Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft
File: SRNmdefiNOfS-IRZmOLGLbSIgso.mft (raw, json)
Hash identifier: bWEKMv+QZvqX1Gi0BmRDOGqw/KyWk0T4K+pkduktDyo=
Subject key identifier: E2:20:96:1D:15:15:09:DB:A8:63:49:FB:42:88:F7:5F:6C:CA:DD:DA
Authority key identifier: 49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA
Certificate issuer: /CN=A91A31F5/serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA
Certificate serial: 09
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft
Manifest number: 08
Signing time: Fri 31 Jan 2025 07:14:15 +0000
Manifest this update: Fri 31 Jan 2025 07:14:15 +0000
Manifest next update: Fri 07 Feb 2025 07:14:15 +0000
Files and hashes: 1: SRNmdefiNOfS-IRZmOLGLbSIgso.crl (hash: ssm1C08A7riVrgK/XtN35ViBmDSruEE6KVzUMNnKmvc=)
2: A8A5C28ED6ED11EFB4D7876BC4F9AE02.roa (hash: XLgRz6Ys+AWKVb/kmctJ9W9xNxym6vJibxlk+kHS4Ys=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A31F5/serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA
Validity
Not Before: Jan 31 07:14:15 2025 GMT
Not After : Feb 7 07:14:15 2025 GMT
Subject: CN=679c7847-fe05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:99:61:a2:12:6d:b0:e6:9d:7d:2e:20:08:ec:
78:dd:5d:83:91:c4:04:11:08:79:c0:dc:e6:73:51:
71:88:49:9d:2d:9e:84:85:97:86:70:9f:4c:fc:b7:
bd:6c:3f:a8:00:19:7c:a8:b6:5f:11:b3:0c:69:40:
15:be:8e:42:ed:42:5c:bc:a8:e6:ad:bf:52:29:2a:
fa:36:85:8e:ed:cd:09:62:e5:33:75:e0:e0:f8:61:
38:01:24:75:1a:32:5d:60:19:d4:95:e4:49:d8:9a:
72:d3:00:2b:47:00:41:fe:23:37:4e:b0:62:6b:a1:
5c:5f:f4:7c:f2:29:ec:67:90:08:b8:45:1e:3d:79:
85:be:ef:10:7c:e6:02:7f:16:a7:00:01:7c:d6:17:
61:7f:0e:4d:76:8c:57:5b:ae:95:92:c0:dc:34:ca:
32:81:2e:9e:24:95:a7:50:16:d0:22:a5:4a:a3:b0:
4d:e7:ab:56:ad:1d:10:63:85:10:e6:c3:63:ab:ab:
a1:31:35:e9:4f:78:40:fa:f4:47:d5:15:a2:43:c8:
ea:bf:1a:02:6c:0e:f5:1e:7e:e9:11:cf:ea:47:ee:
95:1c:9b:ce:10:75:9f:fa:67:1b:73:e5:10:77:94:
03:2c:44:c9:87:be:d3:32:57:0a:5e:18:1a:97:95:
e0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:20:96:1D:15:15:09:DB:A8:63:49:FB:42:88:F7:5F:6C:CA:DD:DA
X509v3 Authority Key Identifier:
keyid:49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1a:9a:d0:67:6b:1b:3d:4c:e4:d6:c5:73:19:a3:a0:95:42:4f:
2e:37:89:77:c3:ba:3d:ab:de:05:18:22:c9:4d:40:b4:dc:53:
53:20:8c:35:bb:58:b4:88:b4:61:e1:e2:ea:da:d8:60:a4:50:
8b:2b:6a:1b:69:04:1d:21:d2:97:34:bc:08:3b:a2:a1:0c:f9:
2c:3b:91:99:bf:13:4a:f5:49:67:96:84:30:9f:56:6a:b2:86:
cc:b8:94:ac:41:b4:0b:75:a2:80:c5:0f:e9:a5:28:ac:4d:4f:
b6:e9:d1:aa:78:6b:b6:d7:6c:46:0c:23:09:e9:c8:31:c1:39:
d2:e5:c1:04:ed:a9:bf:9e:d2:98:6d:71:c9:f7:96:8c:ef:75:
89:ba:46:0b:55:b9:54:dd:2a:36:68:00:02:36:82:92:76:b3:
4c:db:1d:0a:8a:eb:12:eb:fb:0f:e8:05:ff:45:18:02:96:48:
d7:ff:93:de:58:df:bb:81:cb:fc:e7:30:25:dc:72:93:96:03:
38:ce:37:6b:a8:c1:d1:2b:94:15:78:42:98:b5:a0:ef:ec:7f:
53:92:49:b3:39:4a:8a:d3:ba:9b:e4:fd:3c:74:20:35:23:dc:
3f:aa:5a:33:69:bd:19:71:b2:27:e7:0f:03:2a:f9:3a:76:26:
7f:27:53:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 15:38:28 2025 by rpki-client