Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft
File: x8kdlvp-jS2SIZUipkBEI3UR4FE.mft (raw, json)
Hash identifier: IwW/aEc+SOes003C5uNstGoXSUCP3rufOeZ5vGr41PM=
Subject key identifier: 8A:78:10:B1:0A:A7:3F:C5:76:07:60:6B:F4:31:B5:04:DF:8D:6A:77
Authority key identifier: C7:C9:1D:96:FA:7E:8D:2D:92:21:95:22:A6:40:44:23:75:11:E0:51
Certificate issuer: /CN=A91F52E8/serialNumber=C7C91D96FA7E8D2D92219522A64044237511E051
Certificate serial: 0338
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft
Manifest number: 0331
Signing time: Fri 31 Jan 2025 01:10:24 +0000
Manifest this update: Fri 31 Jan 2025 01:10:23 +0000
Manifest next update: Fri 07 Feb 2025 01:10:23 +0000
Files and hashes: 1: x8kdlvp-jS2SIZUipkBEI3UR4FE.crl (hash: KxajJsR0SHtPY/3uAhjtfnY74QDlL4M126IGtjLPQUo=)
2: 89F6EEC4C82711EEBCC49737C4F9AE02.roa (hash: AArq8t/jhxU12JazlbbWzfn6Htlf8feOYH1MiOaqv2s=)
3: C0BBFCC003A911EF9DE2F919C4F9AE02.roa (hash: a3TV3Qr98YNHe55DJ7WbLvKYcURrK12GnbhFOXLtRjc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 824 (0x338)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F52E8/serialNumber=C7C91D96FA7E8D2D92219522A64044237511E051
Validity
Not Before: Jan 31 01:10:23 2025 GMT
Not After : Feb 7 01:10:23 2025 GMT
Subject: CN=679c2300-4e16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:a6:bd:79:48:e0:87:0b:96:67:23:dd:8b:59:
55:f7:f3:2f:40:26:9d:23:b2:6e:8d:9d:7c:b7:45:
8c:03:3f:ad:cc:4a:af:d0:f6:7e:e7:b7:92:78:cf:
97:f1:b0:36:3c:cb:75:36:a1:74:92:75:61:f3:b8:
cc:07:88:93:61:89:32:74:52:02:29:88:fd:8d:49:
11:e7:7d:2a:4f:04:ed:b9:82:f5:52:e4:15:96:09:
ba:24:59:46:7f:78:2f:8b:64:cb:cd:c8:e4:e3:4a:
fa:f8:18:b2:f3:6a:05:55:c4:d2:b4:69:1c:40:cb:
c1:aa:1d:cf:90:9b:e4:af:06:54:21:1e:00:e3:d9:
33:31:da:08:3f:7d:f8:51:a3:8e:2c:af:7b:66:53:
be:0d:18:6c:b1:ed:d8:ec:5d:a0:ae:1f:78:12:ef:
2f:81:7b:8e:00:04:9a:1f:79:5b:14:e5:d3:42:ad:
25:21:3c:c1:a1:3a:1e:5a:8b:5d:52:98:10:dd:76:
70:6e:c5:c6:f9:23:38:cc:99:b5:b1:45:af:a6:07:
64:1e:f6:31:bf:e1:2e:04:8b:78:c4:6b:5b:f0:9c:
c3:0a:e0:d6:1b:87:0e:f9:83:f1:19:36:fb:cb:fa:
1a:00:c8:73:61:32:08:46:63:ed:15:1c:9d:25:ef:
e2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:78:10:B1:0A:A7:3F:C5:76:07:60:6B:F4:31:B5:04:DF:8D:6A:77
X509v3 Authority Key Identifier:
keyid:C7:C9:1D:96:FA:7E:8D:2D:92:21:95:22:A6:40:44:23:75:11:E0:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
40:9b:4f:23:73:15:3c:bc:65:6e:db:f5:99:7f:76:12:b4:d4:
83:0d:26:2c:6a:20:79:85:72:24:8f:26:af:11:f9:cf:f2:49:
04:ae:ac:88:7e:02:9b:18:04:b3:20:c9:31:57:5a:2b:bd:6f:
66:dd:f9:c7:0b:18:44:0c:48:a4:54:7d:9e:61:cb:83:58:4e:
54:10:44:f3:57:04:89:6d:05:40:83:ff:6b:9c:4f:64:c3:59:
fc:07:6d:3b:65:4c:d5:66:a9:a3:b3:bf:ca:91:e7:24:b6:bf:
e4:2f:89:a1:d1:eb:8a:44:6e:46:ae:b8:ca:46:b4:7d:74:f5:
3e:17:03:a4:07:2c:d1:14:96:a1:07:0e:0a:62:d9:f3:b8:97:
f5:46:6d:ae:08:5d:c2:17:69:9f:18:2a:13:5b:37:d9:c2:af:
08:c4:27:e2:1e:77:38:29:0a:d1:c6:e3:7c:ab:4b:a7:26:fe:
ae:4e:ac:82:2e:e2:2d:77:af:c4:da:52:9f:c6:a5:6b:28:bd:
87:be:2c:60:84:02:0e:28:aa:25:19:6e:52:8a:d2:62:67:d0:
d9:a8:30:34:8d:8a:7f:b1:b9:40:c7:c9:18:5a:24:33:94:2a:
5e:a2:57:f7:09:ee:2b:32:02:13:ea:d1:2a:f8:3c:af:bb:75:
5c:1b:af:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 02:13:19 2025 by rpki-client