Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft
File: bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft (raw, json)
Hash identifier: DUIXuHQhtrrD9VyJuouVfZ5OSFONJAMxEv+48bSXOzc=
Subject key identifier: 80:9F:AA:9B:71:B5:FA:C7:D4:65:C3:E7:A2:33:82:A7:FD:10:26:46
Authority key identifier: 6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2
Certificate issuer: /CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2
Certificate serial: 1A74
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft
Manifest number: 1A5F
Signing time: Fri 31 Jan 2025 15:42:52 +0000
Manifest this update: Fri 31 Jan 2025 15:42:52 +0000
Manifest next update: Fri 07 Feb 2025 15:42:52 +0000
Files and hashes: 1: bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl (hash: sgd+fpY4JedrjsQoYzbN3SH5MZHgzNkB2JqVy8Hg8Uo=)
2: D8B92776A16A11EAA517B11EC4F9AE02.roa (hash: Kdp9AKQeL2FX/yJ9dKy0ocxr3Mori7J9VoVLko7H5hQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6772 (0x1a74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2
Validity
Not Before: Jan 31 15:42:52 2025 GMT
Not After : Feb 7 15:42:52 2025 GMT
Subject: CN=679cef7c-948b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:0f:74:97:9f:b3:c3:3e:d9:d3:10:aa:77:24:
4e:9c:96:15:dd:31:71:bf:b6:0a:7f:b8:e8:dc:8c:
75:61:08:69:ac:2c:1a:6d:e1:4e:df:c3:c9:3c:4a:
04:56:ff:43:03:9f:91:31:cf:0e:d3:6e:8f:0b:e1:
7a:6b:0d:26:3e:17:91:78:b8:a7:0a:32:f6:a5:4f:
97:36:95:6f:9a:5e:cf:f3:b1:91:42:a0:b6:79:82:
91:e5:2a:ed:de:08:ff:14:fc:e0:16:03:53:0e:f9:
43:15:32:ba:f4:88:c7:4d:4b:f2:9b:cb:90:f6:7d:
db:3e:c4:6a:cb:27:f2:d5:da:3b:6c:45:27:6a:3c:
b0:94:45:9c:46:09:e3:4b:4a:3d:a1:86:fe:7b:ff:
15:d6:09:1f:60:e1:fb:c2:88:39:c4:d4:da:4e:84:
c0:c3:b1:65:e1:26:f5:24:a1:80:ae:27:62:79:0b:
b6:62:a4:1b:c3:f2:23:ce:37:c4:38:bd:d8:c9:0a:
90:5f:69:ab:d0:0f:06:f4:cd:57:2a:06:1d:5c:c2:
a1:92:e2:43:a6:87:10:84:df:7e:70:5e:41:a8:97:
92:48:70:06:15:c0:ff:57:6a:b0:ab:4f:3d:58:02:
fb:e3:d4:19:65:6d:8f:4e:63:98:57:b4:70:4a:53:
e3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9F:AA:9B:71:B5:FA:C7:D4:65:C3:E7:A2:33:82:A7:FD:10:26:46
X509v3 Authority Key Identifier:
keyid:6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8c:dc:9b:9f:ed:ee:31:e8:d1:f6:38:97:16:3f:72:2f:db:7c:
7d:05:5b:45:2f:fa:a4:4b:e8:97:77:30:4b:5a:e9:51:b3:d1:
6e:f7:75:d6:28:8d:1c:63:f6:24:fb:c7:a0:eb:50:2e:9f:7e:
d1:ab:ce:45:1c:41:a2:26:9e:21:44:62:c6:cc:e8:6b:c9:69:
ae:5c:e9:a2:ff:aa:94:6c:3f:53:51:83:61:72:3f:50:05:47:
55:9a:ae:43:6a:05:95:73:2f:dd:7a:d6:e4:29:3d:31:07:1e:
f8:86:c4:27:08:a8:c5:48:5a:c3:48:b0:a7:53:40:e0:e0:fa:
83:38:b4:47:83:75:7f:70:d3:cd:1a:5d:e5:28:c4:46:92:da:
98:61:ea:03:a6:77:d4:6d:cb:01:88:51:6e:c9:58:35:0d:00:
ea:ce:08:d0:2b:8f:80:a1:fe:c7:78:64:ea:57:5f:01:be:3e:
0a:f6:c0:92:91:e3:89:5c:01:c8:fa:fe:dd:4b:42:28:e4:b2:
fd:c3:de:3e:58:ff:21:97:5e:b6:56:4e:e8:1e:cf:53:21:1e:
ac:2e:a9:55:7c:94:06:bd:45:3b:b2:8e:19:6b:6c:48:a9:e9:
bd:fa:30:5d:c8:32:0e:d1:c4:d8:91:a5:42:55:6f:b1:0d:83:
71:15:13:ee
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICGnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RkJEMjgxMTAvBgNVBAUTKDZFNDg2MTBBQTBFNkIwRTJDNUVFRDQwMkREMDc4MzNB
QTczRTdFQTIwHhcNMjUwMTMxMTU0MjUyWhcNMjUwMjA3MTU0MjUyWjAYMRYwFAYD
VQQDEw02NzljZWY3Yy05NDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA7g90l5+zwz7Z0xCqdyROnJYV3TFxv7YKf7jo3Ix1YQhprCwabeFO38PJPEoE
Vv9DA5+RMc8O026PC+F6aw0mPheReLinCjL2pU+XNpVvml7P87GRQqC2eYKR5Srt
3gj/FPzgFgNTDvlDFTK69IjHTUvym8uQ9n3bPsRqyyfy1do7bEUnajywlEWcRgnj
S0o9oYb+e/8V1gkfYOH7wog5xNTaToTAw7Fl4Sb1JKGAridieQu2YqQbw/IjzjfE
OL3YyQqQX2mr0A8G9M1XKgYdXMKhkuJDpocQhN9+cF5BqJeSSHAGFcD/V2qwq089
WAL749QZZW2PTmOYV7RwSlPjtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICfqptx
tfrH1GXD56Izgqf9ECZGMB8GA1UdIwQYMBaAFG5IYQqg5rDixe7UAt0HgzqnPn6i
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQyOC8yNjc1OEJCNDNB
QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNPTEY3dFFDM1FlRE9xYy1m
cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy
RkQxRkYyL2JraGhDcURtc09MRjd0UUMzUWVET3FjLWZxSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
QkQyOC8yNjc1OEJCNDNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNP
TEY3dFFDM1FlRE9xYy1mcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCM3Juf7e4x6NH2OJcWP3Iv23x9BVtFL/qkS+iXdzBLWulRs9Fu93XW
KI0cY/Yk+8eg61Aun37Rq85FHEGiJp4hRGLGzOhryWmuXOmi/6qUbD9TUYNhcj9Q
BUdVmq5DagWVcy/detbkKT0xBx74hsQnCKjFSFrDSLCnU0Dg4PqDOLRHg3V/cNPN
Gl3lKMRGktqYYeoDpnfUbcsBiFFuyVg1DQDqzgjQK4+Aof7HeGTqV18Bvj4K9sCS
keOJXAHI+v7dS0Io5LL9w94+WP8hl162Vk7oHs9TIR6sLqlVfJQGvUU7so4Za2xI
qem9+jBdyDIO0cTYkaVCVW+xDYNxFRPu
-----END CERTIFICATE-----
Generated at Sun Apr 27 09:55:01 2025 by rpki-client