Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft
File: dxt4h8SJvZsXs87YMWTvRNxWTvU.mft (raw, json)
Hash identifier: s9KS3bdeidGC5X70oLvBW4YBa33PwXcbEVXNvoXPmBE=
Subject key identifier: C2:AE:05:15:6F:5B:02:7F:EE:71:A9:4A:E2:52:95:C6:CB:15:A1:22
Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5
Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5
Certificate serial: 012D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft
Manifest number: 0129
Signing time: Fri 31 Jan 2025 03:45:11 +0000
Manifest this update: Fri 31 Jan 2025 03:45:11 +0000
Manifest next update: Fri 07 Feb 2025 03:45:11 +0000
Files and hashes: 1: dxt4h8SJvZsXs87YMWTvRNxWTvU.crl (hash: lLkB/U6NrgSeOvTXMaCCI5dCH1fiWgL8Y98rVD4RXdo=)
2: 5D432F98177711EEAB396D1CC4F9AE02.roa (hash: CB6qYtIMERSezwGUEUv4T/r/K/tC4CWAUjSVJHYQH28=)
3: 5CB1666C177711EEAB396D1CC4F9AE02.roa (hash: wqZWqZ8fa4R6eMrcXZq1r/urB8kEflCs9S9caDMISYM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 301 (0x12d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5
Validity
Not Before: Jan 31 03:45:11 2025 GMT
Not After : Feb 7 03:45:11 2025 GMT
Subject: CN=679c4747-8911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:be:f2:92:20:55:18:09:d1:fd:b3:99:cf:1a:
a3:90:90:7c:9a:41:28:97:b6:21:cb:4d:3b:cf:1a:
29:c5:27:63:e5:99:dd:65:77:83:72:d6:5f:98:9e:
bb:0c:f0:eb:35:95:bb:2d:15:71:b4:b0:d9:e9:10:
a7:88:5a:76:7e:28:e6:bf:35:43:9f:b0:5e:d1:35:
d1:2d:54:4e:ad:b1:90:1d:c5:99:db:13:7b:f9:40:
5d:58:15:fe:1d:21:4c:d0:1b:d4:8a:58:6e:51:2b:
66:a3:8a:c8:49:6f:4a:b8:e1:0e:5b:48:84:25:ed:
3c:ff:41:3f:30:00:93:c2:72:97:e8:16:fa:40:cb:
53:e4:8a:93:fb:3d:2f:46:1b:46:47:7b:98:bd:e1:
da:6b:2e:1f:40:6b:58:7f:73:f6:b9:d5:47:c2:e8:
a3:5e:ab:1c:6a:2b:4f:4f:af:05:fb:39:bb:13:ca:
22:e3:16:90:8f:3e:86:fa:f2:39:ee:b8:b1:fc:63:
d0:c5:64:8a:bb:d9:db:22:1c:79:ab:3d:1a:e7:f8:
38:fa:f7:c8:8f:19:90:e2:f4:4b:58:ff:73:d4:1d:
3d:f2:78:7f:5f:0c:0e:94:21:1b:85:71:b3:ae:15:
db:31:9f:4e:f3:58:3c:8d:2f:d9:4d:48:e6:c5:6e:
2f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AE:05:15:6F:5B:02:7F:EE:71:A9:4A:E2:52:95:C6:CB:15:A1:22
X509v3 Authority Key Identifier:
keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
84:74:4f:79:8e:b1:16:3e:43:1e:c7:40:4f:f5:bd:64:18:02:
4c:d3:6a:d4:fe:c3:9c:b8:b4:de:d7:d1:6e:2d:f7:27:2c:0d:
63:02:6e:9e:b8:1a:d9:4c:d8:30:6f:c7:47:07:31:fe:25:29:
be:de:22:17:8c:13:11:26:aa:35:5e:92:4c:89:e9:64:06:d9:
fe:08:72:a1:fd:7d:a5:25:4e:a2:9b:c3:f7:6f:90:43:1c:0a:
fd:f4:91:cc:ab:74:79:b5:46:c8:5b:69:5d:4c:15:56:dc:fa:
c0:e6:19:a9:a3:19:6e:e9:81:b2:b6:82:5a:7f:c7:b1:36:13:
d2:6d:2b:96:1f:cf:2e:41:28:31:83:56:a6:0b:93:45:3b:a4:
54:b7:51:72:8e:62:38:ef:6f:9c:1e:44:4e:85:39:a2:37:d3:
7d:70:35:63:0d:c8:94:92:01:a5:09:6b:93:61:6a:83:47:94:
95:d2:a9:88:21:84:d8:fa:5b:24:d2:6f:1c:05:da:d2:88:ed:
f0:39:8f:17:53:8b:e3:9c:2f:db:af:e6:3a:2c:35:16:2f:35:
a2:da:20:c3:c0:52:74:b9:0f:c4:ef:f1:4a:47:7c:7f:bb:7e:
a2:22:3a:e3:a5:67:d2:fe:73:73:a6:c6:c1:7e:0b:24:23:ac:
7c:0f:f8:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 15:47:38 2025 by rpki-client