Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D778/5B8D866890E211EF97612A46C4F9AE02/3cXbOB_x7MpblaKFFHktzbpJGCs.mft
File: 3cXbOB_x7MpblaKFFHktzbpJGCs.mft (raw, json)
Hash identifier: 4in6hZhd0iumfTvOiN5TDCTqYntd4LY4IofGD0s28Eg=
Subject key identifier: B3:F3:3B:F2:AD:3C:B1:E4:09:FD:C2:3E:90:D4:B4:3B:38:39:CF:A0
Authority key identifier: DD:C5:DB:38:1F:F1:EC:CA:5B:95:A2:85:14:79:2D:CD:BA:49:18:2B
Certificate issuer: /CN=A917D778/serialNumber=DDC5DB381FF1ECCA5B95A28514792DCDBA49182B
Certificate serial: 44
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3cXbOB_x7MpblaKFFHktzbpJGCs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917D778/5B8D866890E211EF97612A46C4F9AE02/3cXbOB_x7MpblaKFFHktzbpJGCs.mft
Manifest number: 3D
Signing time: Fri 31 Jan 2025 06:39:37 +0000
Manifest this update: Fri 31 Jan 2025 06:39:37 +0000
Manifest next update: Fri 07 Feb 2025 06:39:37 +0000
Files and hashes: 1: 3cXbOB_x7MpblaKFFHktzbpJGCs.crl (hash: k7mVcqLIsGTCoWtuztDyHgFogBmsfF7Lyd4OXslUEvk=)
2: 0DEDF8C290E511EFBB48661DC4F9AE02.roa (hash: ymXlk9RJfi9V2KzOznS96G8RXYI7jJ6rpj+phG/GZks=)
3: 7DA8E78890E711EF8262A053C4F9AE02.roa (hash: SX03ccnLTHDWWqP2dXM+ZAcRiPmXaj3vkOlikMISxno=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68 (0x44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917D778/serialNumber=DDC5DB381FF1ECCA5B95A28514792DCDBA49182B
Validity
Not Before: Jan 31 06:39:37 2025 GMT
Not After : Feb 7 06:39:37 2025 GMT
Subject: CN=679c7029-c0fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:22:5e:91:13:84:4b:b2:7b:89:48:c9:5d:2c:
67:36:58:fd:2c:3f:73:14:f2:69:38:fa:ad:35:0c:
52:85:61:c2:46:85:80:fb:38:1b:1a:01:79:d6:fb:
d2:3c:d6:2a:8c:54:ed:58:73:2e:df:a3:d7:32:c6:
9a:e9:17:0d:9f:61:20:b8:4b:3d:0a:b2:c3:a0:da:
4d:33:54:8c:d0:54:6a:ab:bd:2a:25:85:70:1d:57:
1f:ac:ee:b5:71:72:2b:52:ab:ab:95:92:29:9c:21:
8e:95:40:cb:b8:ad:fc:62:67:5e:0e:71:89:19:60:
04:e1:41:4e:02:ef:28:a0:c4:e5:26:dc:f1:cc:82:
fd:35:c6:2f:46:16:12:7a:6a:f4:8b:ef:1a:37:65:
2e:14:4a:9a:89:a2:04:b2:98:7a:d3:77:36:93:8f:
38:f1:85:ed:45:aa:55:11:6c:f7:a7:11:1a:c5:fc:
be:dc:ca:b0:2a:f4:c4:43:a1:d1:1c:2a:4e:e6:cc:
99:c8:d1:8b:20:bb:8b:32:1b:5c:0d:1b:21:6b:42:
d9:6d:ad:67:07:20:2d:a5:65:4f:f2:3a:d6:53:d2:
be:b3:e5:2f:17:3f:2e:2e:a2:4d:32:7c:1d:25:51:
88:b9:b2:b7:51:b9:59:2f:21:8c:b5:56:43:ab:1b:
2d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:F3:3B:F2:AD:3C:B1:E4:09:FD:C2:3E:90:D4:B4:3B:38:39:CF:A0
X509v3 Authority Key Identifier:
keyid:DD:C5:DB:38:1F:F1:EC:CA:5B:95:A2:85:14:79:2D:CD:BA:49:18:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917D778/5B8D866890E211EF97612A46C4F9AE02/3cXbOB_x7MpblaKFFHktzbpJGCs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3cXbOB_x7MpblaKFFHktzbpJGCs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D778/5B8D866890E211EF97612A46C4F9AE02/3cXbOB_x7MpblaKFFHktzbpJGCs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
76:3f:59:24:37:44:a2:b7:e2:fd:15:55:4f:18:c0:08:2b:26:
4b:b3:32:b1:26:25:a7:9e:75:96:dc:95:c6:0a:1c:ae:d5:70:
b6:ea:7d:72:43:87:c3:80:3f:fe:c5:a1:e5:34:1c:40:c1:d0:
e4:03:45:97:c6:c7:cb:f9:15:15:0c:3d:f7:02:20:eb:80:a0:
d8:14:dd:dc:2c:dd:6c:83:de:30:8d:5f:33:cc:1b:01:72:b1:
bf:bb:9d:29:5c:a6:e9:d3:d2:b7:13:4b:33:5e:71:86:e3:7e:
a7:5a:6f:fb:c2:9b:7e:9e:07:92:3e:48:16:09:9f:8e:a5:84:
66:6c:dc:2c:59:03:df:fa:a5:09:59:5b:f1:fc:e4:1b:db:9e:
06:0f:1d:d8:80:80:a9:83:8c:40:99:4e:76:f9:ce:30:ef:ba:
7e:ae:a9:1b:0c:40:70:0d:81:51:6d:eb:36:e1:fe:bd:8c:1c:
20:40:f1:0b:60:2e:dc:7b:d8:c7:db:5d:06:7e:8e:7b:7f:54:
df:d3:58:ef:bc:c4:0d:96:6d:d9:b1:6e:27:e0:6a:2c:c4:6a:
bd:9b:b8:fa:1f:dc:da:6c:3f:6b:38:4b:6b:a0:be:2c:fe:d3:
18:b9:4c:54:ad:a0:a9:22:c0:96:03:22:76:5d:b7:d4:7f:a1:
10:56:ee:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:15:51 2025 by rpki-client