Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft
File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json)
Hash identifier: D29iAFeWLM3mkDQn25Qrrh3nq98kmafKp1q+XsgzSwM=
Subject key identifier: 03:6E:99:3A:52:4B:5C:37:A0:C1:94:2B:E0:75:7F:5A:EE:DD:07:9F
Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37
Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37
Certificate serial: 0E26
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft
Manifest number: 0E0D
Signing time: Fri 31 Jan 2025 17:48:50 +0000
Manifest this update: Fri 31 Jan 2025 17:48:49 +0000
Manifest next update: Fri 07 Feb 2025 17:48:49 +0000
Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: hDGBC1ZTgPAIbzvyCbMBqZPFOsIKNnnh8NH9NE5G+Rw=)
2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: xJh5HRbn741snUCbMX+RHgdNum29ocH1QT8bD3kB9Uw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3622 (0xe26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37
Validity
Not Before: Jan 31 17:48:49 2025 GMT
Not After : Feb 7 17:48:49 2025 GMT
Subject: CN=679d0d01-916f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:72:ef:95:f8:5f:dc:fa:49:46:bd:1b:b2:3d:
6f:38:63:11:09:95:c3:17:5c:be:45:0e:74:96:cd:
89:31:28:1a:a4:d2:31:ff:60:eb:81:e0:b3:dc:4b:
53:c6:45:32:e3:da:fb:c0:83:a5:3d:7a:fc:c6:cd:
fc:82:7b:7b:65:16:e1:6e:e8:e2:00:25:79:77:fb:
c7:0f:13:50:83:8e:ff:cd:bf:eb:9b:77:d0:37:92:
54:db:06:97:8f:42:a1:63:00:bc:33:ff:3c:81:1b:
10:49:a7:64:8d:be:a7:1d:8a:77:ec:bf:3c:15:1e:
10:75:60:04:89:3a:39:f3:3e:b3:2f:4d:96:88:e8:
a3:d1:fd:e4:c0:42:5b:eb:ad:bf:3c:da:72:6c:97:
1d:ae:64:91:4b:42:59:a9:2c:52:e1:04:47:3c:8f:
4f:12:c0:39:ef:83:b3:21:64:cf:e0:0e:1d:f3:17:
7a:f1:c1:88:0d:33:64:69:75:6c:92:a1:d6:66:f9:
58:d4:8b:ee:4f:3a:4f:17:99:f4:41:fa:b2:b7:8c:
b5:23:39:ae:2a:28:de:9d:b2:19:a4:b3:bf:bd:4f:
02:73:21:c9:65:b5:9b:ec:5e:3a:d3:94:5d:38:a2:
f1:fc:f8:23:fa:cb:5c:3c:b3:8c:cd:ca:65:5a:79:
ca:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:6E:99:3A:52:4B:5C:37:A0:C1:94:2B:E0:75:7F:5A:EE:DD:07:9F
X509v3 Authority Key Identifier:
keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
70:32:81:7c:99:0c:74:3d:61:fb:3d:57:20:2d:81:11:af:f6:
08:50:5d:33:b8:30:f6:74:5e:1b:47:f3:23:9f:87:b9:47:80:
8b:23:fc:79:96:ae:00:9f:54:ae:e2:67:7b:b7:e9:6f:5c:9d:
c6:11:cb:0d:c3:a4:32:1a:32:7c:f7:4a:be:90:50:07:f9:8d:
71:ac:87:f6:a7:64:6f:99:37:00:63:9a:13:b9:9e:49:e7:e1:
b7:6b:9a:92:14:4d:65:bb:7d:e6:e0:c1:7c:81:5b:3b:0b:7e:
8b:ef:08:7c:dd:00:3d:27:e7:6e:6a:1d:80:e9:d7:d7:3e:e8:
cb:5e:6b:51:c5:a2:e4:2f:cf:4d:09:c1:9b:8c:44:3a:ec:f7:
bf:aa:9a:65:25:24:0d:62:d3:d3:ad:28:1f:ff:0e:30:36:8e:
66:0b:75:32:ef:6d:f4:d5:94:5f:d8:8d:b1:44:fc:a5:a9:79:
99:54:64:a3:b4:05:0e:e5:86:bf:c3:21:45:e3:59:d3:27:e7:
94:cc:79:ac:35:4e:89:d2:e9:29:0a:b1:46:66:b7:22:65:79:
87:fa:50:07:e7:b6:30:fe:4c:94:4c:84:cf:d4:5e:8a:fb:f5:
df:36:5f:73:1e:72:d3:b9:10:20:8b:db:b3:32:e5:cc:61:96:
41:31:2e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:09:05 2025 by rpki-client