Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft
File: cNpFkZHpBoa9sKxHq9owqcPhdPo.mft (raw, json)
Hash identifier: 0fH1XMzdSTvn5UT+jcW09S/doJBMLXiiuiVevshi1K0=
Subject key identifier: 69:FA:95:6D:26:8A:7D:29:06:8C:F6:DD:D3:E3:BF:BF:2B:BB:C4:AD
Authority key identifier: 70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA
Certificate issuer: /CN=A91AF145/serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA
Certificate serial: 0127
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft
Manifest number: 0121
Signing time: Fri 31 Jan 2025 17:09:11 +0000
Manifest this update: Fri 31 Jan 2025 17:09:10 +0000
Manifest next update: Fri 07 Feb 2025 17:09:10 +0000
Files and hashes: 1: cNpFkZHpBoa9sKxHq9owqcPhdPo.crl (hash: RgnPM2M6bmHLuY1vJ+/oRy52pBzwBHOMOhG4Gwmb1Xk=)
2: 43E9CB90DFF511EF8E4E3982C4F9AE02.roa (hash: ed3VnRz1sRChg/cFQmGXFi6QslMtcDU5X1xXHCQiW6k=)
3: 971B23D236EA11EE802E9246C4F9AE02.roa (hash: 4S5HT3Umab8tv1JR8LX9cjuccjEduaZGTp680hfQmts=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 295 (0x127)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AF145/serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA
Validity
Not Before: Jan 31 17:09:10 2025 GMT
Not After : Feb 7 17:09:10 2025 GMT
Subject: CN=679d03b7-d121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:56:cf:a8:f7:f0:8c:c6:41:72:5d:82:d7:41:
17:a4:cf:cb:58:89:db:37:3f:06:15:00:5c:97:40:
af:e1:c1:50:7d:76:83:d7:ef:bf:48:4a:7a:40:d5:
cc:52:a2:24:63:fe:d6:b1:43:42:0d:33:65:73:25:
24:b7:70:4e:3e:63:1a:4f:fe:7f:f2:86:4c:a1:0f:
7e:88:04:12:f5:08:bc:58:15:c9:b1:56:a1:98:30:
de:66:09:b5:61:35:40:73:d8:ab:67:53:a8:2d:67:
a0:ef:d6:f0:d8:38:80:9e:e9:5b:de:d0:27:77:fb:
ec:7a:60:c8:1a:d0:ed:bd:f8:cc:68:13:c1:e8:46:
12:2f:86:e5:24:68:76:e0:1c:f6:d5:0a:88:70:f7:
0a:f6:b2:0b:bf:1c:b6:45:45:7d:5a:e0:c6:03:04:
73:5f:ad:af:20:90:dc:a3:dd:db:b0:84:2c:10:90:
7d:77:d5:16:4b:2c:91:c3:83:21:db:84:ba:88:06:
d7:f5:b6:8c:a2:16:2c:42:e3:6a:e4:4c:8c:dc:c1:
91:ce:ce:46:be:f4:8d:78:43:e7:b4:fc:33:a2:50:
81:cf:86:7c:91:40:28:51:f8:ed:dd:90:03:b7:c4:
6d:88:44:8e:23:e7:fd:df:be:f5:3e:30:8f:e6:8e:
dc:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:FA:95:6D:26:8A:7D:29:06:8C:F6:DD:D3:E3:BF:BF:2B:BB:C4:AD
X509v3 Authority Key Identifier:
keyid:70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5b:2c:bf:c6:1e:20:d6:3c:84:cc:8a:4c:7d:e2:78:2b:d0:27:
fe:16:08:f8:04:40:bb:66:47:f5:c2:9c:65:49:8a:72:7b:52:
97:ee:48:78:39:1c:67:84:bb:72:2e:4b:77:85:ca:53:f8:4b:
bf:a3:98:10:83:71:6b:02:da:da:7d:89:b7:ab:a8:e6:20:6a:
f5:da:5c:dd:4e:e9:1d:16:df:da:98:2b:83:6e:d0:29:02:e2:
02:22:32:0a:b8:5e:91:ea:66:59:62:f1:46:b5:0a:ef:41:00:
70:ad:0e:d1:c7:8e:db:1c:13:93:87:f4:db:c1:8f:20:97:2e:
24:45:01:2e:f0:6e:1c:15:3c:93:d5:e2:a4:a7:6d:1a:86:4a:
cf:0a:f9:55:2c:35:cf:ad:53:45:c1:29:b4:0c:af:35:5e:95:
1c:c3:8f:89:8e:a3:cc:a1:13:79:3e:ff:22:d0:81:2b:02:2b:
fa:99:f0:7a:91:83:e2:f6:0a:2b:c9:3f:2d:08:fc:3d:bd:df:
bd:74:b9:db:41:0b:0b:16:b3:48:17:4a:ad:f5:91:31:4e:13:
1f:c2:6a:64:66:d5:2f:93:4c:b8:66:cb:9c:82:55:f1:79:d9:
62:4b:0a:17:b9:5e:42:e0:db:80:40:f4:1b:0a:18:f9:27:cf:
4c:1c:f5:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:57:32 2025 by rpki-client