Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft
File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json)
Hash identifier: 1WbUdkMnSC+8hNV+V6vW97yIgfIFvBa3CKWcZQaNQL0=
Subject key identifier: 72:6F:EF:90:A2:70:77:4C:1B:E9:7D:7E:4C:AA:59:21:03:DA:22:E8
Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E
Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E
Certificate serial: 3487
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft
Manifest number: 3469
Signing time: Fri 31 Jan 2025 14:19:17 +0000
Manifest this update: Fri 31 Jan 2025 14:19:17 +0000
Manifest next update: Fri 07 Feb 2025 14:19:17 +0000
Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: K6ztxRUzEd4qUmPuZKmyFmN7B+lOYFZB4WrEZ5Ecm8c=)
2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: LKJoEQzPb1sMSVb2vDN9+BembbPiOElHd7gaQSKpvPY=)
3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: 0Rx8HN5jmUeLiu9CtnRcyXpipRICUg/GHNM7vipXeYw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13447 (0x3487)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E
Validity
Not Before: Jan 31 14:19:17 2025 GMT
Not After : Feb 7 14:19:17 2025 GMT
Subject: CN=679cdbe5-9f07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:84:16:64:6b:78:03:4a:c2:de:59:cb:15:d0:
6c:45:68:0b:f9:a3:7a:d5:f4:32:a4:c2:31:c1:a0:
35:9d:34:ff:8c:6a:e9:7d:1a:ad:92:12:60:29:0b:
1e:f6:4e:d7:18:07:8b:33:2f:17:af:d4:06:c3:63:
74:bf:a5:9e:69:ea:9c:04:55:b1:f1:59:76:46:9e:
d6:db:e7:71:ad:01:ce:30:d8:2b:0a:85:d8:4a:eb:
46:c8:cf:1f:97:ea:5e:f8:5e:46:c6:9b:81:f4:e8:
39:da:96:84:9e:cd:93:07:23:cc:63:ad:ff:7f:a5:
20:2e:3c:ce:1b:0f:11:d1:11:71:3a:00:0a:76:4a:
ca:ef:08:3b:dc:00:1e:11:68:8f:9d:b8:d3:be:4c:
c1:8c:06:66:29:da:46:77:69:00:63:51:26:6c:11:
95:58:3f:1f:bf:50:af:a7:f9:b9:9b:12:7e:f5:f5:
41:aa:ff:ac:92:4f:2a:d7:eb:a6:97:4d:a6:e5:79:
9f:f4:36:64:1d:55:81:a1:72:fa:72:62:d1:21:b3:
03:1d:e8:31:ce:1b:e8:99:5b:62:6c:d1:08:63:1d:
89:92:80:16:84:1a:89:54:fe:42:d8:9b:85:6d:c5:
6e:c1:63:5f:c8:27:8f:f5:46:a3:63:18:48:7a:f9:
45:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:6F:EF:90:A2:70:77:4C:1B:E9:7D:7E:4C:AA:59:21:03:DA:22:E8
X509v3 Authority Key Identifier:
keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
53:71:f8:b5:da:0d:5b:2a:e7:6c:68:d1:90:c1:11:cb:fc:29:
ff:ce:d8:7a:59:ec:ea:4c:2b:9f:38:c3:e7:27:7e:b5:22:bb:
fd:d9:7a:12:3e:0d:1c:1c:86:c0:91:8f:1a:ef:b6:cf:b7:5e:
38:0f:ec:5d:21:4e:fd:79:0e:36:d2:08:01:36:3a:7a:b2:9d:
24:dd:5b:6c:9c:f0:de:35:f8:23:0c:87:11:21:48:4c:e0:92:
d0:ef:f3:11:a3:41:ca:aa:29:85:3b:c0:1d:ed:fd:b3:8e:93:
1f:9d:91:4e:06:7e:f0:cf:1b:b5:b6:f7:f6:6c:75:2b:64:93:
45:9d:97:a5:8a:11:a6:65:75:79:4b:6d:a4:36:45:ea:a9:10:
80:65:c0:b4:5b:3c:4d:ea:96:07:88:b7:09:44:69:96:f6:fa:
09:62:ed:f4:d1:bd:90:e9:ab:d0:81:b2:3b:6a:83:13:61:32:
47:1e:a7:9e:2d:46:b3:06:df:ef:e4:f6:c9:eb:21:77:a4:30:
d0:90:cc:a5:8e:23:fb:bd:4a:05:17:31:d6:c5:13:3c:83:12:
84:68:88:8e:79:5c:a6:b8:56:04:bc:a6:fe:17:08:a9:24:91:
68:07:e9:82:c2:45:2a:d6:ef:e5:5e:b7:b6:43:2f:45:e8:32:
8c:07:8d:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:58:33 2025 by rpki-client