Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFC94/B1449C4E94DA11EF89086D21C4F9AE02/rLcCUesVt11CKaohMePZqHwpRcA.mft
File: rLcCUesVt11CKaohMePZqHwpRcA.mft (raw, json)
Hash identifier: jFCRqNkg5yyxuawF1ayk2sM2nliv4L7HMy88WaeJYJw=
Subject key identifier: 1D:12:34:31:B7:A6:CB:C6:E5:33:FD:95:ED:9D:0F:3D:E8:A9:F4:CB
Authority key identifier: AC:B7:02:51:EB:15:B7:5D:42:29:AA:21:31:E3:D9:A8:7C:29:45:C0
Certificate issuer: /CN=A91EFC94/serialNumber=ACB70251EB15B75D4229AA2131E3D9A87C2945C0
Certificate serial: 35
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLcCUesVt11CKaohMePZqHwpRcA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EFC94/B1449C4E94DA11EF89086D21C4F9AE02/rLcCUesVt11CKaohMePZqHwpRcA.mft
Manifest number: 34
Signing time: Fri 31 Jan 2025 06:41:55 +0000
Manifest this update: Fri 31 Jan 2025 06:41:55 +0000
Manifest next update: Fri 07 Feb 2025 06:41:55 +0000
Files and hashes: 1: rLcCUesVt11CKaohMePZqHwpRcA.crl (hash: 1K3FQOktUqJHZpx0W49rCecM5l8xUbmEE3WlR3bb1XY=)
2: 9ABFC32C94F811EF92676015C4F9AE02.roa (hash: gWk0VsOcbG73/lmCIcmaJtgvf1O8GLTJ+JuzqZmFgTQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53 (0x35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EFC94/serialNumber=ACB70251EB15B75D4229AA2131E3D9A87C2945C0
Validity
Not Before: Jan 31 06:41:55 2025 GMT
Not After : Feb 7 06:41:55 2025 GMT
Subject: CN=679c70b3-f968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cc:57:12:70:04:11:2d:de:da:b4:98:80:60:
a1:bd:7d:c3:ed:36:fc:a9:d5:2e:2d:2b:7b:99:76:
8c:ab:97:86:7d:29:8e:0b:60:fd:d5:34:2f:09:f9:
6c:13:0c:9a:49:16:c8:33:20:f6:00:25:2b:50:b7:
91:0c:d6:f1:c5:02:ee:e2:25:6b:46:25:c2:d4:e9:
c4:e9:24:98:91:11:bf:a8:a0:71:ad:4b:e8:cb:c8:
30:9f:33:87:3f:7f:b0:b2:08:e2:36:fd:9d:cf:4b:
b9:04:44:17:8a:81:f7:ff:5e:78:61:66:62:8c:cd:
d9:52:94:60:76:99:59:70:b5:a8:62:3e:a8:5a:52:
c0:3d:28:75:b5:ee:91:ef:e1:4f:69:04:f7:84:c2:
f7:94:b5:db:66:90:7c:96:9a:8d:8a:d8:88:43:bf:
b0:0b:5d:aa:ff:84:65:fd:60:f2:cc:a6:68:ec:34:
8d:6e:1d:6e:cc:73:9c:93:ed:9a:dc:a3:c7:b2:31:
06:31:5e:71:56:29:f8:66:e0:55:b7:56:ce:8f:6e:
5f:50:57:a3:dc:fb:f2:3f:89:d7:d5:9e:00:f4:68:
97:8d:3d:59:e5:6a:a3:20:9a:86:b2:41:78:98:e1:
5b:99:67:9d:50:65:a5:48:a0:b6:4e:0a:23:6d:f2:
c7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:12:34:31:B7:A6:CB:C6:E5:33:FD:95:ED:9D:0F:3D:E8:A9:F4:CB
X509v3 Authority Key Identifier:
