Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft
File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json)
Hash identifier: fElU+2gm8GzRIGF0HpfP+ZJYKqOv9ysZolnMxeQirf8=
Subject key identifier: D8:98:A5:2F:D5:62:42:8F:57:FF:EE:06:25:4A:DB:24:44:C7:1C:AB
Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A
Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A
Certificate serial: 0C2E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft
Manifest number: 1D08
Signing time: Fri 31 Jan 2025 17:17:54 +0000
Manifest this update: Fri 31 Jan 2025 17:17:54 +0000
Manifest next update: Fri 07 Feb 2025 17:17:54 +0000
Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: rmi4+3I1evLTJYbZN5eOZw25T+MsV9kAaRkQHrtIqG4=)
2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: rns6y4xnalGROKJT2q8Fjb3eMxdlbdFZdL9Xn8yjrx4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3118 (0xc2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A
Validity
Not Before: Jan 31 17:17:54 2025 GMT
Not After : Feb 7 17:17:54 2025 GMT
Subject: CN=679d05c2-6ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:53:67:d6:6f:dc:c8:6f:67:59:8e:bf:a6:b6:
b6:cc:10:a4:b3:9c:5f:3e:be:eb:4d:a5:56:d9:38:
bb:ae:c2:14:64:d5:d7:ce:1d:f0:7a:75:36:ae:fd:
85:73:8d:34:d5:71:3d:65:75:3a:6e:85:a2:de:90:
af:62:88:ef:f4:fb:ff:c5:ca:91:4b:ac:6c:04:d7:
61:48:1e:18:ed:11:03:08:5a:2a:33:af:f8:4f:c9:
54:9a:45:7e:dd:87:b3:5c:a5:ae:04:ba:31:26:26:
9f:27:17:eb:db:7e:2b:5c:1a:72:d5:ac:6b:98:77:
c6:5d:a6:91:99:d1:3c:99:a7:8f:02:75:0c:5e:3a:
53:60:37:11:65:53:ae:5b:af:4b:e6:85:ed:7a:81:
7a:6f:36:5e:32:e5:1d:61:5e:08:53:54:7d:af:0b:
5f:8c:c4:58:72:d3:46:bd:9b:0d:c3:5a:c3:77:5d:
5c:5f:6f:8c:0f:3b:0d:40:41:fe:6a:7a:9e:94:28:
0f:9a:d5:c3:90:56:c6:87:b5:92:14:e3:90:41:9b:
2d:cb:27:c3:e0:d0:a5:be:fa:14:cf:6c:7c:e8:3d:
94:da:39:2e:fe:ea:82:93:7f:62:58:8a:28:d3:05:
14:b8:00:53:4e:11:2f:3b:88:c8:01:f1:89:64:df:
5d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:98:A5:2F:D5:62:42:8F:57:FF:EE:06:25:4A:DB:24:44:C7:1C:AB
X509v3 Authority Key Identifier:
keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6e:95:50:34:4c:6a:2f:95:71:57:5e:d1:2a:86:97:31:72:00:
3b:df:99:3f:fa:f4:56:d4:be:b3:53:54:41:26:40:0a:6a:fe:
05:28:b1:96:ef:5f:18:e2:cf:40:6e:b2:36:f9:bc:d3:b5:7b:
88:b8:1c:bf:c9:1f:97:dc:7b:8b:e9:aa:36:ff:83:b5:bd:04:
2a:db:d0:cd:8d:8e:ab:8f:95:a7:8e:2f:04:ce:e7:4b:2c:e3:
de:70:0f:51:86:a0:8f:be:53:93:bc:46:07:9f:ae:e8:d4:50:
79:dd:83:86:ff:80:0c:17:54:93:ca:09:28:21:de:fc:ce:1f:
53:e1:db:4a:2f:e9:04:1e:e3:36:93:fd:d1:b7:e5:1a:93:7d:
fc:a4:c3:82:0d:da:bb:b4:00:80:c1:5f:b7:ba:1c:d0:0d:8a:
98:f1:77:6b:24:ce:66:8e:ef:c9:b7:4d:b1:f3:26:5d:e6:ae:
b5:2d:30:1c:5d:8a:5e:22:36:e2:c8:a2:47:d5:c4:e0:67:27:
c4:30:86:15:46:25:90:00:b4:23:b1:cf:aa:a9:bd:97:20:71:
69:b8:2c:61:b6:7c:4e:1e:46:f6:a9:10:77:c6:b6:0f:d1:13:
c3:06:81:51:6a:8a:3a:d6:f7:e6:52:e8:17:37:2d:d1:4d:6c:
54:d4:09:a7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICDC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG
REE4NEMwN0EwHhcNMjUwMTMxMTcxNzU0WhcNMjUwMjA3MTcxNzU0WjAYMRYwFAYD
VQQDEw02NzlkMDVjMi02ZWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA31Nn1m/cyG9nWY6/pra2zBCks5xfPr7rTaVW2Ti7rsIUZNXXzh3wenU2rv2F
c4001XE9ZXU6boWi3pCvYojv9Pv/xcqRS6xsBNdhSB4Y7REDCFoqM6/4T8lUmkV+
3YezXKWuBLoxJiafJxfr234rXBpy1axrmHfGXaaRmdE8maePAnUMXjpTYDcRZVOu
W69L5oXteoF6bzZeMuUdYV4IU1R9rwtfjMRYctNGvZsNw1rDd11cX2+MDzsNQEH+
anqelCgPmtXDkFbGh7WSFOOQQZstyyfD4NClvvoUz2x86D2U2jku/uqCk39iWIoo
0wUUuABTThEvO4jIAfGJZN9d6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiYpS/V
YkKPV//uBiVK2yRExxyrMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG
RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3
SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh
NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBulVA0TGovlXFXXtEqhpcxcgA735k/+vRW1L6zU1RBJkAKav4FKLGW
718Y4s9AbrI2+bzTtXuIuBy/yR+X3HuL6ao2/4O1vQQq29DNjY6rj5Wnji8EzudL
LOPecA9RhqCPvlOTvEYHn67o1FB53YOG/4AMF1STygkoId78zh9T4dtKL+kEHuM2
k/3Rt+Uak338pMOCDdq7tACAwV+3uhzQDYqY8XdrJM5mju/Jt02x8yZd5q61LTAc
XYpeIjbiyKJH1cTgZyfEMIYVRiWQALQjsc+qqb2XIHFpuCxhtnxOHkb2qRB3xrYP
0RPDBoFRaoo61vfmUugXNy3RTWxU1Amn
-----END CERTIFICATE-----
Generated at Wed Apr 30 15:41:32 2025 by rpki-client