Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft
File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json)
Hash identifier: c47mYqNLof91USNY+ohAvp8eNZh0gwNHGDeMuxePuMI=
Subject key identifier: 30:7D:49:F8:7E:74:F8:69:5E:2D:A1:3C:88:EA:42:25:24:14:AD:B9
Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD
Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD
Certificate serial: 7C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft
Manifest number: 7A
Signing time: Fri 31 Jan 2025 05:48:16 +0000
Manifest this update: Fri 31 Jan 2025 05:48:15 +0000
Manifest next update: Fri 07 Feb 2025 05:48:15 +0000
Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: QYTSfyd7dxbBJfdXnOpcxElrGQhI1m0REE3lITHUL/Q=)
2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: 1IspOhl6gwbhdZvL5rloqYpEEE+IPoe5ali+fyL8EWw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124 (0x7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD
Validity
Not Before: Jan 31 05:48:15 2025 GMT
Not After : Feb 7 05:48:15 2025 GMT
Subject: CN=679c6420-b224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:d8:60:60:b8:87:0b:1f:75:61:12:17:ab:fb:
2a:34:6e:f8:51:2b:17:ae:a2:3a:b0:b7:ed:bb:dc:
bb:c3:f4:59:7b:cb:09:05:d5:f3:95:29:57:a5:4c:
8a:35:46:d1:76:66:58:58:44:35:7f:86:91:a8:3b:
0b:39:10:85:17:ad:9e:22:db:fc:fb:2c:af:ca:1b:
90:d9:8e:f5:0d:4d:ea:ee:1d:10:07:63:b4:da:b1:
6c:5c:21:c3:36:44:94:95:1f:b6:94:ee:db:a3:53:
48:e7:7c:96:a1:09:47:cf:55:3f:6d:a3:81:a6:35:
5e:f7:83:4d:ff:3b:37:d3:52:b0:ac:15:0f:5e:3c:
70:b7:03:0b:ac:aa:38:df:09:96:39:0f:7b:ff:e9:
5e:9a:b8:58:43:0f:76:f4:39:f7:64:3d:8d:ea:62:
2b:a2:96:a8:9d:8a:71:3e:5f:11:76:3c:42:5c:0c:
d2:e0:5a:7a:10:0d:cf:d1:4f:ad:3c:dd:0e:da:d7:
dc:e2:a4:98:c4:d0:00:34:dc:7d:4b:6f:a6:9c:dc:
86:eb:60:24:20:19:2c:97:57:13:da:cb:4f:a6:e5:
6a:97:e6:ef:82:fc:6e:88:d9:18:08:17:11:cd:3e:
13:6a:a5:f2:b5:d5:22:6d:30:b3:92:5e:35:a8:fe:
5d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:7D:49:F8:7E:74:F8:69:5E:2D:A1:3C:88:EA:42:25:24:14:AD:B9
X509v3 Authority Key Identifier:
keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
93:ed:59:50:61:49:e9:ff:20:53:04:5c:c8:1f:ea:93:97:ad:
9a:3b:98:76:fe:be:0a:d9:2b:e5:fb:b5:23:32:7e:07:ed:89:
fb:76:de:db:cb:67:0f:5f:aa:e7:bf:e8:8b:19:99:c1:fd:47:
1b:4e:aa:b8:d3:a8:b7:bc:6f:b4:14:b4:27:45:41:58:66:4c:
c5:e8:25:69:0c:4b:41:bf:61:5d:d3:8f:c7:ce:50:14:06:89:
7c:64:34:c1:3b:6c:0a:d2:5f:4f:31:14:8f:40:bd:d6:11:77:
96:ac:bb:4c:90:c5:be:4e:7d:99:9f:e3:a8:e4:d3:8d:6f:c3:
5b:d6:d2:7c:98:61:e8:78:a8:80:c8:7b:b4:f8:53:7f:fa:a0:
1e:26:ee:5a:0a:a5:3e:62:d8:fc:99:52:1f:95:ff:7d:53:39:
4c:36:37:c2:bb:0f:ed:b9:43:2d:a9:d6:c9:26:df:09:35:8d:
f5:1a:d6:6c:23:51:3a:76:f0:07:9b:53:67:07:74:d7:31:b3:
14:6f:e8:84:7c:8b:e5:7a:2f:9a:f6:6b:c3:1f:98:c5:0a:4f:
b3:13:37:4d:93:ed:3b:5d:16:ff:2b:31:5f:5b:be:c3:35:13:
41:f6:f8:e5:60:e6:b8:26:59:ad:fc:87:de:b7:70:31:b8:f0:
aa:62:7c:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:33:28 2025 by rpki-client