Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/I3t9TKhKJtX8SVjUgZHzahS8ei8.mft
File: I3t9TKhKJtX8SVjUgZHzahS8ei8.mft (raw, json)
Hash identifier: Tw9FcqpjVGDx67sUbTcJfUkXA1Y+7AxRiKdkNmDX5eo=
Subject key identifier: 6C:97:60:D1:A3:1F:E7:8B:88:47:6C:99:8E:6D:2A:D3:8A:02:2D:4F
Authority key identifier: 23:7B:7D:4C:A8:4A:26:D5:FC:49:58:D4:81:91:F3:6A:14:BC:7A:2F
Certificate issuer: /CN=A91DB6F8/serialNumber=237B7D4CA84A26D5FC4958D48191F36A14BC7A2F
Certificate serial: 01B0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3t9TKhKJtX8SVjUgZHzahS8ei8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/I3t9TKhKJtX8SVjUgZHzahS8ei8.mft
Manifest number: 01A3
Signing time: Fri 31 Jan 2025 02:43:07 +0000
Manifest this update: Fri 31 Jan 2025 02:43:07 +0000
Manifest next update: Fri 07 Feb 2025 02:43:07 +0000
Files and hashes: 1: I3t9TKhKJtX8SVjUgZHzahS8ei8.crl (hash: fLZQG82L7KbelpJ2S7+zpAZY+oTg7DHLYGwp+bbOtfw=)
2: CC863C00AAC011EF8A637D09C4F9AE02.roa (hash: 0d8EDj7p85g61PO4rxhm2YW85ofVuKXgCa1+1ENa/7s=)
3: B76665B6AAC011EFBC479E79C4F9AE02.roa (hash: ebFVZb24qzMOclquLEvNefeGPzln4MMRSWx20kkSl4I=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 432 (0x1b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DB6F8/serialNumber=237B7D4CA84A26D5FC4958D48191F36A14BC7A2F
Validity
Not Before: Jan 31 02:43:07 2025 GMT
Not After : Feb 7 02:43:07 2025 GMT
Subject: CN=679c38bb-620a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8f:72:8c:d5:1d:87:7d:9b:df:3c:34:b5:54:
50:87:e9:07:b3:87:9b:19:3c:83:8b:4c:5a:cf:65:
66:a4:25:a6:23:29:e8:35:dc:65:bc:9e:8d:2f:40:
da:26:ce:b0:48:15:cc:f2:b4:44:0e:73:62:19:56:
d3:bd:e5:1b:08:86:96:a7:65:67:ab:6c:7f:7b:3a:
23:38:2f:54:d9:7f:b9:74:e6:d1:b2:1f:fc:92:d1:
74:12:5c:fa:5c:44:03:ed:99:c5:6d:13:e6:00:9f:
cb:16:13:c9:27:40:0e:d9:4e:d7:28:60:8b:8e:30:
cf:71:de:5b:8f:89:68:26:19:3e:dc:34:c8:ed:9d:
38:a8:54:50:b8:81:87:ee:e2:fe:f1:5e:1c:21:ba:
cb:49:63:b9:4c:fa:93:dd:d6:82:5a:f6:01:81:e3:
28:36:9b:3f:62:0a:bc:20:78:8e:25:03:62:da:66:
36:97:41:cf:e0:6a:bf:b2:19:93:60:1e:48:ed:c0:
6e:68:91:4d:0b:8b:69:93:ad:50:99:26:5e:4e:b0:
ab:a6:37:ba:71:ee:0e:d4:dc:b7:33:7f:02:65:09:
cf:d1:c9:db:51:ab:64:3b:2b:f6:4b:b5:08:16:36:
62:97:36:03:64:5b:fa:38:3a:c2:fd:50:91:63:29:
79:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:97:60:D1:A3:1F:E7:8B:88:47:6C:99:8E:6D:2A:D3:8A:02:2D:4F
X509v3 Authority Key Identifier:
keyid:23:7B:7D:4C:A8:4A:26:D5:FC:49:58:D4:81:91:F3:6A:14:BC:7A:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/I3t9TKhKJtX8SVjUgZHzahS8ei8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3t9TKhKJtX8SVjUgZHzahS8ei8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/I3t9TKhKJtX8SVjUgZHzahS8ei8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
59:c1:e0:89:89:f1:13:14:91:87:d3:0a:61:d1:ea:b1:ef:b4:
28:28:61:54:00:3d:b0:13:b9:65:af:85:23:ec:88:92:25:51:
21:b4:4a:12:3e:a9:78:8b:12:80:54:54:83:13:18:65:04:8d:
24:11:d4:84:4e:2f:0a:a1:71:c4:3c:74:0b:8d:f3:15:ce:61:
41:2e:85:38:a2:25:34:3e:b7:f4:0d:db:d8:ce:66:45:f9:46:
f3:0a:3e:f8:4a:34:8b:02:d9:20:40:6e:17:98:4f:f8:09:75:
ea:12:cb:35:3e:c2:85:46:39:f5:6d:17:ff:86:64:17:ed:be:
10:be:15:e6:15:a6:b8:70:df:01:86:3f:54:85:3a:20:91:c6:
e5:72:de:9c:19:77:d0:10:77:b5:5f:0e:1c:5f:9e:20:44:98:
71:95:ff:f4:d9:ba:a6:ac:39:49:78:cd:89:db:fa:4e:11:96:
7a:62:ce:a3:86:10:d7:f5:ad:80:16:da:ed:0d:7e:75:01:94:
2b:92:75:1d:4b:fc:dc:0e:f7:8c:e9:ee:eb:7b:7e:8a:32:c2:
af:eb:60:11:88:34:f8:1b:60:29:e9:5f:e0:a0:0c:6d:35:9a:
d7:45:35:a7:4d:a4:05:d5:3d:a4:7c:18:4c:dd:11:81:d6:d4:
29:1a:4b:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 20:02:52 2025 by rpki-client