Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft
File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json)
Hash identifier: Yaa9KXKZrEQprHAul1PeVFcEEP5qYLzAxAh0MDY1MGg=
Subject key identifier: 81:11:78:7A:B0:E4:D1:48:1F:4E:03:37:0E:84:F3:56:17:1E:FB:62
Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3
Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3
Certificate serial: 0109
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft
Manifest number: 0105
Signing time: Fri 31 Jan 2025 04:11:49 +0000
Manifest this update: Fri 31 Jan 2025 04:11:48 +0000
Manifest next update: Fri 07 Feb 2025 04:11:48 +0000
Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: 9ZKOeuydxPUuP1uDklms0nnkOlcAusJThFxDnkeJM9o=)
2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: S579X7Eg58aEG3SPKUs0UURwjN76vzCVTAQS2DSPcNI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 265 (0x109)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3
Validity
Not Before: Jan 31 04:11:48 2025 GMT
Not After : Feb 7 04:11:48 2025 GMT
Subject: CN=679c4d84-90d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:02:0e:89:b3:fe:e1:9a:ce:83:46:c4:6c:17:
72:05:da:9e:b7:e8:7c:e4:3f:68:45:b5:be:cb:8b:
53:75:bf:59:e6:7d:e6:a9:d1:92:70:9d:44:b6:a7:
a1:82:62:91:f1:88:b1:41:6f:8a:c7:c7:33:df:29:
d0:14:14:30:b4:98:4e:d5:c5:f6:2d:39:26:f6:d3:
68:4e:24:33:4f:fc:e3:df:4a:e3:0d:83:46:44:0a:
4e:c2:7d:7e:20:f4:b0:5e:3d:97:3e:57:f4:d1:c9:
35:d2:59:de:a2:ba:6b:60:c2:d3:e0:a6:1f:fd:c5:
78:f1:40:bb:79:b7:5b:e5:d5:4c:b9:74:b7:ef:ad:
58:92:19:af:9a:be:85:0f:97:50:d1:ac:c1:4d:aa:
53:0d:77:fd:03:1b:c4:57:ad:75:1e:28:8d:2f:0b:
ca:db:2d:a7:59:f0:6c:3f:fd:77:86:3f:7c:ed:ec:
a8:4a:ea:6b:d7:33:df:61:ff:59:f6:e9:d7:0b:55:
94:23:94:54:22:ab:bb:a5:15:21:45:dc:63:d0:0f:
ca:bd:28:88:57:b2:7a:3b:9f:13:2e:36:6c:fb:44:
11:59:42:25:b3:50:ad:cf:51:cc:6c:a9:74:80:3d:
0b:f4:d3:44:72:cb:ec:c8:25:6f:a6:09:a0:52:0a:
06:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:11:78:7A:B0:E4:D1:48:1F:4E:03:37:0E:84:F3:56:17:1E:FB:62
X509v3 Authority Key Identifier:
keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
48:f1:3c:cc:44:56:7f:47:b9:87:ce:aa:4e:37:7c:0e:49:6f:
7f:ee:da:87:4d:40:91:c5:ae:95:be:d0:0e:94:d8:0e:5b:e0:
06:af:7e:d1:e9:60:20:43:02:a5:36:48:dd:5b:4e:25:86:d5:
e1:a6:85:76:fc:60:eb:85:74:0c:c4:0c:95:96:f4:ea:0b:9a:
ee:10:b5:3f:d0:91:24:31:b1:96:a8:8b:07:d9:81:a6:11:50:
d3:d6:3f:e2:5d:9e:09:a7:d5:9e:82:fe:6e:cd:b6:9e:64:9e:
1a:a5:f5:1c:57:e2:b0:61:d6:90:f8:ba:78:ba:3d:90:d0:0b:
ff:3b:67:e3:23:f3:61:77:49:18:2a:4e:30:7f:51:e9:a5:52:
f0:40:4a:13:77:58:54:af:97:5b:7a:03:aa:90:eb:22:b5:fc:
4b:41:81:25:13:9e:c6:32:86:0b:12:fa:18:8d:8a:92:0e:6f:
2b:97:66:9f:4b:c0:08:95:d1:4d:d5:0d:ee:7e:77:94:33:4f:
71:6f:36:47:1e:40:f5:b7:94:86:5a:58:8e:b1:76:30:4e:b7:
4e:c7:6e:1a:bc:c0:d3:61:66:48:37:c2:b0:84:bb:8f:7e:5b:
cb:ef:4e:ae:47:c4:0a:54:e5:5a:eb:64:45:8f:e0:4f:53:51:
5f:12:09:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 21:44:47 2025 by rpki-client