Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0875/6D91AABC593111EAAA31B40AC4F9AE02/-XNJLtZGko7R8Q3oRmLlUj9VzI0.mft
File: -XNJLtZGko7R8Q3oRmLlUj9VzI0.mft (raw, json)
Hash identifier: 3iBNcaVwZ+p6ImY71iVwgLYyI5GYn9PN+buLu7iuwFI=
Subject key identifier: 58:2E:D6:EB:21:02:C2:58:6D:8C:93:A7:93:DA:5A:8C:CC:E0:A6:FA
Authority key identifier: F9:73:49:2E:D6:46:92:8E:D1:F1:0D:E8:46:62:E5:52:3F:55:CC:8D
Certificate issuer: /CN=A91E0875/serialNumber=F973492ED646928ED1F10DE84662E5523F55CC8D
Certificate serial: 0A97
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XNJLtZGko7R8Q3oRmLlUj9VzI0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E0875/6D91AABC593111EAAA31B40AC4F9AE02/-XNJLtZGko7R8Q3oRmLlUj9VzI0.mft
Manifest number: 0A73
Signing time: Thu 30 Jan 2025 19:48:51 +0000
Manifest this update: Thu 30 Jan 2025 19:48:50 +0000
Manifest next update: Thu 06 Feb 2025 19:48:50 +0000
Files and hashes: 1: -XNJLtZGko7R8Q3oRmLlUj9VzI0.crl (hash: YLwStwjllPrbwR+9pgsGF7ZoGwt+Vsh6p+QGnvxY/+I=)
2: F1FC74DE7DE111EEB1BFD61AC4F9AE02.roa (hash: wiUyotEbzoedB/Q0gb7W+sDI78aGSUuE5BSMkTbJBXA=)
3: 33CFE442C07511EE980AEC0CC4F9AE02.roa (hash: o8EszhqBbS63QDwDle8oJR0ZCRZ42AQ9Rrdqe6ZMAPc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2711 (0xa97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E0875/serialNumber=F973492ED646928ED1F10DE84662E5523F55CC8D
Validity
Not Before: Jan 30 19:48:50 2025 GMT
Not After : Feb 6 19:48:50 2025 GMT
Subject: CN=679bd7a2-fd17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:da:38:92:e2:95:14:d1:92:d6:7a:41:8d:9b:
d7:c2:fc:cb:d8:4a:0a:84:6d:95:05:a1:f4:47:c3:
4a:08:f9:1a:4a:83:7f:ab:ed:3f:21:9c:07:e4:e6:
31:f3:49:e1:94:b7:9f:3d:00:9e:21:f3:4b:19:6e:
d4:34:38:83:e1:b0:5b:51:d8:03:42:ad:7a:22:93:
15:7b:f0:3d:54:e0:68:fa:da:44:50:b8:f5:d5:f9:
17:ba:bf:65:65:5f:b9:e6:54:4b:ce:62:f7:99:52:
94:2c:dc:9a:0b:c9:af:ca:eb:c3:85:71:6e:5d:fa:
18:b8:cd:a9:25:56:03:e1:07:e2:01:d8:29:63:af:
8d:82:38:aa:77:2f:e2:47:9c:b3:24:13:c9:fc:00:
87:15:f9:97:2e:ed:3c:4a:dc:15:c0:fb:99:2b:61:
de:30:9f:d1:25:0a:ea:22:c3:58:d6:07:9a:33:f9:
d1:1a:71:ef:91:1c:6f:0d:90:a9:bd:11:cc:d4:49:
73:5d:1b:a8:fe:39:02:39:28:1a:7c:af:12:6a:e3:
f3:29:c4:29:a1:a7:75:48:25:d4:06:ca:13:b8:c5:
90:5c:b5:5a:e2:98:f4:07:3e:96:0d:fd:4c:88:fb:
51:8b:b4:f8:09:f6:cc:a2:ab:e2:03:df:97:16:9e:
fb:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:2E:D6:EB:21:02:C2:58:6D:8C:93:A7:93:DA:5A:8C:CC:E0:A6:FA
X509v3 Authority Key Identifier:
keyid:F9:73:49:2E:D6:46:92:8E:D1:F1:0D:E8:46:62:E5:52:3F:55:CC:8D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E0875/6D91AABC593111EAAA31B40AC4F9AE02/-XNJLtZGko7R8Q3oRmLlUj9VzI0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XNJLtZGko7R8Q3oRmLlUj9VzI0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0875/6D91AABC593111EAAA31B40AC4F9AE02/-XNJLtZGko7R8Q3oRmLlUj9VzI0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8b:58:54:5c:a4:f3:a4:65:30:bb:dd:5c:b7:30:6c:98:78:53:
82:6d:a3:e1:a7:80:e3:ae:45:be:0c:f4:05:16:37:a0:29:0b:
3c:02:4c:ec:19:74:98:08:e3:7f:a7:be:8c:5b:62:a8:5a:4a:
68:18:73:3f:d7:0a:cf:ee:a9:77:f3:b9:6f:8b:d8:24:12:18:
86:d1:79:4b:7b:e9:17:d0:f0:ec:03:51:e8:4a:5f:ed:05:73:
f7:9c:57:dc:07:bd:d2:37:25:70:cd:fc:69:68:e4:49:a9:6b:
ef:7c:04:bf:c7:6e:ae:c7:b0:33:48:20:0b:8d:13:31:e8:8d:
40:7e:36:16:9f:af:3a:9d:87:39:8d:80:dc:90:3b:df:49:2f:
04:11:69:c1:b9:92:cb:6e:72:94:f1:47:2c:d2:f1:42:e8:9e:
04:de:aa:9a:aa:dc:bf:6e:ad:e1:a8:7f:98:d5:b5:ea:e7:b9:
8b:02:c3:65:0f:4c:c6:0d:1e:bb:95:ba:35:75:e6:66:12:b5:
52:77:c4:2b:70:c5:0c:c7:5f:a9:71:38:a8:63:35:dd:ac:6b:
15:8a:34:5f:01:71:e4:48:86:59:14:ba:42:42:a1:bf:66:c7:
40:53:fe:9e:25:e7:1d:85:0d:a2:bf:48:c6:22:06:92:52:b8:
69:a7:0f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:31:23 2025 by rpki-client