Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft
File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json)
Hash identifier: a0duMJgpO2fupGcnBwk+bHrWV+37fW1bSxTOpoNAukg=
Subject key identifier: D9:77:66:31:86:33:8F:99:D2:5B:2C:37:10:ED:34:36:7C:23:85:8B
Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34
Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34
Certificate serial: 0195
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft
Manifest number: 0189
Signing time: Fri 31 Jan 2025 02:59:00 +0000
Manifest this update: Fri 31 Jan 2025 02:58:59 +0000
Manifest next update: Fri 07 Feb 2025 02:58:59 +0000
Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: G8Lo6JDO7FXvNUGsbhR1fwYgC2RrvNVdlItTRqXfoiY=)
2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: yk9nPTjP4U1qVXizgEWQziK8OtxwSvu99sQkiIJG/k4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405 (0x195)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34
Validity
Not Before: Jan 31 02:58:59 2025 GMT
Not After : Feb 7 02:58:59 2025 GMT
Subject: CN=679c3c74-a0e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:aa:58:0a:c0:24:fa:46:5d:5d:a1:02:e8:01:
25:f9:31:e2:8b:1b:ce:88:39:d4:84:15:ea:a7:f4:
f6:a0:0d:2d:3a:a0:b0:bd:7b:6f:13:e1:24:c7:e7:
82:ec:29:61:8b:47:d8:44:9e:54:96:ba:96:f5:79:
70:e6:24:c3:bc:a0:a4:9b:c4:e9:eb:e8:e0:d2:73:
b4:c3:b6:5f:14:ca:8e:7b:30:83:aa:c3:b3:4a:e2:
4a:a1:4d:f1:fd:0f:f8:6f:03:81:97:01:8e:06:23:
15:1d:be:48:be:56:dd:dc:0c:38:f4:09:b3:b6:e7:
d3:16:3f:f5:25:33:25:cd:f0:5b:e7:d2:94:66:fa:
09:d0:c6:54:c8:0f:91:f7:33:d2:d6:ca:1b:58:92:
51:b6:4b:99:36:b7:24:f9:f3:da:7b:d1:96:d5:37:
45:0b:25:7c:b5:c7:99:0a:c7:f7:72:26:80:ab:e0:
c1:9c:f2:00:29:e0:e9:27:44:c9:8e:2e:cc:aa:82:
f1:87:74:01:dd:88:7b:59:fa:9e:51:ea:24:66:23:
ed:75:62:d3:66:b0:7d:f9:b0:b5:32:b5:80:bc:6e:
b1:0d:a9:0d:c4:9c:36:d8:61:1b:b6:a0:4a:2a:d0:
f7:79:93:0c:ee:10:53:58:b4:6c:73:fa:e0:f8:35:
86:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:77:66:31:86:33:8F:99:D2:5B:2C:37:10:ED:34:36:7C:23:85:8B
X509v3 Authority Key Identifier:
keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a4:80:ed:19:91:c0:15:6e:c6:39:dd:60:26:b7:f2:6d:48:26:
14:49:c0:9f:ee:6b:27:38:7e:b4:b2:ca:a3:64:b9:e9:af:b4:
3d:ab:58:0e:ff:a1:e4:da:13:71:d7:45:90:ff:b1:5c:12:7f:
11:7c:02:7e:5d:65:81:58:31:21:29:48:9e:a7:82:a6:33:17:
e4:e5:40:4a:a6:bb:86:62:77:ac:53:7f:69:35:41:e4:69:3b:
53:3b:6e:cc:d9:68:3c:3a:58:80:9e:3a:ba:e7:dc:fe:3b:70:
30:ee:72:d2:dd:d1:81:14:db:1a:06:2c:d0:df:b2:e0:12:93:
b3:d7:50:4e:9d:f2:3d:8c:a2:04:83:c1:d2:fd:33:eb:4f:85:
28:a5:6a:e5:5f:df:bf:5f:75:97:30:20:d2:f6:84:9b:07:4c:
c3:1d:f5:2c:34:13:37:86:69:76:43:b4:8b:d3:cd:c9:42:88:
ea:e1:d1:72:e0:03:d2:71:f6:29:3b:eb:ca:de:28:2a:d3:25:
39:f1:4a:77:f1:0e:61:ab:b4:f4:cc:80:59:89:bf:26:c7:66:
c2:1a:be:10:4f:48:0c:98:ac:d6:8d:2c:ff:74:ce:c5:e0:c8:
89:9c:b9:1e:31:cb:4d:52:64:62:ad:72:1c:3f:84:7b:a7:85:
f7:4d:80:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 07:51:22 2025 by rpki-client