Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft
File: KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json)
Hash identifier: tqO0SZiBoPiHDWgE6tDowHJNlRYIYq7kZZdmDjJkxHY=
Subject key identifier: CA:AD:7D:C5:0E:F0:63:5C:9D:8E:AA:0E:AC:9B:0F:C1:3A:12:7E:96
Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8
Certificate issuer: /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8
Certificate serial: 0A41
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft
Manifest number: 0A27
Signing time: Thu 30 Jan 2025 19:53:47 +0000
Manifest this update: Thu 30 Jan 2025 19:53:46 +0000
Manifest next update: Thu 06 Feb 2025 19:53:46 +0000
Files and hashes: 1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: wxS/L8n94X2cZK+v1FcRPyWDah+ZU+Qw7+iIM9icl0s=)
2: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: DeSX5mR90qF9IRdX2EyXW+cFduwBwR++LaECrmC9RqI=)
3: DE137C362C7811EC97C8D979C4F9AE02.roa (hash: 1JrXRKrsJBaJ+/4+ml3Sz+iqG9fcskoIvUEpTyCTJxA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2625 (0xa41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8
Validity
Not Before: Jan 30 19:53:46 2025 GMT
Not After : Feb 6 19:53:46 2025 GMT
Subject: CN=679bd8ca-f7c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:39:00:4a:61:51:67:af:cf:38:07:55:21:83:
11:a1:15:a9:f0:2b:2f:b4:ab:9f:35:e6:fd:81:d4:
a6:d6:f6:0a:0a:29:64:80:38:51:90:a8:09:16:f1:
c8:cb:b9:1f:78:3e:f9:e3:8a:b8:d7:08:88:91:2a:
81:da:b9:c2:55:b6:19:a4:d7:f1:95:a3:38:ca:cc:
e9:c5:d5:cd:43:83:d4:66:43:89:f0:c4:de:c1:cf:
1b:d4:6a:35:b0:e8:04:98:a6:6c:68:94:17:ae:c1:
76:5b:de:29:06:10:d1:88:dc:f5:4c:5b:53:53:18:
c9:9e:67:0a:9b:1f:7e:27:f2:54:08:5a:81:85:45:
00:08:c2:2a:7a:27:cb:9d:59:8a:b5:c9:83:99:2e:
ef:b2:6c:64:f7:09:8d:45:f1:f7:3f:c9:d1:d4:91:
4f:59:cc:80:1d:0b:a5:3b:89:8e:bd:f3:45:29:87:
84:44:bc:ba:fb:54:56:09:67:2a:75:1d:d7:f3:0d:
73:01:5b:2a:3d:00:20:e1:f5:c4:66:38:85:72:2e:
e6:94:c8:76:e2:dc:7b:37:29:b6:a4:46:a3:93:ab:
a9:c5:37:f8:2a:6a:ff:64:ae:94:b5:9b:46:26:56:
ca:cf:d6:c4:2e:ef:86:67:c8:dc:b8:d5:f5:9c:f0:
ac:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:AD:7D:C5:0E:F0:63:5C:9D:8E:AA:0E:AC:9B:0F:C1:3A:12:7E:96
X509v3 Authority Key Identifier:
keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1a:a6:c9:4e:50:63:de:13:91:86:63:78:ff:8c:13:43:79:04:
75:2c:21:6c:79:69:70:97:c4:5c:cb:5d:05:43:5f:69:a2:41:
d3:b0:86:c6:53:de:12:a3:d3:b9:d2:9a:dd:37:f8:64:ae:f5:
bf:11:36:7d:b3:0b:99:fa:95:f4:4e:9c:0b:ee:20:56:2b:c3:
53:3e:a5:9d:24:f1:2a:bb:1d:01:d9:77:3f:67:16:e2:ec:9c:
c7:94:56:79:b6:d5:a5:ba:bc:b2:36:b9:43:a1:f1:88:58:0e:
b0:f3:e2:70:c3:38:9f:1d:f6:13:db:8f:55:9c:32:fd:1f:67:
3c:13:37:47:fb:f9:73:dd:d9:78:7e:71:83:0c:5f:a2:09:17:
22:a1:09:01:32:2b:11:b5:a8:6e:c4:66:2d:22:18:61:80:01:
12:80:22:39:a6:43:88:58:94:b4:3c:f1:38:b6:e9:8d:e9:19:
59:b4:06:21:13:a7:28:e5:1b:2a:bb:5c:65:1c:ab:7e:47:90:
d0:81:89:89:78:a9:a4:f4:2b:98:eb:7d:87:a7:14:85:ae:1d:
9d:66:19:83:01:f2:1a:ef:a1:5f:2e:2c:8d:dd:ef:8d:32:0f:
bb:7e:2c:6b:47:9f:9d:8d:29:f3:73:d1:d0:4e:77:cf:4a:e0:
a1:11:ac:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:12:32 2025 by rpki-client