Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft
File: XPuiiRbqwHsjWQlIVdieFqCBS6w.mft (raw, json)
Hash identifier: 7GT+sMDCm66gc9vq3PUrQ+VlUBiZqK//us1zHwoytmk=
Subject key identifier: 12:1A:9C:50:F2:80:B7:05:39:F9:F2:4E:43:2E:BC:8B:18:D2:1D:DB
Authority key identifier: 5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC
Certificate issuer: /CN=A918E843/serialNumber=5CFBA28916EAC07B2359094855D89E16A0814BAC
Certificate serial: 0B07
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft
Manifest number: 0AFA
Signing time: Thu 30 Jan 2025 19:20:16 +0000
Manifest this update: Thu 30 Jan 2025 19:20:16 +0000
Manifest next update: Thu 06 Feb 2025 19:20:16 +0000
Files and hashes: 1: XPuiiRbqwHsjWQlIVdieFqCBS6w.crl (hash: zQ+oSYkq/Fja5MVFnYZqsUUjfxR7RDENTdsBHcuz1ps=)
2: 3EA26CE6396011EABC88BD55C4F9AE02.roa (hash: jt3q3eu5PH5pGOuIsdjdUutobUCzp2vYtDeECsWMzEc=)
3: 01553E10396311EAB24C5A5FC4F9AE02.roa (hash: rs0VbwQOx7elbsUZDFIThAHCStbl8j3g8d0JAoWIucc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2823 (0xb07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918E843/serialNumber=5CFBA28916EAC07B2359094855D89E16A0814BAC
Validity
Not Before: Jan 30 19:20:16 2025 GMT
Not After : Feb 6 19:20:16 2025 GMT
Subject: CN=679bd0f0-65ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3d:13:ef:98:1a:32:2b:b9:a9:fb:78:b4:59:
38:dc:53:8e:6b:b8:72:df:0d:34:d5:dc:e9:71:f2:
17:cc:9c:ae:1c:1f:9a:03:93:6b:8e:e5:9d:d9:d6:
3f:76:51:86:9a:82:3c:37:9c:e8:0d:5b:de:7d:9f:
58:92:1d:45:cb:35:f6:35:c5:b3:0d:1e:0d:35:77:
e3:94:c5:72:b7:10:c9:cc:8f:72:95:0e:3a:76:19:
a7:a6:cc:00:0a:2e:2d:15:91:31:09:7d:64:ed:11:
a9:ef:c2:1a:ce:fa:4c:11:b5:e7:67:b7:ed:7e:b1:
b8:7b:7a:d2:18:24:b2:a7:18:f5:0b:3b:2c:36:07:
8f:73:5a:d4:5b:a9:49:7e:b2:13:32:18:f8:39:c6:
a4:b3:5a:91:4b:54:aa:ca:2c:c4:f2:ed:59:b4:66:
ed:6c:45:8e:30:56:72:76:d3:c1:23:f2:b2:ca:c1:
cd:c2:31:bf:c0:44:37:38:28:82:ec:14:b3:f7:04:
01:8d:1d:98:1d:8a:53:7a:35:f6:b4:fd:96:25:d4:
18:ce:55:06:e9:0b:7c:23:74:52:ad:2d:30:bf:7b:
7c:39:ba:bc:d2:84:4f:29:25:d6:49:fa:7e:b9:8c:
ab:f9:31:88:8e:b5:cd:9b:5b:24:57:bb:a4:ff:af:
77:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:1A:9C:50:F2:80:B7:05:39:F9:F2:4E:43:2E:BC:8B:18:D2:1D:DB
X509v3 Authority Key Identifier:
keyid:5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5c:9a:c3:ee:66:2a:0d:14:7d:1d:0b:13:8d:a1:6e:81:a3:44:
eb:31:21:b9:e1:d7:66:29:2b:65:af:68:10:0d:e5:67:a7:e4:
48:13:b2:77:27:88:62:81:97:b4:3e:46:07:ea:c8:10:74:3c:
e3:75:d0:56:1c:cf:f0:99:fb:9b:b7:f1:10:c4:c3:10:aa:be:
fd:b0:db:25:af:2e:d2:5e:a2:6b:0b:30:7d:37:1d:f8:1a:d2:
da:9b:f3:4e:0e:d5:af:66:ab:d7:06:5f:d7:41:da:22:e6:01:
1c:17:b3:c4:0e:58:2e:0c:31:b4:8b:16:13:db:9e:ec:f4:b3:
f9:44:b6:ce:ab:79:52:10:d3:96:00:2e:b9:63:81:f0:25:b6:
ed:de:19:e5:8d:33:47:61:b2:c8:21:71:a3:e2:bf:e5:b9:53:
0f:62:e9:fd:25:e6:b8:70:34:a4:42:34:07:2b:ba:b8:dd:70:
ec:db:1f:3e:c5:e7:1e:db:52:2c:b2:92:49:6b:28:9b:d1:b0:
08:16:2a:33:86:3b:13:eb:c3:73:63:16:14:49:fd:00:75:f6:
1d:cb:34:34:a2:86:51:a0:d2:cc:bf:89:8c:dd:d4:8b:f9:cf:
e4:c9:9b:84:61:53:bc:cc:1f:6e:d8:1c:41:82:94:7e:7f:d5:
8f:c6:17:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 13:32:57 2025 by rpki-client