Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.mft
File: SslcipdeTPMQhCyVVkBRdT3rAok.mft (raw, json)
Hash identifier: KDao4/yZPQ+v/eLkWc7VqvMlTwyT50hgHLQTaxaoemI=
Subject key identifier: 89:C2:E4:F8:FB:98:AB:A1:BB:44:0A:3A:65:69:0B:01:39:06:8C:64
Authority key identifier: 4A:C9:5C:8A:97:5E:4C:F3:10:84:2C:95:56:40:51:75:3D:EB:02:89
Certificate issuer: /CN=A9110D07/serialNumber=4AC95C8A975E4CF310842C95564051753DEB0289
Certificate serial: 0149
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SslcipdeTPMQhCyVVkBRdT3rAok.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.mft
Manifest number: 0128
Signing time: Sat 29 Mar 2025 04:33:40 +0000
Manifest this update: Sat 29 Mar 2025 04:33:39 +0000
Manifest next update: Sat 05 Apr 2025 04:33:39 +0000
Files and hashes: 1: SslcipdeTPMQhCyVVkBRdT3rAok.crl (hash: /hRQ31vR9+GBPnRANoiHMtt51Ln0oKnREoPHev174To=)
2: CDF495A4E47D11EFAFC6496FC4F9AE02.roa (hash: 28Pcqodr/XiyCXR1rm1sG8vgE+8OCqXnMRTKbKZwlik=)
3: CEB166C0E47D11EFAFC6496FC4F9AE02.roa (hash: DZtIXQ1ghN4hCYJ+ctwT88CELrMnqgkRwXBOtM2ymVg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329 (0x149)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9110D07
Validity
Not Before: Mar 29 04:33:39 2025 GMT
Not After : Apr 5 04:33:39 2025 GMT
Subject: CN=67e77823-91c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5a:b9:42:5e:f7:41:c3:fa:22:c7:5b:58:77:
1a:5f:97:5b:90:61:d3:a1:1e:c5:23:0c:27:33:e3:
31:1b:be:5f:ac:a2:3f:11:b9:a0:73:48:25:16:0b:
9a:87:3f:03:bd:af:61:e4:b4:10:80:99:b2:4d:cc:
45:77:b1:f2:92:9e:fe:09:b5:fb:ee:d2:fb:4d:96:
23:46:87:3a:fc:1b:72:17:96:32:50:43:3a:0d:76:
dd:0e:96:49:07:81:e8:73:08:24:98:73:5e:c6:ca:
6e:d9:e9:a8:4b:e1:4d:2f:d7:2f:fa:1b:43:a8:be:
8a:94:de:30:3a:9d:fc:d6:5e:e8:58:9d:72:fd:fb:
64:4c:47:19:b0:7e:42:ee:96:b6:9b:f4:a6:ee:3f:
2b:ba:0d:95:5f:e8:0f:e8:02:fe:f0:89:8d:1e:7c:
c0:b6:ed:5b:74:bb:5f:17:bd:4c:cb:a4:b7:c3:2b:
2c:a5:e1:09:01:c0:69:10:c9:41:65:8d:19:8a:3a:
05:7e:93:d8:c2:79:69:75:80:da:b8:33:ef:cf:58:
29:c7:eb:2d:4c:c9:c3:e4:82:58:87:69:b6:ad:4e:
69:b7:e1:07:b5:c0:ad:1e:11:0e:2c:ee:5d:36:96:
8e:aa:57:49:cc:27:bf:1e:5c:e1:67:12:19:f7:f3:
9b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C2:E4:F8:FB:98:AB:A1:BB:44:0A:3A:65:69:0B:01:39:06:8C:64
X509v3 Authority Key Identifier:
keyid:4A:C9:5C:8A:97:5E:4C:F3:10:84:2C:95:56:40:51:75:3D:EB:02:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SslcipdeTPMQhCyVVkBRdT3rAok.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
86:66:69:5f:a0:a0:39:de:a7:b7:23:80:84:6d:1c:9c:75:49:
b9:ec:c4:9c:5d:50:44:a0:91:da:3f:97:ab:37:1c:a8:26:58:
58:0c:2e:46:17:e6:66:6d:7a:a3:b2:29:22:c6:10:a3:5f:c3:
a1:dc:19:5b:4b:ef:9b:d8:45:bf:bd:22:d8:80:d1:fa:1a:ae:
3c:83:b0:f6:dc:b1:e2:64:81:fa:67:fa:62:83:79:55:a8:ec:
68:8d:46:7f:84:b2:8f:f0:b1:1c:68:c6:e7:7b:3f:ad:4e:8f:
2e:d1:e5:2e:4e:f5:51:01:7a:d7:17:08:ab:3d:de:9f:85:43:
0a:16:40:17:6e:8e:7c:94:5a:a2:44:03:48:ac:90:2b:03:21:
2a:7a:ff:8b:12:48:fe:63:b1:32:ec:e9:40:70:be:54:bb:50:
13:70:38:e7:d6:25:b6:b4:d8:d4:94:78:bb:c3:e8:16:66:aa:
23:61:a7:75:6a:c6:6b:e4:21:62:08:f3:8a:36:90:97:9f:c6:
bc:00:4f:8d:ee:3e:3c:a2:db:9a:70:85:2a:a3:28:7f:b0:a4:
ac:15:96:aa:27:70:7e:8f:8e:20:fa:3c:7d:1b:ec:57:11:2d:
86:8a:4c:04:8d:cc:a5:fe:2c:e7:7e:8a:be:f8:07:b9:6f:3a:
14:5c:37:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:39:40 2025 by rpki-client