Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft
File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json)
Hash identifier: VWBLrg+sQklrQ7U1ssCiCR2jC2mArrJ0xIHs2xGQqo8=
Subject key identifier: F5:A7:3C:E6:06:F2:FC:B4:5F:BB:72:33:CC:48:57:3D:E6:A0:BA:81
Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F
Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F
Certificate serial: 0A5D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft
Manifest number: 0A3D
Signing time: Thu 30 Jan 2025 19:53:07 +0000
Manifest this update: Thu 30 Jan 2025 19:53:07 +0000
Manifest next update: Thu 06 Feb 2025 19:53:07 +0000
Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: 9+drqMP9Yu749rOUAnVfO8XefO+nQqVp/3dWkw23QB0=)
2: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: osiy8r5wOcZwc+hzXjUSDPKHDtxSKkSDsBR1kqJAjV4=)
3: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: UGiehiieQMG0h11m4WT8Sepc4lZpfmvaR3Wz1SUuF+k=)
4: B24920940C6911EC90B57338C4F9AE02.roa (hash: Nuk6/U0PEEUTh4/Znumg3fhwPF24LqsvJENpm5HBvzI=)
5: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: +xOv12aaFD+ElTkbMbM+GL6Nan/ResHUQv6dF6h2KxA=)
6: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: EdbP6Ic3TKOXeBjm7GNDv83YO0G30y52gbvBzwhEMSM=)
7: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: nUOUleUTzrwDfXxPCbpeZJCMn5m+Z2Uvkn1+H8UcN1Y=)
8: D0D573BA7D4611EDA39A867EC4F9AE02.roa (hash: Ri908Mam4olAUfRbBVo4OcQZuaNzAo60OI3PDGDqutA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2653 (0xa5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F
Validity
Not Before: Jan 30 19:53:07 2025 GMT
Not After : Feb 6 19:53:07 2025 GMT
Subject: CN=679bd8a3-719c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:13:21:93:4f:5d:15:3e:50:7b:55:0b:67:4d:
e1:de:a5:c1:ee:bd:68:74:5a:c2:28:21:bf:94:61:
04:54:9d:ec:1e:59:16:fa:5b:c6:1b:d6:24:a3:66:
05:0b:05:43:38:37:51:81:dd:79:52:72:7d:9d:c7:
a7:68:24:8c:6e:bd:e9:55:10:9c:e4:14:6c:40:77:
e3:f8:85:c6:48:d0:65:8d:d6:bb:a3:22:8e:5f:72:
44:18:ea:eb:86:c4:80:ee:5e:20:4c:0b:f9:3a:bd:
b8:37:66:45:d1:b8:cd:ae:7b:b3:ef:8d:37:3f:2a:
b1:a2:ec:a2:ab:41:01:07:3a:ee:08:48:21:e3:c9:
1a:f8:a0:1f:f9:15:ea:1c:24:02:c2:a6:be:d7:2f:
98:78:06:97:d7:8d:82:0f:5e:f6:30:f7:b6:02:77:
41:57:66:ce:d1:11:2b:9f:3c:d3:79:94:f1:b2:5e:
c0:5e:ef:a8:ed:9c:65:bd:40:fe:63:4a:2e:4f:17:
f7:64:a9:70:9b:a5:de:29:4f:6e:59:92:82:72:92:
c2:d2:f0:22:68:8a:e5:76:30:9c:88:2e:67:66:9a:
84:1a:a2:76:d0:8e:91:6b:9b:2b:14:2e:65:e0:0a:
9a:c2:ed:bb:f4:e6:b0:34:c1:7d:0c:ef:52:3b:5a:
a8:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:A7:3C:E6:06:F2:FC:B4:5F:BB:72:33:CC:48:57:3D:E6:A0:BA:81
X509v3 Authority Key Identifier:
keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
28:a8:c2:92:29:bd:6c:4e:dd:8a:e4:64:1f:b9:e8:1c:54:93:
5d:39:ed:e6:7c:78:d6:69:b0:24:a0:03:84:1a:9f:ef:a1:21:
57:f1:ae:a8:f0:5a:90:19:e9:65:fd:49:9b:2d:3a:cc:ac:fa:
94:b0:50:bc:46:17:64:02:a1:43:88:20:4d:71:30:18:5a:18:
41:96:f1:11:24:6f:bb:f9:65:93:76:57:90:26:6b:44:d6:c8:
9b:13:ae:74:7c:9f:ac:98:1b:ad:c1:4b:f2:74:f8:f2:38:1e:
f5:a5:34:e4:b4:74:88:dd:09:a9:15:6f:cf:51:9f:74:c3:97:
50:89:a6:c0:7d:96:40:50:be:10:3b:1c:b7:4d:37:d5:5e:3c:
5d:48:34:f7:86:b0:31:e0:cd:45:2d:ce:ef:95:24:d3:f4:07:
ef:1a:82:21:e4:a3:ba:e0:c2:39:ce:95:ef:90:81:08:75:59:
a1:6a:c4:26:55:0e:d5:42:5c:f2:d5:3c:5f:f3:b2:37:bf:2d:
5e:a5:7f:75:f3:5b:98:d1:77:f7:16:ac:27:89:45:0a:80:da:
cf:3d:55:87:fb:a8:20:80:39:c1:3d:e0:9b:ba:e8:a4:37:a6:
65:44:15:73:5c:27:23:f3:d3:e9:18:2f:e9:54:8b:70:6d:4f:
40:2e:8f:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 06:39:49 2025 by rpki-client