Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft
File: 53BQiRv4knQyZQtwbyv-3ZKhEck.mft (raw, json)
Hash identifier: /kjgewiGe8gYiKdQboYeca/xeilW8UMcfgOlH3cQkQs=
Subject key identifier: DE:CF:1D:48:73:17:30:FB:53:F0:50:74:C9:FD:C6:4D:7D:2C:25:12
Authority key identifier: E7:70:50:89:1B:F8:92:74:32:65:0B:70:6F:2B:FE:DD:92:A1:11:C9
Certificate issuer: /CN=A91F8ADF/serialNumber=E77050891BF8927432650B706F2BFEDD92A111C9
Certificate serial: 014B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft
Manifest number: 0145
Signing time: Fri 31 Jan 2025 03:32:05 +0000
Manifest this update: Fri 31 Jan 2025 03:32:04 +0000
Manifest next update: Fri 07 Feb 2025 03:32:04 +0000
Files and hashes: 1: 53BQiRv4knQyZQtwbyv-3ZKhEck.crl (hash: mvS4HtpOPi3SolWm6h+lGRhIwx8/TDMtxzVq8Drw/uw=)
2: F3210638F06D11ED9055A212C4F9AE02.roa (hash: MagQfzBe5yekFsZC62iyjicRBCCYPyKf7/pA5fRZ3FI=)
3: F2948C58F06D11ED9055A212C4F9AE02.roa (hash: WtNf5u0VPKCbZuWxho7o4y46h8TygPH5bunfDKzrwyU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 331 (0x14b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F8ADF/serialNumber=E77050891BF8927432650B706F2BFEDD92A111C9
Validity
Not Before: Jan 31 03:32:04 2025 GMT
Not After : Feb 7 03:32:04 2025 GMT
Subject: CN=679c4434-c8b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4e:9b:4b:39:b0:72:ff:88:9c:fd:3f:c3:e2:
c0:b7:35:05:75:cc:40:0c:13:b6:15:40:c8:df:67:
46:45:9f:f2:92:ad:e2:0b:6c:94:77:09:a3:92:e8:
8f:65:02:94:79:42:f8:5d:84:46:16:94:19:cc:35:
a4:c8:89:e5:63:4e:69:f3:3b:dc:ee:c6:67:ed:2c:
39:a3:3a:86:f9:1d:e3:51:d3:fe:a7:d0:4f:ee:3b:
e6:20:89:5e:66:b6:1c:b1:3a:b5:6f:06:3c:69:3b:
d2:a9:38:7e:be:72:d1:ca:38:e6:30:0e:60:73:d5:
ca:3e:e4:cf:a8:2a:4a:71:a8:db:78:a7:5c:c2:4d:
61:75:7a:60:0a:5a:df:36:35:e1:47:54:d4:6f:96:
c9:db:0a:b1:21:df:e2:3f:55:60:6b:78:71:cc:4d:
38:ab:1b:ba:cc:69:74:d7:9b:75:67:a7:1e:0d:fc:
78:39:28:1b:6e:5a:d5:b4:1f:4a:74:e5:90:f0:9d:
14:20:48:86:d8:5a:19:fe:d9:56:9e:ba:12:98:a3:
bb:f0:3a:5d:5b:6d:1f:43:da:83:b1:bf:b7:73:7e:
d4:56:dd:72:2f:1a:59:f2:d0:ae:1e:0e:f4:ef:48:
ba:d6:34:c5:bd:76:fe:ae:ff:d4:2c:c5:0e:59:cf:
5a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:CF:1D:48:73:17:30:FB:53:F0:50:74:C9:FD:C6:4D:7D:2C:25:12
X509v3 Authority Key Identifier:
keyid:E7:70:50:89:1B:F8:92:74:32:65:0B:70:6F:2B:FE:DD:92:A1:11:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2c:d1:51:72:76:7f:da:14:0c:a4:46:5f:18:de:c9:48:e7:b9:
e7:ae:d1:79:58:5d:43:f0:0f:a4:63:1b:99:bc:e6:1b:39:56:
dd:c9:ef:16:52:83:a8:c4:b2:8f:bd:f8:a7:0b:68:6d:91:06:
c6:2f:41:a9:e7:67:39:e9:c4:33:91:e1:e7:02:e1:af:89:c8:
9e:af:07:df:20:0f:16:5a:63:48:cf:fc:7b:c6:a0:9c:a0:bc:
b6:18:d4:f8:d0:bb:57:7c:1f:1c:82:3e:0d:03:bb:51:2c:be:
2e:f6:97:9c:db:ac:2a:82:10:ba:c6:c8:db:cc:2d:1f:6e:c6:
2b:70:f2:f1:e3:51:68:04:49:a5:56:fe:ed:3d:69:fd:2b:02:
89:58:4f:95:88:a8:ae:fa:4f:5d:0c:27:79:83:7f:98:e7:d9:
62:b2:6c:4b:8a:a9:67:fc:34:b5:34:bb:77:45:a5:12:49:e9:
17:b0:5a:c3:27:76:bf:06:b8:9a:c8:d8:64:71:12:49:a6:aa:
9a:94:98:73:d7:a7:66:e4:47:1b:e7:1d:d7:29:fd:14:19:96:
dc:19:9c:06:5e:28:91:9a:fe:ca:d7:ca:f8:e3:8c:02:8f:23:
d7:e1:cf:7b:0f:12:ae:6b:67:99:61:49:5b:ba:ba:4d:78:20:
3e:de:c6:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 05:02:56 2025 by rpki-client