Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft
File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json)
Hash identifier: 29lBbSu9aE4dbJ6XXPwtmDp4/YYdS3pzXD3IuLs72SE=
Subject key identifier: 53:A9:54:7F:B4:38:F0:5C:34:5D:B0:0D:80:C1:E2:35:A4:EA:E8:01
Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57
Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857
Certificate serial: 0E41
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft
Manifest number: 0E39
Signing time: Fri 31 Jan 2025 17:42:47 +0000
Manifest this update: Fri 31 Jan 2025 17:42:47 +0000
Manifest next update: Fri 07 Feb 2025 17:42:47 +0000
Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: 1pwfz3x97PgACzfihHXsKQnMKRCvYoR5VwAUaR+CSvs=)
2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: 0msFIFHq8Bi6Dy0orrBJDRYbRJioucs5FAZf2jEryJs=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3649 (0xe41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857
Validity
Not Before: Jan 31 17:42:47 2025 GMT
Not After : Feb 7 17:42:47 2025 GMT
Subject: CN=679d0b97-a9a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:40:29:8d:d2:a2:00:71:ee:e0:26:f1:16:f1:
9e:cd:46:07:94:c9:0f:fe:76:f0:d9:6f:37:7f:a0:
b3:ee:6d:c5:9c:e5:32:db:9e:f0:87:22:0a:06:ca:
cb:d1:76:6b:ff:58:56:c4:ed:18:7a:33:21:47:df:
25:60:03:6b:c3:87:73:be:5e:bb:de:0e:86:b4:68:
74:01:d0:14:0c:98:81:35:ee:15:4a:d1:36:f8:5f:
34:e7:26:e0:78:e7:78:af:8d:61:93:76:46:05:4e:
a6:2f:cc:d8:93:7c:e6:0c:1a:9a:a9:b0:19:d9:27:
f9:c2:05:be:4f:49:b5:88:b9:7c:c0:5e:c4:9e:63:
a8:b2:e1:13:14:b9:67:63:23:04:02:62:d9:71:bd:
bd:19:54:59:6f:63:21:f3:98:f7:85:16:12:b8:39:
c6:20:2d:e6:90:56:3f:a3:1d:0b:30:82:7a:81:24:
d6:a8:00:6e:d9:8b:bb:f9:28:9a:5d:bf:b9:a8:06:
69:dd:78:b3:24:01:32:c2:a3:ab:e4:73:50:7a:c7:
5a:e0:4a:fd:01:c6:2a:3e:c7:65:1d:18:c7:8e:e9:
73:a3:62:03:11:d7:07:84:2a:8b:69:de:69:24:f0:
ec:bc:7b:bf:26:60:24:05:c7:1a:3a:10:4a:7a:50:
f0:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A9:54:7F:B4:38:F0:5C:34:5D:B0:0D:80:C1:E2:35:A4:EA:E8:01
X509v3 Authority Key Identifier:
keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b3:0a:ed:e7:54:e0:5e:3e:c7:78:e1:9a:c6:e3:d5:c1:c7:e0:
98:b5:03:10:91:0c:5e:77:b4:a2:eb:d5:76:4f:02:4c:44:eb:
49:2b:3d:76:68:d8:0a:e0:40:bf:74:2d:86:33:20:0d:78:48:
6b:e8:23:91:f0:63:03:76:57:a9:cc:41:c0:fa:cd:a9:c6:42:
3e:44:40:3b:a7:dd:02:b9:2d:44:99:c9:93:d5:2f:1d:f6:73:
f4:a5:ae:6a:86:0c:a5:7c:21:15:4e:5b:4f:c3:ba:3a:c0:5d:
c0:71:46:59:7b:54:b5:b4:c7:53:a3:1a:d4:56:62:7a:28:75:
71:cf:97:ce:17:fd:3b:ec:af:07:5e:1f:7f:b3:52:d0:66:3d:
00:c5:05:f7:a1:c7:13:4f:cc:91:31:53:c6:ad:d5:67:59:24:
23:93:56:21:37:01:6f:7e:64:e2:73:f4:91:9f:f5:77:8b:53:
da:7c:90:58:d1:71:3a:8a:5c:fb:80:08:2b:da:9a:c8:71:85:
66:67:8b:c6:2f:08:a8:d1:ba:13:f2:c1:97:84:59:25:ee:22:
25:95:a3:ab:7b:d9:40:f8:56:20:cc:b9:e6:08:ad:34:c4:ae:
3f:3c:a7:96:de:6f:86:ec:8c:fa:43:84:b9:77:c6:78:7b:5b:
24:d0:0f:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 17:00:33 2025 by rpki-client