e:f3:a4:bd:46:49:fc:33:24:81:69:
7b:f4:7b:b2:0b:37:11:ef:96:4f:4b:22:23:e7:fc:3d:67:1c:
a9:2c:5f:26:7b:9c:e6:34:5b:d1:f3:a3:fc:4c:55:ae:f2:55:
48:20:e0:14:ce:40:f8:d6:e7:0a:21:18:b1:b2:49:75:b9:de:
9e:74:b0:0c:47:aa:43:01:85:26:b8:22:20:f7:bc:50:bb:d8:
8d:5e:d7:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 19:20:53 2025 by rpki-client