Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft
File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json)
Hash identifier: OM+HMJd8Tz/ZGjZ2VPxaEIMJumFBJzNRIrq5JSGZiZs=
Subject key identifier: 3E:44:A5:D4:2C:77:D1:6F:61:19:5B:F0:FC:01:28:10:15:A7:56:85
Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8
Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8
Certificate serial: 04B3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft
Manifest number: 04AB
Signing time: Thu 30 Jan 2025 23:59:00 +0000
Manifest this update: Thu 30 Jan 2025 23:59:00 +0000
Manifest next update: Thu 06 Feb 2025 23:59:00 +0000
Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: iEcRoP26H0ePAeJYOIVGGdmIcxty+JreUyms8BOmhB8=)
2: BAB0F65ABC9F11EFADB43F16C4F9AE02.roa (hash: UZpkgSdVLBapcOfpYNY3RiG6hUG2IDvGwhY1IfI2KbY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1203 (0x4b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8
Validity
Not Before: Jan 30 23:59:00 2025 GMT
Not After : Feb 6 23:59:00 2025 GMT
Subject: CN=679c1244-fdd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1f:2b:9a:18:05:aa:b9:81:d1:fb:89:e3:94:
94:98:7f:fb:8b:9b:14:0c:28:39:55:4d:77:df:58:
b4:ec:0d:b2:56:ea:10:b7:51:14:ea:09:fe:05:b1:
68:29:5d:7b:5b:f8:37:96:f7:bc:e3:17:a7:ed:52:
03:1b:99:a2:c0:83:ff:96:68:1e:eb:72:29:46:95:
31:04:4f:08:6e:cf:63:88:74:a7:1f:bf:13:8c:a0:
ec:33:c7:b4:c2:29:19:d3:47:4c:66:03:ef:78:55:
a6:38:e3:5b:31:dc:5b:dd:06:7c:26:e4:f6:39:57:
b8:6f:0f:94:a1:6d:a8:29:a4:86:41:7e:31:aa:b8:
2f:47:ab:8d:76:ad:8c:4f:e7:d2:8f:2b:9b:f3:bf:
3e:45:10:19:9a:4a:26:9c:89:9d:7d:5d:51:1b:12:
e9:ef:56:52:91:34:d7:d0:56:3e:7a:7d:7e:88:d6:
55:b6:b1:06:90:f7:47:db:7b:a8:5f:46:75:f9:1e:
76:f2:20:e2:0b:4d:01:74:e9:aa:4c:c4:18:5b:5f:
a2:6a:75:dc:31:21:ab:f9:96:a5:f8:03:f8:b4:3f:
64:64:c8:2f:d8:32:e0:3d:87:3b:0f:6d:6c:9a:56:
45:f9:fe:a1:99:94:61:f1:36:30:14:32:92:db:3f:
10:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:44:A5:D4:2C:77:D1:6F:61:19:5B:F0:FC:01:28:10:15:A7:56:85
X509v3 Authority Key Identifier:
keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6a:67:c0:b0:18:70:32:aa:00:99:df:af:a6:61:49:77:4b:6a:
9b:3b:db:66:bc:93:f5:30:de:ac:72:1a:4e:a1:9a:59:b6:25:
71:30:e1:e6:1c:4c:cc:88:e8:dd:eb:4e:d8:6b:56:49:fc:07:
ed:aa:76:a5:84:2c:19:2e:90:a4:b5:aa:a1:68:d6:50:b7:58:
c1:32:e9:db:64:26:47:09:c1:a8:9c:d1:5d:b9:06:cf:f0:be:
14:a6:4c:d9:b2:84:8f:d4:3b:71:b9:b2:b0:51:8c:b7:3b:70:
5c:66:94:a3:a7:f5:57:36:38:f6:78:f4:a5:ae:8b:be:56:6b:
0e:18:34:2f:a6:29:b0:9d:d8:79:e4:7f:a2:20:f0:40:a6:5e:
bd:1d:4f:a8:56:28:3b:1c:90:51:29:e4:d7:70:3b:4c:c9:2f:
a0:b8:ff:31:d9:f2:77:af:4c:06:e0:d5:81:df:67:88:3e:79:
63:d4:12:f4:92:3b:cf:26:eb:00:cb:d4:2b:4d:9f:1f:b4:fc:
ef:cf:98:31:3b:61:10:56:6f:8c:85:09:c0:e4:5c:70:dd:fb:
11:89:86:3e:11:14:c0:43:48:a8:93:38:0d:6a:88:0d:4f:e6:
cb:36:a7:8c:35:e3:d9:37:01:fe:5f:8b:f2:b4:4e:a4:0c:99:
49:9d:f9:0f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1
NURCMzFDRTgwHhcNMjUwMTMwMjM1OTAwWhcNMjUwMjA2MjM1OTAwWjAYMRYwFAYD
VQQDEw02NzljMTI0NC1mZGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtB8rmhgFqrmB0fuJ45SUmH/7i5sUDCg5VU1331i07A2yVuoQt1EU6gn+BbFo
KV17W/g3lve84xen7VIDG5miwIP/lmge63IpRpUxBE8Ibs9jiHSnH78TjKDsM8e0
wikZ00dMZgPveFWmOONbMdxb3QZ8JuT2OVe4bw+UoW2oKaSGQX4xqrgvR6uNdq2M
T+fSjyub878+RRAZmkomnImdfV1RGxLp71ZSkTTX0FY+en1+iNZVtrEGkPdH23uo
X0Z1+R528iDiC00BdOmqTMQYW1+ianXcMSGr+Zal+AP4tD9kZMgv2DLgPYc7D21s
mlZF+f6hmZRh8TYwFDKS2z8QsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5EpdQs
d9FvYRlb8PwBKBAVp1aFMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB
ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI
T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN
VzVjTHZpazAyYU5WMnpIT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBqZ8CwGHAyqgCZ36+mYUl3S2qbO9tmvJP1MN6schpOoZpZtiVxMOHm
HEzMiOjd607Ya1ZJ/AftqnalhCwZLpCktaqhaNZQt1jBMunbZCZHCcGonNFduQbP
8L4UpkzZsoSP1DtxubKwUYy3O3BcZpSjp/VXNjj2ePSlrou+VmsOGDQvpimwndh5
5H+iIPBApl69HU+oVig7HJBRKeTXcDtMyS+guP8x2fJ3r0wG4NWB32eIPnlj1BL0
kjvPJusAy9QrTZ8ftPzvz5gxO2EQVm+MhQnA5Fxw3fsRiYY+ERTAQ0iokzgNaogN
T+bLNqeMNePZNwH+X4vytE6kDJlJnfkP
-----END CERTIFICATE-----
Generated at Wed Apr 30 15:41:31 2025 by rpki-client