Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft
File: aFEZgfy52vrY49MDBLtBqW-5p28.mft (raw, json)
Hash identifier: DiAOmTgLP23wtzSeDmuSSePs6BiyGZla3tgS4Mg3R8I=
Subject key identifier: 02:0D:8F:D5:79:A3:28:BE:30:29:13:A0:7A:FB:18:B6:5A:78:CC:22
Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F
Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F
Certificate serial: 0456
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft
Manifest number: 044B
Signing time: Fri 31 Jan 2025 00:17:58 +0000
Manifest this update: Fri 31 Jan 2025 00:17:58 +0000
Manifest next update: Fri 07 Feb 2025 00:17:58 +0000
Files and hashes: 1: aFEZgfy52vrY49MDBLtBqW-5p28.crl (hash: w1OUvL1er/YMdWZZ3QiXuUMaNl4jcWlLZy/FGiQj7Fo=)
2: 3E60217E42D211EC956C7F65C4F9AE02.roa (hash: O2wCYnsWMsNh26QO49KbMD5OdQ0wQy2zxz9/0Bjc24k=)
3: 2E971452411311EC88F4A813C4F9AE02.roa (hash: BJkoemMT/+xpo5406DrYJzR7xcCQChxSufm253c8Bjc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1110 (0x456)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F
Validity
Not Before: Jan 31 00:17:58 2025 GMT
Not After : Feb 7 00:17:58 2025 GMT
Subject: CN=679c16b6-12d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ad:ad:a0:9b:83:4c:1e:99:1d:85:ac:59:68:
fe:8c:38:cb:1e:73:e9:57:d6:3e:94:fb:bb:d0:89:
96:c1:4b:31:98:44:32:ae:6d:d0:08:d1:e8:78:e6:
01:f7:a8:8d:10:32:29:b7:8e:4b:87:ea:83:80:b0:
8e:fe:ee:ee:66:df:b1:ab:a2:63:f3:60:da:73:d1:
ec:05:37:fd:95:cc:75:6e:37:76:89:da:08:78:f9:
a1:aa:af:44:39:f8:72:e7:a3:86:34:ac:a7:1e:93:
f5:e6:99:4b:16:11:93:93:76:97:aa:bc:6b:df:a0:
da:d0:d6:62:e6:7f:0d:99:47:f7:06:0b:4e:67:15:
bf:60:a3:58:65:c4:2d:40:33:8b:18:af:76:e7:43:
ef:c4:14:34:f1:21:11:89:a0:45:95:30:fb:f2:dc:
da:bd:4b:ae:b0:1f:b1:04:dc:60:64:92:5e:dd:d6:
82:63:65:b6:1f:f9:2a:73:e8:f1:62:b6:70:e0:64:
63:6a:a2:5e:0d:a2:1a:59:22:05:ae:24:0d:8c:ef:
64:1d:88:6c:9a:99:90:e1:ee:f3:16:84:9c:1e:09:
df:9f:76:9c:38:37:f9:97:9f:8b:2a:d5:73:1c:38:
02:04:fb:3e:d9:fa:61:eb:5e:15:d5:1b:6b:4c:a3:
d6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:0D:8F:D5:79:A3:28:BE:30:29:13:A0:7A:FB:18:B6:5A:78:CC:22
X509v3 Authority Key Identifier:
keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c2:d5:9f:02:c3:41:d1:21:9e:61:34:29:ad:42:6c:d7:67:ae:
09:fb:77:46:b6:fb:f8:33:1c:af:62:b6:a2:ba:2a:7a:de:98:
62:22:93:ee:11:89:da:b6:32:17:fb:a6:57:a0:d8:2c:11:b1:
38:7d:a9:88:b0:08:e6:ad:be:50:ab:4d:f9:1b:eb:d9:a7:92:
ca:cb:75:e1:b2:08:44:99:5c:c5:f4:12:4c:de:c1:df:3a:80:
75:92:de:c0:3e:41:7d:93:11:fa:4b:a0:b4:88:4d:24:30:b4:
7c:11:23:00:b8:25:4d:78:0e:61:45:8e:5f:67:33:df:65:1e:
0f:71:08:55:f4:1a:05:b9:89:0b:87:01:63:20:a0:4f:ac:cc:
23:89:d7:57:32:1b:85:66:dc:28:d8:e0:8c:66:80:9d:31:9b:
fb:71:17:5a:f4:1d:85:7a:1f:19:f5:fa:9a:fc:f1:41:d3:2e:
21:34:e6:68:9d:bb:d5:e2:b1:b7:b1:8c:87:0e:34:bf:26:20:
e1:e3:b8:21:3a:b7:22:8f:dd:fd:00:7e:82:8f:8e:4e:d9:9d:
03:62:f8:e4:f0:32:1e:70:f5:16:f8:a6:7f:9c:0e:1d:58:6b:
a1:b9:f2:58:99:86:d9:5e:33:25:5c:1d:3f:06:3e:a1:86:47:
01:b9:80:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:40:51 2025 by rpki-client