Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft
File: 1bScAI9ih18VJth200lAoJsOnW0.mft (raw, json)
Hash identifier: HEg+3cUK6VOeBO/V92duU0uqZ+VMIL2AOH+D5sWuJqg=
Subject key identifier: 5E:A1:E9:BE:B4:B0:F1:0E:E2:98:94:C1:30:A6:41:CA:38:39:F0:9A
Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D
Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D
Certificate serial: 1510
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft
Manifest number: 14FE
Signing time: Fri 31 Jan 2025 16:49:08 +0000
Manifest this update: Fri 31 Jan 2025 16:49:08 +0000
Manifest next update: Fri 07 Feb 2025 16:49:08 +0000
Files and hashes: 1: 1bScAI9ih18VJth200lAoJsOnW0.crl (hash: BOxgYTzFym+G+YpfZ8q23VjiJQhRF+XAdgsEtLD8EII=)
2: EC796D6C42D411E88EC29742C4F9AE02.roa (hash: fttFYbQ36BNhaDw4KkKJxxNjWTmLtF2Lj6rIn6jBjOw=)
3: EB843B92329A11EE89CD8544C4F9AE02.roa (hash: 1pX1xgZiUndMELmZkTsenLOVPD7ayPzn9r1F8xRSN8U=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5392 (0x1510)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D
Validity
Not Before: Jan 31 16:49:08 2025 GMT
Not After : Feb 7 16:49:08 2025 GMT
Subject: CN=679cff04-70e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:66:81:30:c9:54:56:b3:5e:20:dd:7d:c0:0d:
93:1b:4b:4b:13:de:85:51:91:a0:bb:c7:37:ec:d8:
77:f5:47:55:0e:5d:54:ee:1f:12:3d:f9:d0:a7:12:
4b:ce:db:02:18:74:97:9d:31:0b:53:c1:18:c9:73:
8b:46:7f:40:33:4a:2a:21:1a:14:c0:47:44:86:cb:
2a:c2:71:14:88:a0:44:84:60:fc:3b:b7:7a:00:fa:
16:03:39:66:3b:bd:40:d4:9d:63:85:27:2f:19:5f:
db:56:f1:9b:47:09:85:ea:4b:78:e7:fa:bb:df:dc:
16:84:cf:42:40:2b:dc:11:09:a9:61:fe:87:af:4a:
59:67:54:82:9f:3d:07:4b:ac:d9:70:4c:75:d2:99:
3f:7d:68:bb:83:01:41:fd:60:f4:1f:ef:b7:2d:9c:
b9:2e:a3:79:c6:7d:78:7c:6f:44:da:a3:1b:61:ef:
4c:24:8c:ff:06:23:74:ef:87:3d:f1:32:3a:76:1d:
67:31:81:7a:20:64:f0:52:ed:91:c8:d1:fd:00:e1:
ad:28:9c:59:7c:f7:7d:fd:84:1c:67:92:ce:8a:d3:
f9:3a:ad:8c:ab:8f:24:d0:c6:c8:eb:88:da:dc:a1:
0c:f9:d0:45:a0:7c:bb:d4:d6:d7:e9:4b:fe:6b:56:
71:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A1:E9:BE:B4:B0:F1:0E:E2:98:94:C1:30:A6:41:CA:38:39:F0:9A
X509v3 Authority Key Identifier:
keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7a:5a:f8:64:91:61:10:1a:af:d2:70:2c:de:93:4c:73:9e:a5:
2e:02:00:b9:f9:93:12:86:51:83:78:e8:ca:bb:f8:7c:cd:25:
3e:08:7f:a7:d3:e7:52:b7:bf:7f:2e:2a:13:f8:d8:23:d4:ec:
94:10:b2:1c:57:dc:09:6a:06:29:d0:1a:7b:48:7d:43:32:9c:
9e:4b:42:90:d5:9f:d1:3d:13:4c:c3:1d:ee:e7:55:5d:07:4d:
ef:36:d1:bc:de:4e:7d:e1:a1:63:40:33:f0:5b:dc:54:6c:3e:
06:a4:e4:1c:36:8a:ae:13:14:68:77:eb:dd:b2:4f:9b:85:f5:
f9:4f:70:98:a5:8d:8e:51:60:60:b1:e5:7e:a5:4b:16:b5:11:
49:21:01:6a:ab:7b:10:a5:30:b1:8c:a2:fb:80:40:08:1c:0b:
98:95:d7:d4:ca:bf:7e:f9:5d:13:d4:04:a6:03:18:95:41:68:
7c:b8:23:3e:c3:d8:4a:82:5f:2c:4f:24:13:7c:92:1f:64:e7:
87:d8:e0:71:f8:ab:d3:0c:ab:57:a4:25:5a:a1:6d:07:b9:4a:
0a:69:71:9a:81:cf:d5:d2:8c:ad:2a:94:dd:9c:69:99:7b:c4:
9a:25:24:ee:3d:9d:58:de:4e:52:73:ed:f3:eb:89:4f:8e:29:
d4:f8:eb:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:40:57 2025 by rpki-client