Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft
File: oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft (raw, json)
Hash identifier: 2Rqy5Uvv2SGeEGoyeA6Bdpzbn0T8d+jVsY0dIDAw/rY=
Subject key identifier: 89:76:E2:74:75:71:16:83:4F:B8:FB:98:C1:8C:9A:F4:E9:7E:FA:D4
Authority key identifier: A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02
Certificate issuer: /CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02
Certificate serial: 0A63
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft
Manifest number: 0A5A
Signing time: Thu 30 Jan 2025 19:48:28 +0000
Manifest this update: Thu 30 Jan 2025 19:48:27 +0000
Manifest next update: Thu 06 Feb 2025 19:48:27 +0000
Files and hashes: 1: oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl (hash: iED673WGoB22n43DKOHDvTwrzJmPQlHdnspKQ9RrGmY=)
2: 52F59E403B4111ECABFD2186C4F9AE02.roa (hash: wEPT/JxoXR8vXmErciWYLyiDrtNHIrJoWWSk93OARbU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2659 (0xa63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02
Validity
Not Before: Jan 30 19:48:27 2025 GMT
Not After : Feb 6 19:48:27 2025 GMT
Subject: CN=679bd78b-dcc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d4:65:ed:ca:83:eb:8c:eb:b1:7a:68:1c:18:
7b:90:b0:16:e8:08:ad:e5:66:9d:59:e8:e4:5c:83:
5e:fa:fa:59:18:6a:1d:f9:b2:76:17:08:06:77:9a:
c8:5e:1a:45:5f:0d:6f:5f:92:1f:b6:f7:5b:1d:75:
fc:ad:19:b0:ab:37:c0:bd:28:7b:7c:0d:66:97:d1:
91:26:c7:91:3f:c8:ba:e8:65:3b:e0:c4:09:d5:b6:
2d:a4:d3:e5:4b:8a:08:80:dd:5a:ef:4e:0c:df:db:
b6:02:ba:55:c5:d7:95:cb:98:73:b8:75:50:5f:1e:
a5:4b:d5:c2:40:64:17:20:ef:f9:86:08:33:7f:7a:
17:90:7e:cb:3e:fa:4a:3e:d7:a8:5a:6a:5a:ad:ba:
7c:95:26:6d:3f:98:fb:df:8e:f3:32:ab:b3:13:f9:
8c:59:59:95:9d:a6:de:f2:a4:c4:da:74:53:42:64:
c7:f7:7e:48:c5:f3:7d:39:e0:00:21:2a:8a:db:b0:
f2:63:d3:78:7c:96:de:0f:e4:ab:47:40:96:ef:4e:
e7:85:5c:94:f5:b6:52:67:8b:40:82:dd:b8:d8:8f:
a2:20:24:96:cc:ce:d9:02:dc:74:80:d4:4a:14:3e:
a3:93:1e:5c:17:60:3e:22:7c:b3:b2:40:2b:d4:a7:
c2:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:76:E2:74:75:71:16:83:4F:B8:FB:98:C1:8C:9A:F4:E9:7E:FA:D4
X509v3 Authority Key Identifier:
keyid:A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
56:3a:1f:fb:4d:0c:2b:ba:4a:8e:3f:a1:54:5b:d0:31:91:f4:
7c:32:f2:af:9d:06:8f:c1:8f:e4:f5:c9:8b:28:c2:3e:f3:8b:
91:9c:e7:5e:2e:ab:68:46:08:ed:41:3f:ff:04:73:e8:01:f8:
99:55:56:b8:29:09:f2:63:4c:05:fd:1e:ec:f6:6c:38:28:d9:
36:07:f8:f5:37:19:88:c3:69:4e:33:01:2f:43:9d:90:f2:50:
4c:f7:62:4c:2e:98:c0:58:34:03:4c:5c:53:10:4f:15:db:71:
99:0f:3d:f0:ac:3f:d5:84:ec:35:63:d1:d6:97:cb:46:01:ee:
8d:08:29:49:bc:45:d9:65:72:b1:10:66:04:4b:aa:bf:e3:36:
2f:48:91:05:a4:6d:cf:83:2f:d9:d0:07:ba:e1:d8:a8:8e:b4:
84:44:a0:82:bc:0e:a5:9f:f8:0b:f4:3b:de:0d:fc:f4:9c:85:
07:44:b9:28:d6:03:dd:75:7b:1a:3a:23:37:e4:19:ee:d5:57:
3f:3b:d1:0f:c9:08:0f:e9:99:8c:9c:f9:8f:84:03:0d:2f:74:
eb:67:d6:72:68:90:dc:fb:c1:61:fc:0f:9d:8e:3f:47:f7:df:
f1:b6:cb:72:0d:f1:6d:66:2b:6f:9e:e5:32:b5:46:55:a6:b8:
18:2b:64:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 18:44:49 2025 by rpki-client