Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft
File: 72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft (raw, json)
Hash identifier: nvDHAYQ47R8X3XWdmv+Rzeol4ME/I/8WUPTpEMCG3/4=
Subject key identifier: DB:12:4B:AF:10:78:A3:C2:A5:9C:71:AE:75:B9:9A:4E:C7:4B:E7:A3
Authority key identifier: EF:6C:19:4B:B2:89:4D:33:E6:DE:06:42:23:2D:94:CE:4E:9E:F1:94
Certificate issuer: /CN=A919FEA1/serialNumber=EF6C194BB2894D33E6DE0642232D94CE4E9EF194
Certificate serial: 0E18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft
Manifest number: 0E10
Signing time: Fri 31 Jan 2025 17:44:33 +0000
Manifest this update: Fri 31 Jan 2025 17:44:33 +0000
Manifest next update: Fri 07 Feb 2025 17:44:33 +0000
Files and hashes: 1: 72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.crl (hash: 1NdUSn4Oo7Rpo1Riao7H+pbURlljutC2rYqL6fYrxbc=)
2: 0DFAD3529E1611E98059B049C4F9AE02.roa (hash: xrn7kqtWfpKDJ8ptvmKz6itXOdAPKg554aAbP2n2DQI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3608 (0xe18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919FEA1/serialNumber=EF6C194BB2894D33E6DE0642232D94CE4E9EF194
Validity
Not Before: Jan 31 17:44:33 2025 GMT
Not After : Feb 7 17:44:33 2025 GMT
Subject: CN=679d0c01-7e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:92:45:6b:3f:72:18:ca:91:00:84:c2:c5:ef:
a4:7a:a5:13:c5:c0:7e:a3:76:cc:d4:88:26:af:84:
9f:46:f4:04:d6:13:c0:e4:39:c0:27:1c:0e:e7:10:
cf:77:05:47:da:1e:f1:68:82:0d:9d:2b:e9:cb:a1:
a7:08:3b:f4:91:a1:16:43:f9:97:60:02:3b:23:b9:
3e:92:9b:74:9b:9b:1f:92:22:e6:93:e6:13:06:54:
1e:90:9b:7e:50:5b:8a:ca:5d:2a:4e:90:fa:11:3a:
a8:d4:54:50:4f:6c:98:fb:9d:5a:f9:39:26:9d:91:
a6:16:0c:c0:3d:51:1f:03:4e:09:5d:08:67:be:a2:
e3:b6:ea:47:7e:70:3b:e3:19:90:3c:2a:84:77:01:
6d:af:9d:fd:5e:12:5c:e8:cd:29:b4:b8:64:14:b3:
a7:91:e3:c7:c3:aa:4d:6f:18:5d:e4:f4:8d:01:31:
1f:37:b5:ed:42:3d:e4:05:6a:c6:73:80:72:cf:58:
7b:32:04:56:cc:d2:64:ae:09:f0:31:6e:d2:39:07:
cd:a1:56:66:d5:b8:80:d4:48:0c:54:4f:a6:61:9e:
e3:4e:51:1e:da:0b:af:dc:5c:52:34:20:39:13:c3:
21:33:26:d2:64:5e:bc:d8:f8:82:13:d7:e9:68:ad:
3c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:12:4B:AF:10:78:A3:C2:A5:9C:71:AE:75:B9:9A:4E:C7:4B:E7:A3
X509v3 Authority Key Identifier:
keyid:EF:6C:19:4B:B2:89:4D:33:E6:DE:06:42:23:2D:94:CE:4E:9E:F1:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9b:cc:d6:2f:c2:df:00:e5:3f:4f:bc:af:1f:6b:69:00:82:4d:
