Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft
File: zlgHMAQJCIdOtirydgUp51w9XGg.mft (raw, json)
Hash identifier: ECxgmKp93XrgU2iI3vyFkx4hnUmpNrmekDub9Z+uWlE=
Subject key identifier: 34:64:44:92:E3:CF:6E:F5:2B:B1:1D:A6:2D:A2:C8:38:71:FD:B3:AE
Authority key identifier: CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68
Certificate issuer: /CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68
Certificate serial: 08AC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft
Manifest number: 089D
Signing time: Thu 30 Jan 2025 20:36:50 +0000
Manifest this update: Thu 30 Jan 2025 20:36:50 +0000
Manifest next update: Thu 06 Feb 2025 20:36:50 +0000
Files and hashes: 1: zlgHMAQJCIdOtirydgUp51w9XGg.crl (hash: NTj6a34PK+6p6T2xt3luOpzbAhBGwcdea7KEbbYAQbo=)
2: 8698CD28A42211EB91621734C4F9AE02.roa (hash: liguL5yWelfphfIz9rHVaKh3TqmzzrhEVoBWguDMI9M=)
3: D3ECF4B8E61D11EBB92C167BC4F9AE02.roa (hash: /n6JoBCxKb39xofyDRMG1k20W82UdWlbULQ4CPVAgMo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2220 (0x8ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68
Validity
Not Before: Jan 30 20:36:50 2025 GMT
Not After : Feb 6 20:36:50 2025 GMT
Subject: CN=679be2e2-84d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:34:aa:dc:06:81:6f:e0:cc:ab:f8:af:b5:c4:
d8:86:ab:40:37:22:c8:e1:27:1b:58:d6:25:db:b2:
26:a0:11:f6:70:03:19:59:e6:dc:d8:31:98:dc:c3:
09:be:75:cc:e0:5c:dd:25:72:f1:a4:a4:1c:f8:e5:
de:a8:25:a0:df:de:e1:64:d1:18:7a:fd:7a:4d:5b:
30:91:ab:a8:d4:c4:7e:e6:13:81:01:4f:e5:69:d5:
e4:c6:4d:5b:6b:0e:61:d5:c1:e1:29:65:ad:cd:60:
86:00:82:ed:cd:a6:5a:e8:6c:08:bd:ef:16:a1:ac:
77:9c:5a:8c:34:bc:df:94:d5:0c:f6:50:33:e4:c1:
4b:32:1b:92:8d:e2:d7:a6:94:bf:e5:c1:00:ed:a4:
23:9e:f8:c0:ac:f2:26:36:d3:dc:81:3c:05:2d:ba:
1a:20:a9:29:ab:e8:df:df:e4:a0:24:76:cc:55:8a:
d8:1b:69:30:af:f4:bf:f2:9a:e3:ec:82:1d:02:cd:
b2:d9:84:2a:fb:9a:8c:80:5c:4e:88:1a:14:9c:d9:
45:55:51:82:3c:3f:9f:d4:ba:d9:04:37:88:0c:c2:
7b:29:c3:42:a1:89:f9:9d:13:e0:22:c6:1e:2e:c4:
20:e5:61:d2:be:17:59:50:ee:88:9f:32:98:f6:9b:
02:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:64:44:92:E3:CF:6E:F5:2B:B1:1D:A6:2D:A2:C8:38:71:FD:B3:AE
X509v3 Authority Key Identifier:
keyid:CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3d:c9:96:61:39:d4:cc:68:58:4f:aa:c8:7d:8b:79:7b:fa:d5:
90:83:20:81:67:93:f7:3c:55:0b:70:b8:7a:49:b5:a8:d5:3d:
7d:8b:4f:f3:f2:ee:19:59:d1:0b:f4:6c:90:d1:1a:11:a5:48:
c6:df:1e:01:d2:83:ff:f2:37:2c:c1:b4:d9:10:33:77:a8:e6:
fa:0c:4c:93:d8:0c:e0:a2:7f:72:38:12:0d:a4:6f:91:0d:c7:
03:3e:1f:38:57:98:0a:f8:89:b0:c0:74:a2:3d:b3:c8:66:3d:
26:42:4c:fa:72:45:f9:f6:6d:0e:b2:5f:f9:bd:1f:53:68:b4:
ff:42:8d:42:e0:87:2a:11:2e:0b:50:0a:08:e7:65:73:25:03:
96:05:f2:54:ba:1b:49:16:bc:bc:57:f0:40:e6:15:50:c5:8f:
6d:e0:d7:8c:d1:50:c6:f3:3b:43:3f:a6:48:5a:e0:8e:6c:b9:
05:df:ad:29:48:a8:63:0d:c1:47:91:09:13:b4:62:e6:98:80:
70:7b:8b:90:e2:a0:51:52:ad:5d:78:8c:52:eb:55:f2:f8:91:
48:39:4e:d6:fc:1c:b5:9c:0e:33:2e:b0:87:d9:8e:32:c5:b8:
bb:aa:06:b8:92:47:90:de:81:84:60:95:79:74:19:3d:04:0d:
f0:0a:6a:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 13:06:37 2025 by rpki-client