keyid:AC:B7:02:51:EB:15:B7:5D:42:29:AA:21:31:E3:D9:A8:7C:29:45:C0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EFC94/B1449C4E94DA11EF89086D21C4F9AE02/rLcCUesVt11CKaohMePZqHwpRcA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLcCUesVt11CKaohMePZqHwpRcA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFC94/B1449C4E94DA11EF89086D21C4F9AE02/rLcCUesVt11CKaohMePZqHwpRcA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8a:2e:e3:be:71:dc:8f:1e:81:3e:3c:9c:f3:81:b3:ea:63:5a:
46:54:bc:ea:24:b1:4e:8b:b0:9f:df:31:83:2d:a0:3a:a7:a8:
11:8e:1d:20:ca:92:48:46:3c:cc:ff:c1:2c:a8:34:e0:27:b6:
84:93:8c:a9:92:c8:5b:d9:fb:ef:ae:71:87:62:49:67:ee:9c:
5a:f9:8e:be:7b:58:0b:c8:86:fc:f4:80:2b:da:75:cc:50:5c:
d0:58:31:b5:46:e4:29:e2:f4:66:a2:e6:6c:ad:1c:3e:a6:1f:
6e:c4:5d:e2:87:1d:de:88:79:df:1d:98:a6:6b:8f:d0:35:6c:
96:a6:89:b3:04:13:9a:db:5e:10:18:c4:30:3f:a9:83:33:c8:
1d:22:1d:1c:05:59:50:ef:52:20:b2:bc:c4:c9:08:50:9b:54:
b4:1a:09:f8:95:e2:0b:72:8a:c0:18:ba:5d:13:8a:ac:6c:79:
3e:07:2f:38:50:ab:d2:92:f8:b3:79:7a:29:56:da:3e:ad:92:
50:02:57:06:92:35:1d:41:85:40:de:d1:5a:44:5f:73:9f:e9:
2b:c7:14:3d:bc:88:45:05:ec:d8:11:84:49:b0:b8:02:0d:8f:
ef:db:95:31:bf:10:6a:c3:a4:46:ce:4e:e4:cf:d8:22:19:b0:
87:31:bf:be
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF
RkM5NDExMC8GA1UEBRMoQUNCNzAyNTFFQjE1Qjc1RDQyMjlBQTIxMzFFM0Q5QTg3
QzI5NDVDMDAeFw0yNTAxMzEwNjQxNTVaFw0yNTAyMDcwNjQxNTVaMBgxFjAUBgNV
BAMTDTY3OWM3MGIzLWY5NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCvzFcScAQRLd7atJiAYKG9fcPtNvyp1S4tK3uZdoyrl4Z9KY4LYP3VNC8J+WwT
DJpJFsgzIPYAJStQt5EM1vHFAu7iJWtGJcLU6cTpJJiREb+ooHGtS+jLyDCfM4c/
f7CyCOI2/Z3PS7kERBeKgff/XnhhZmKMzdlSlGB2mVlwtahiPqhaUsA9KHW17pHv
4U9pBPeEwveUtdtmkHyWmo2K2IhDv7ALXar/hGX9YPLMpmjsNI1uHW7Mc5yT7Zrc
o8eyMQYxXnFWKfhm4FW3Vs6Pbl9QV6Pc+/I/idfVngD0aJeNPVnlaqMgmoayQXiY
4VuZZ51QZaVIoLZOCiNt8scfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHRI0Mbem
y8blM/2V7Z0PPeip9MswHwYDVR0jBBgwFoAUrLcCUesVt11CKaohMePZqHwpRcAw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVGQzk0L0IxNDQ5QzRFOTRE
QTExRUY4OTA4NkQyMUM0RjlBRTAyL3JMY0NVZXNWdDExQ0thb2hNZVBacUh3cFJj
QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvckxjQ1Vlc1Z0MTFDS2FvaE1lUFpxSHdwUmNBLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVG
Qzk0L0IxNDQ5QzRFOTREQTExRUY4OTA4NkQyMUM0RjlBRTAyL3JMY0NVZXNWdDEx
Q0thb2hNZVBacUh3cFJjQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAIou475x3I8egT48nPOBs+pjWkZUvOoksU6LsJ/fMYMtoDqnqBGOHSDK
kkhGPMz/wSyoNOAntoSTjKmSyFvZ+++ucYdiSWfunFr5jr57WAvIhvz0gCvadcxQ
XNBYMbVG5Cni9Gai5mytHD6mH27EXeKHHd6Ied8dmKZrj9A1bJamibMEE5rbXhAY
xDA/qYMzyB0iHRwFWVDvUiCyvMTJCFCbVLQaCfiV4gtyisAYul0TiqxseT4HLzhQ
q9KS+LN5eilW2j6tklACVwaSNR1BhUDe0VpEX3Of6SvHFD28iEUF7NgRhEmwuAIN
j+/blTG/EGrDpEbOTuTP2CIZsIcxv74=
-----END CERTIFICATE-----
Generated at Fri Apr 25 12:08:46 2025 by rpki-client