Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json)
Hash identifier: UWD1XgST2AWWLPIItDQgV+yF9NQE8Rrt2YR4HQF00f8=
Subject key identifier: 44:9F:43:F6:11:36:30:62:18:EE:FF:F7:77:C8:93:CE:00:38:58:25
Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7
Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7
Certificate serial: 0151
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
Manifest number: 014B
Signing time: Fri 31 Jan 2025 03:28:15 +0000
Manifest this update: Fri 31 Jan 2025 03:28:15 +0000
Manifest next update: Fri 07 Feb 2025 03:28:15 +0000
Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: zfZiecZO0xHfHD8CaWWD/nM0RmDCErazJC9RbiCz54I=)
2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: YCQgXX3rn1VYOPR234XDjqwFnKone0kRhynQvA6PZ44=)
3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: zPUrUv1ZIaP+6eaUv+2E/NI861UxRFU1+jsH4LfcFNQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337 (0x151)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7
Validity
Not Before: Jan 31 03:28:15 2025 GMT
Not After : Feb 7 03:28:15 2025 GMT
Subject: CN=679c434f-38de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:67:ae:39:a8:1c:fd:9d:b7:7f:bf:ad:af:50:
c6:ef:bc:9c:83:ee:95:a8:64:b2:c5:11:b9:be:ae:
d4:e3:6c:c8:48:05:e4:92:02:42:ff:b4:33:a4:74:
eb:88:28:73:7d:16:1f:62:ba:c1:ae:0e:98:72:92:
c9:cc:8e:cd:31:5d:33:e6:ed:b7:a1:24:54:00:fa:
be:f1:c2:00:0c:4f:c5:48:9b:f7:64:dd:13:e9:31:
d1:17:bc:b4:b1:b0:30:a1:53:1a:a1:36:23:f4:25:
48:32:b1:ce:00:b8:86:2a:ad:1f:61:af:a4:eb:61:
2b:0e:af:ea:c9:15:b8:76:5c:66:d2:b1:ee:3d:d4:
43:61:07:b0:91:fb:56:9f:99:5d:0e:6f:ae:50:81:
71:7e:18:09:33:3c:d2:37:68:b8:1e:29:b0:f5:1f:
6c:41:62:af:69:75:0b:e0:01:4a:60:72:99:6d:ec:
1c:c9:d5:aa:f6:1f:5c:e4:d0:3a:aa:5a:b5:39:1f:
40:e0:e7:0e:4d:3a:11:23:db:6d:9e:70:be:7a:80:
2b:04:d7:5d:c3:e8:d2:91:7f:45:10:ca:d9:41:57:
98:55:d5:e7:2c:d9:e6:40:7f:45:a5:f0:c9:c8:55:
56:55:94:93:c5:68:9a:fd:46:28:ec:4c:80:5c:16:
3e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:9F:43:F6:11:36:30:62:18:EE:FF:F7:77:C8:93:CE:00:38:58:25
X509v3 Authority Key Identifier:
keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
65:1d:d2:a7:f9:c6:c9:37:0e:bf:74:23:d9:c2:72:9c:23:ad:
ed:a5:bd:35:e6:3c:a7:1f:b2:c1:4a:96:91:4c:28:1e:b9:2a:
8f:fc:ef:70:33:37:96:43:f1:37:d8:53:c5:12:de:92:b1:fd:
16:bb:a3:86:8b:f2:e4:92:76:b3:33:03:e0:48:a2:a3:fa:3f:
e9:f9:3c:94:1b:50:7e:f7:59:58:cf:67:0a:8a:fe:55:51:3b:
bd:41:c4:f2:8b:41:fc:03:84:a9:de:2a:06:ac:85:38:df:f3:
9e:b5:04:03:3e:61:55:12:57:8c:81:c8:12:9b:03:a1:48:ba:
46:a1:aa:7e:27:4f:4d:8a:08:97:6c:72:f1:05:0a:db:30:12:
b2:d5:f8:87:bb:74:21:cd:a1:46:2c:fb:79:0a:65:cf:68:90:
c7:93:ee:f2:0c:d3:7c:63:6c:f6:bd:d7:d3:93:f1:ea:c2:93:
0f:ed:6c:96:c0:ad:6f:cc:fb:87:1f:48:5d:d8:b4:a4:3e:43:
e6:07:25:e5:a8:68:28:6e:41:f5:1a:8d:da:56:20:bf:ae:99:
8d:bd:70:b3:84:ca:13:0f:1e:15:7f:a6:64:87:0b:7e:fc:70:
3e:f0:4c:ef:34:ce:7e:c5:c4:7b:82:42:b6:72:b5:4c:47:14:
49:b7:fa:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 16:41:37 2025 by rpki-client