9c:39:37:54:16:46:11:fb:cd:61:48:0c:94:73:94:9b:db:a5:
bc:ac:dd:c9:40:74:a4:d6:dd:76:c3:83:36:27:82:10:64:a3:
ce:88:98:47:5c:ac:aa:bd:b0:3f:f6:72:ca:13:f3:11:a0:eb:
0e:b6:0e:31:22:55:73:f6:6b:a1:e5:5c:2a:d2:9b:35:ed:d8:
61:df:19:fe:2d:4d:ad:88:b4:4d:1a:66:f4:6f:cb:74:80:51:
dc:e0:e5:23:0c:ab:5d:18:05:e1:cc:e0:59:da:99:80:dc:96:
73:97:46:18:a0:e7:cb:db:83:fe:3d:9d:f7:96:95:ed:5b:c9:
f2:da:73:a0:d9:9c:7c:ba:70:02:12:cb:eb:1d:c4:9f:46:78:
e6:83:c4:d9:89:dd:b8:92:96:bb:9f:6e:e6:e3:2a:79:ed:a5:
7d:a0:4c:ae:2f:d5:77:b0:02:e7:39:50:2a:40:f5:96:2a:10:
d7:18:2b:d0:20:13:1b:a0:30:56:bb:dc:e5:23:f1:22:5f:c1:
39:3e:f3:b6:19:91:d1:9d:f2:1e:9d:c2:85:9e:29:47:5e:0f:
f8:77:c9:c4:c4:d8:8d:93:ff:79:16:fa:6e:af:23:25:23:c0:
8c:c4:bd:42
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICDhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OUZFQTExMTAvBgNVBAUTKEVGNkMxOTRCQjI4OTREMzNFNkRFMDY0MjIzMkQ5NENF
NEU5RUYxOTQwHhcNMjUwMTMxMTc0NDMzWhcNMjUwMjA3MTc0NDMzWjAYMRYwFAYD
VQQDEw02NzlkMGMwMS03ZTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr5JFaz9yGMqRAITCxe+keqUTxcB+o3bM1Igmr4SfRvQE1hPA5DnAJxwO5xDP
dwVH2h7xaIINnSvpy6GnCDv0kaEWQ/mXYAI7I7k+kpt0m5sfkiLmk+YTBlQekJt+
UFuKyl0qTpD6ETqo1FRQT2yY+51a+TkmnZGmFgzAPVEfA04JXQhnvqLjtupHfnA7
4xmQPCqEdwFtr539XhJc6M0ptLhkFLOnkePHw6pNbxhd5PSNATEfN7XtQj3kBWrG
c4Byz1h7MgRWzNJkrgnwMW7SOQfNoVZm1biA1EgMVE+mYZ7jTlEe2guv3FxSNCA5
E8MhMybSZF682PiCE9fpaK08ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNsSS68Q
eKPCpZxxrnW5mk7HS+ejMB8GA1UdIwQYMBaAFO9sGUuyiU0z5t4GQiMtlM5OnvGU
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkVBMS9CRkNCODVFQzlF
MTQxMUU5QTJGNkY5NDZDNEY5QUUwMi83MndaUzdLSlRUUG0zZ1pDSXkyVXprNmU4
WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzcyd1pTN0tKVFRQbTNnWkNJeTJVems2ZThaUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
RkVBMS9CRkNCODVFQzlFMTQxMUU5QTJGNkY5NDZDNEY5QUUwMi83MndaUzdLSlRU
UG0zZ1pDSXkyVXprNmU4WlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCbzNYvwt8A5T9PvK8fa2kAgk2cOTdUFkYR+81hSAyUc5Sb26W8rN3J
QHSk1t12w4M2J4IQZKPOiJhHXKyqvbA/9nLKE/MRoOsOtg4xIlVz9muh5Vwq0ps1
7dhh3xn+LU2tiLRNGmb0b8t0gFHc4OUjDKtdGAXhzOBZ2pmA3JZzl0YYoOfL24P+
PZ33lpXtW8ny2nOg2Zx8unACEsvrHcSfRnjmg8TZid24kpa7n27m4yp57aV9oEyu
L9V3sALnOVAqQPWWKhDXGCvQIBMboDBWu9zlI/EiX8E5PvO2GZHRnfIencKFnilH
Xg/4d8nExNiNk/95FvpuryMlI8CMxL1C
-----END CERTIFICATE-----
Generated at Fri Apr 25 02:59:07 2025 by rpki-client