Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft
File: 72Z43AzrNBQcZKGKskv4bKsvvTU.mft (raw, json)
Hash identifier: soZQ/bA3QnQKMsqMgWeUDlng1HK8xPlMkPdBt5oqHmY=
Subject key identifier: A6:F9:5A:67:B7:C1:59:20:14:60:46:B9:03:1B:1E:A3:9B:83:93:87
Authority key identifier: EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35
Certificate issuer: /CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35
Certificate serial: 047B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft
Manifest number: 0471
Signing time: Fri 31 Jan 2025 00:10:02 +0000
Manifest this update: Fri 31 Jan 2025 00:10:01 +0000
Manifest next update: Fri 07 Feb 2025 00:10:01 +0000
Files and hashes: 1: 72Z43AzrNBQcZKGKskv4bKsvvTU.crl (hash: 3I9VSjIS64fAOGjVJt05YPrMpDMIpBrGhX01Ox2yeIU=)
2: 7AAFF88446BA11ECB8463B6AC4F9AE02.roa (hash: 99qqJ/9zYRnGxyVxwuHlA7p9+YSeHXLL4eIfJ57Oqyk=)
3: EEBE377430C411ECBC8D1E20C4F9AE02.roa (hash: gELAt9yiLPHGU77JxUo41MHMLLX1cjc6sNjKaC37Byk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1147 (0x47b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35
Validity
Not Before: Jan 31 00:10:01 2025 GMT
Not After : Feb 7 00:10:01 2025 GMT
Subject: CN=679c14da-8d1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:32:71:c0:57:6c:1b:45:18:86:82:ee:a3:a0:
64:14:72:2f:ab:1e:be:11:fd:04:29:1f:25:f8:1c:
8d:d4:ff:0c:a8:2b:ec:d2:22:86:60:2b:af:b9:73:
a1:59:38:a5:70:bb:87:c3:86:fe:d7:34:cd:af:be:
6a:13:1e:0a:55:99:4b:d8:b6:ce:85:e0:43:16:1b:
e1:4b:64:c3:b9:d3:b5:b9:23:0f:72:4b:6a:70:8e:
9a:92:90:cb:e0:e1:50:16:2e:fa:de:ea:74:a5:7f:
5c:3e:25:77:74:93:7b:7a:12:7a:94:30:db:a3:6c:
eb:87:d5:b5:bb:12:22:72:b7:74:d1:37:6a:4e:04:
8b:73:4b:74:c1:d9:93:ac:e8:52:db:6a:6a:21:58:
8a:20:c9:b8:4a:9d:4d:d6:e8:1d:07:d9:12:6a:ef:
08:db:de:16:3c:26:43:45:80:f0:49:41:88:9f:bc:
d9:e5:56:e9:c8:b3:1a:b4:f2:f5:06:2d:e7:07:3d:
2d:6f:fd:5f:c6:cd:72:9c:06:65:b9:0a:98:b9:53:
6c:9c:14:75:a8:53:3f:23:85:41:aa:e0:31:84:3e:
b1:bd:52:e3:b5:5a:83:f1:e9:88:67:50:53:55:3c:
08:eb:56:6e:3b:93:ec:65:61:8d:5c:85:24:28:87:
07:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F9:5A:67:B7:C1:59:20:14:60:46:B9:03:1B:1E:A3:9B:83:93:87
X509v3 Authority Key Identifier:
keyid:EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
81:3a:c7:3d:29:3f:11:56:6d:bb:24:5a:b7:2f:6f:d3:88:ad:
f9:bd:96:84:9a:36:85:34:c1:26:c1:8e:75:af:a5:91:18:c8:
