Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D962B/3F0F5CEC779C11EE82213967C4F9AE02/8BSGAXLU-4t5Ai-9WfLsoL52SPE.mft
File: 8BSGAXLU-4t5Ai-9WfLsoL52SPE.mft (raw, json)
Hash identifier: 43Och34C38bCHRLgEAUcS4bpd/Jq7mV6HfeENBaYs0o=
Subject key identifier: 13:D6:F1:FA:93:28:9C:8A:D2:CE:C2:A5:4B:9E:24:88:70:8B:2A:8F
Authority key identifier: F0:14:86:01:72:D4:FB:8B:79:02:2F:BD:59:F2:EC:A0:BE:76:48:F1
Certificate issuer: /CN=A91D962B/serialNumber=F014860172D4FB8B79022FBD59F2ECA0BE7648F1
Certificate serial: F2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8BSGAXLU-4t5Ai-9WfLsoL52SPE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D962B/3F0F5CEC779C11EE82213967C4F9AE02/8BSGAXLU-4t5Ai-9WfLsoL52SPE.mft
Manifest number: ED
Signing time: Fri 31 Jan 2025 04:28:39 +0000
Manifest this update: Fri 31 Jan 2025 04:28:39 +0000
Manifest next update: Fri 07 Feb 2025 04:28:39 +0000
Files and hashes: 1: 8BSGAXLU-4t5Ai-9WfLsoL52SPE.crl (hash: kGuOSTcabv1AbonWgM5Pkt66xsOnpylOPMuLSoG51NM=)
2: 74DC3F3C779E11EE842F9D85C4F9AE02.roa (hash: SshOC3gU6HUaIU7OUJCNAnBTxBahFjxoE/rfFGZssow=)
3: 743EA894779E11EE842F9D85C4F9AE02.roa (hash: GCUYfktdJtM3w3x/AngT0svZ6AfcPm8+X/17pTPoOCo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242 (0xf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D962B/serialNumber=F014860172D4FB8B79022FBD59F2ECA0BE7648F1
Validity
Not Before: Jan 31 04:28:39 2025 GMT
Not After : Feb 7 04:28:39 2025 GMT
Subject: CN=679c5177-6d90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:82:5c:cc:92:94:27:aa:1b:29:20:7f:bb:a5:
9a:b7:3a:56:3d:28:8c:54:48:c3:9d:53:91:4c:f3:
1e:45:58:17:69:ae:7e:05:bf:f0:5f:81:f4:c4:ac:
45:85:44:ab:d4:b5:e3:2a:1f:55:34:76:ee:97:31:
cd:a1:ed:66:6d:01:d1:31:20:4d:80:b1:62:fd:c2:
46:f4:be:2b:d1:85:91:ea:bf:55:21:bf:b7:7d:0d:
b6:73:34:53:63:9e:92:d5:72:8e:2e:7a:4c:a9:e8:
a0:46:f2:42:88:e3:2c:5a:b9:10:44:1e:3c:cd:fb:
a4:cc:f2:6a:f8:76:c2:55:b9:f1:fe:60:6f:64:d8:
9e:20:76:03:22:af:23:57:95:cc:75:d1:17:a5:06:
ff:b5:76:b2:e0:20:19:7a:b7:eb:d1:28:c5:7d:48:
cf:f0:25:b5:52:10:00:b5:c2:d2:30:fb:66:3b:2d:
4a:9f:83:e2:d7:95:61:fd:ff:9f:67:99:ad:5c:c0:
a9:1f:ac:3e:b8:64:dc:ff:cf:64:5d:cf:cf:90:1d:
22:2d:fa:55:fe:3d:b8:7f:0c:01:b5:f3:f4:92:dd:
24:6e:bf:cf:7c:4e:24:d1:79:de:e6:5a:44:10:25:
06:f7:11:84:5e:83:36:e2:cb:53:26:f1:bd:89:29:
b5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D6:F1:FA:93:28:9C:8A:D2:CE:C2:A5:4B:9E:24:88:70:8B:2A:8F
X509v3 Authority Key Identifier:
keyid:F0:14:86:01:72:D4:FB:8B:79:02:2F:BD:59:F2:EC:A0:BE:76:48:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D962B/3F0F5CEC779C11EE82213967C4F9AE02/8BSGAXLU-4t5Ai-9WfLsoL52SPE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8BSGAXLU-4t5Ai-9WfLsoL52SPE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D962B/3F0F5CEC779C11EE82213967C4F9AE02/8BSGAXLU-4t5Ai-9WfLsoL52SPE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6d:32:91:66:eb:ea:3b:a3:94:a3:68:46:e6:a5:98:02:c8:ca:
0c:08:81:87:7a:f4:ef:31:60:77:a6:20:51:87:e4:26:2c:05:
62:3a:b9:57:8b:19:f6:4d:03:e5:1e:bd:39:f3:7d:e6:46:59:
3f:26:19:83:80:fd:6c:f0:1d:6c:44:0f:ac:42:75:df:8e:f0:
22:3d:1a:f1:88:0f:c6:94:a0:f2:a7:68:f3:59:1b:64:09:79:
b3:8f:13:43:46:74:ff:29:95:be:f4:5f:cd:65:6b:f6:a9:56:
c5:44:57:58:22:8b:15:ba:d3:2d:c3:2d:d8:cd:cc:5a:ef:c6:
79:5c:c4:54:38:c6:7a:b3:60:3d:31:79:1d:24:dd:79:ff:cc:
07:34:d0:44:67:6d:66:56:08:9f:8f:ef:fa:60:0c:f4:8e:ff:
56:73:b8:e2:dc:4f:e8:28:1d:a7:13:ed:a6:2c:75:7d:1b:56:
a7:08:94:3e:a1:7d:35:a0:9d:6e:f6:af:81:53:47:ee:8c:73:
7f:22:77:3e:e9:1e:d1:37:9f:9d:ed:df:b7:36:ec:ff:9d:61:
19:e3:aa:dc:29:09:5c:8f:18:24:72:05:ff:a4:8d:da:cb:f5:
66:e5:59:28:30:c8:05:4c:86:c8:0c:d1:c2:8e:d7:b7:8a:26:
46:cd:0e:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:44:50 2025 by rpki-client