Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft
File: XOvYaFsXSV2z4edFmXn-hPBDg_I.mft (raw, json)
Hash identifier: kccarBLard32p4ztW5oZj4YxXnvO+Y83L5esVU0Q8F4=
Subject key identifier: BC:5D:A7:F0:E1:EC:B2:9C:AF:20:C3:81:44:E3:F3:C5:9F:AC:EC:48
Authority key identifier: 5C:EB:D8:68:5B:17:49:5D:B3:E1:E7:45:99:79:FE:84:F0:43:83:F2
Certificate issuer: /CN=A917C716/serialNumber=5CEBD8685B17495DB3E1E7459979FE84F04383F2
Certificate serial: 89
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft
Manifest number: 02BB
Signing time: Fri 31 Jan 2025 02:03:06 +0000
Manifest this update: Fri 31 Jan 2025 02:03:05 +0000
Manifest next update: Fri 07 Feb 2025 02:03:05 +0000
Files and hashes: 1: XOvYaFsXSV2z4edFmXn-hPBDg_I.crl (hash: MmKHzs23tqJSwwrcpTsUjl01mXOp1KcoFmmdEX2UWiI=)
2: 48D1340C1E4B11EF91B1E611C4F9AE02.roa (hash: Dd1au3bJQj6bMv2WGI0RWUtWgTKqHIOLfgSKW+3Ysd8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137 (0x89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C716/serialNumber=5CEBD8685B17495DB3E1E7459979FE84F04383F2
Validity
Not Before: Jan 31 02:03:05 2025 GMT
Not After : Feb 7 02:03:05 2025 GMT
Subject: CN=679c2f5a-6585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:de:54:8f:b8:07:74:c6:f6:ac:12:eb:5f:2b:
93:ec:e0:a3:3d:18:23:c2:be:39:95:42:fc:be:c3:
00:a8:41:0b:82:b1:e8:29:37:d5:c3:6a:e3:e4:f2:
0d:0d:73:f9:ca:c6:be:c0:15:77:13:7c:bd:19:48:
f1:a6:0f:03:24:28:28:e0:39:87:ba:22:6a:e5:c4:
9f:42:10:e7:b3:80:bc:24:89:04:6a:17:ff:fe:f8:
07:d7:07:83:d9:ee:39:ef:86:52:4e:e8:53:c0:12:
67:3e:41:e9:5a:79:bd:e9:e2:69:54:f1:08:b4:bd:
04:b0:25:54:87:33:4e:76:f3:f5:df:17:17:79:78:
0e:21:13:6f:1a:66:63:e5:fa:81:81:45:5d:8e:d7:
06:56:ef:a4:cb:fd:a9:55:19:fa:d3:7f:c3:55:50:
6a:d8:47:dc:fe:5d:94:f5:be:d4:cd:8c:f3:43:64:
0b:1b:9d:f6:e9:dc:ec:cf:e0:9e:b7:8b:ab:b2:9a:
1e:f4:af:c7:f1:12:6b:bd:14:40:3c:a5:b2:af:da:
72:2d:ae:20:6d:ce:37:84:a5:6e:20:b5:d6:02:80:
d8:8f:94:71:d9:5e:b4:b5:84:28:5b:6b:87:b1:e0:
b4:5a:25:ee:30:a3:79:6f:09:e6:78:58:7d:0c:d0:
6e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:5D:A7:F0:E1:EC:B2:9C:AF:20:C3:81:44:E3:F3:C5:9F:AC:EC:48
X509v3 Authority Key Identifier:
keyid:5C:EB:D8:68:5B:17:49:5D:B3:E1:E7:45:99:79:FE:84:F0:43:83:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
96:6a:9a:2b:cf:4e:ec:9b:ad:08:4f:c4:17:f3:ba:60:5f:95:
91:a5:3e:e0:27:64:eb:01:ab:5e:3c:8a:9b:d8:35:74:33:1a:
fd:e7:3b:1c:76:8e:2b:b2:cc:14:fa:de:5b:cd:cf:6f:83:73:
73:06:55:48:58:a7:4e:55:7c:71:e3:44:79:64:c9:52:47:60:
82:f6:df:54:39:31:a4:91:2f:3a:19:bb:0a:6f:19:70:09:fe:
db:bf:9e:3f:14:1f:b6:6f:e4:cc:41:4f:f7:3a:92:e0:07:5f:
bd:cb:55:4b:2e:65:3a:1f:55:06:80:6a:06:45:0d:ce:84:4d:
a1:9c:90:1c:64:7e:ba:8c:34:be:e8:b6:e8:99:08:80:26:d4:
d7:ed:4c:8f:0b:a5:14:18:3e:49:88:39:db:15:71:76:12:48:
69:8b:37:6b:41:f2:b4:83:68:2b:36:3b:8d:4d:63:b9:8f:31:
db:7d:2f:0c:0f:da:68:68:ba:3a:53:8b:2c:c1:f2:33:f7:39:
b0:ff:58:c1:49:84:c6:2f:18:8a:a3:d1:8f:8b:aa:53:7c:39:
c9:b5:34:a4:f3:6d:56:a6:99:66:57:1c:07:1d:ec:30:f3:98:
76:1c:d2:67:35:10:4f:fc:68:f5:0a:e5:e9:04:9b:c0:4c:f9:
01:7a:11:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:15:12 2025 by rpki-client