e9:cc:83:26:c2:42:ce:af:f2:c1:87:f1:bf:32:dc:cb:4b:f5:
b5:fc:c8:20:7b:3a:67:b1:82:2d:36:c9:7f:18:05:f3:bb:e0:
46:d1:09:55:c9:c5:b7:4d:c9:cf:f8:9e:b0:16:e6:c7:a4:ea:
86:d0:4b:4c:d5:59:fc:44:59:f6:61:f0:e4:c3:96:fc:32:8c:
00:94:9c:8c:8f:35:b9:de:e6:35:c5:f4:b0:0d:85:1a:5e:eb:
8d:98:6e:4a:31:4a:75:cb:20:8b:4f:01:dc:c7:a2:3a:86:12:
19:1d:e7:96:1b:3b:20:88:98:f1:83:5c:dd:49:a1:22:8b:9d:
1f:3d:93:76:c1:7d:15:9a:78:9d:eb:52:09:62:8c:a7:cb:18:
fd:cf:22:29:59:da:7e:ba:a5:31:57:3c:1d:1f:36:87:74:b3:
e9:d7:14:c3:ba:38:4d:11:7d:f8:fd:80:90:bd:f8:3b:a4:7c:
a2:82:ca:35:f0:3e:4d:26:b1:09:d7:50:67:b6:85:8e:ff:0d:
6f:1f:c8:6d:c9:f5:9a:c8:e9:ad:39:76:38:c1:ea:17:f9:ae:
75:b3:00:ae
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QkFFMzQxMTAvBgNVBAUTKEVGNjY3OERDMENFQjM0MTQxQzY0QTE4QUIyNEJGODZD
QUIyRkJEMzUwHhcNMjUwMTMxMDAxMDAxWhcNMjUwMjA3MDAxMDAxWjAYMRYwFAYD
VQQDEw02NzljMTRkYS04ZDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyDJxwFdsG0UYhoLuo6BkFHIvqx6+Ef0EKR8l+ByN1P8MqCvs0iKGYCuvuXOh
WTilcLuHw4b+1zTNr75qEx4KVZlL2LbOheBDFhvhS2TDudO1uSMPcktqcI6akpDL
4OFQFi763up0pX9cPiV3dJN7ehJ6lDDbo2zrh9W1uxIicrd00TdqTgSLc0t0wdmT
rOhS22pqIViKIMm4Sp1N1ugdB9kSau8I294WPCZDRYDwSUGIn7zZ5VbpyLMatPL1
Bi3nBz0tb/1fxs1ynAZluQqYuVNsnBR1qFM/I4VBquAxhD6xvVLjtVqD8emIZ1BT
VTwI61ZuO5PsZWGNXIUkKIcH+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKb5Wme3
wVkgFGBGuQMbHqObg5OHMB8GA1UdIwQYMBaAFO9meNwM6zQUHGShirJL+GyrL701
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUzNC80QkVGQkVDQTMw
QzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5CUWNaS0dLc2t2NGJLc3Z2
VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzcyWjQzQXpyTkJRY1pLR0tza3Y0YktzdnZUVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
QUUzNC80QkVGQkVDQTMwQzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5C
UWNaS0dLc2t2NGJLc3Z2VFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCBOsc9KT8RVm27JFq3L2/TiK35vZaEmjaFNMEmwY51r6WRGMjpzIMm
wkLOr/LBh/G/MtzLS/W1/MggezpnsYItNsl/GAXzu+BG0QlVycW3TcnP+J6wFubH
pOqG0EtM1Vn8RFn2YfDkw5b8MowAlJyMjzW53uY1xfSwDYUaXuuNmG5KMUp1yyCL
TwHcx6I6hhIZHeeWGzsgiJjxg1zdSaEii50fPZN2wX0Vmnid61IJYoynyxj9zyIp
Wdp+uqUxVzwdHzaHdLPp1xTDujhNEX34/YCQvfg7pHyigso18D5NJrEJ11BntoWO
/w1vH8htyfWayOmtOXY4weoX+a51swCu
-----END CERTIFICATE-----
Generated at Fri Apr 25 12:18:56 2025 by rpki-client