Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft
File: kl2pi04IXWgNFte6GD8OpUJqGgM.mft (raw, json)
Hash identifier: ahjqjKfZQ8FHbieDymKzuYlyhSAyKwobvrznDEzreCM=
Subject key identifier: 8B:88:AA:68:8C:A9:30:18:73:B9:E0:32:4D:B4:8C:19:19:D7:CB:D4
Authority key identifier: 92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03
Certificate issuer: /CN=A9112320/serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03
Certificate serial: 0523
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft
Manifest number: 0513
Signing time: Fri 28 Mar 2025 23:53:42 +0000
Manifest this update: Fri 28 Mar 2025 23:53:41 +0000
Manifest next update: Fri 04 Apr 2025 23:53:41 +0000
Files and hashes: 1: kl2pi04IXWgNFte6GD8OpUJqGgM.crl (hash: I8k31POqNMS9XaMBVrQaBwiQL0jVpA3Zwj3tIjrKVyw=)
2: C7B754BEF85311ED8D59CA87C4F9AE02.roa (hash: FKFKH5eFofFRTvqGy9vDB52V4WqF8Uh4JVrswNbtjMM=)
3: A87AE518D2E011EDA1EF340FC4F9AE02.roa (hash: C85Ln946y9Tr5r2XkfYdY+5M9KTyQRGliz2lUS9dRFA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1315 (0x523)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9112320
Validity
Not Before: Mar 28 23:53:41 2025 GMT
Not After : Apr 4 23:53:41 2025 GMT
Subject: CN=67e73686-2c8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3c:2d:00:f5:72:24:c1:44:78:91:01:14:87:
ed:38:f4:89:d7:2f:c2:0f:41:f3:5c:c5:97:5e:6a:
65:02:32:d5:b1:08:11:9c:2c:fc:a8:e9:82:bb:0c:
b7:38:74:e1:7a:b1:f8:11:a2:1b:36:ea:39:4b:5b:
0f:a1:b8:a6:0f:95:25:80:25:28:d5:a2:76:7b:59:
eb:d1:66:bd:1e:31:97:74:81:87:3e:34:55:f7:a2:
8f:55:fa:69:e5:b5:62:f6:d3:b0:46:51:6c:c1:82:
1e:36:20:1a:26:c5:e8:dd:53:2f:63:80:24:b3:9a:
82:6b:45:ed:4a:22:c4:13:30:5e:14:78:bd:68:40:
9f:96:5f:ec:14:e5:c9:9c:74:dd:04:6a:1b:fd:8f:
e1:3e:09:91:43:2b:45:ed:61:83:6d:3a:dc:33:c0:
94:d9:6d:52:02:0f:4e:d0:a7:1d:ae:b6:38:df:bb:
f2:ed:7b:11:76:c8:fc:8f:18:73:62:2f:2f:8b:83:
6d:fd:a7:11:db:cf:66:4f:51:82:22:b5:fd:da:7d:
b8:0a:78:69:66:21:53:9a:0b:fe:0b:26:ce:22:e3:
07:30:a6:67:b2:71:f0:c9:46:0b:77:b7:64:69:63:
3c:e6:1d:f8:aa:e0:d9:e8:ca:c9:7b:89:79:c5:c0:
e3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:88:AA:68:8C:A9:30:18:73:B9:E0:32:4D:B4:8C:19:19:D7:CB:D4
X509v3 Authority Key Identifier:
keyid:92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4d:63:93:6f:ab:10:7b:b5:ca:c2:a2:03:34:a3:b0:70:23:9b:
c4:ec:f0:c6:01:60:0f:af:5b:e2:77:0b:9a:b0:26:12:f2:52:
e4:c8:51:e6:08:8b:06:5a:ec:a6:c8:34:e1:58:d4:44:df:8c:
9b:b5:5d:17:69:17:fe:60:a5:fd:49:2a:9a:09:58:2a:00:8f:
22:37:e2:33:4f:98:a3:b9:6d:ff:08:69:af:d2:75:cf:01:f2:
d4:c5:07:22:41:62:f2:1f:8f:cb:5d:80:9a:e5:91:24:c9:e7:
66:67:f3:d6:d3:30:76:f3:6c:05:aa:ef:a9:b9:14:d2:7d:db:
82:2f:84:8d:c2:d3:fb:34:6b:87:9d:6d:94:31:4a:d0:07:30:
ca:fa:83:1a:82:29:82:bc:ac:8e:eb:bb:99:b2:9c:f9:ea:7f:
bb:c9:6a:df:63:e1:c3:7a:d4:85:b6:06:8b:bc:af:20:9d:05:
76:ab:0c:f8:7d:cb:c8:b4:70:35:5f:20:ce:68:01:10:1f:98:
ee:4b:a7:9d:1e:86:b3:3b:47:b8:de:02:6f:a7:30:2f:d4:34:
ef:48:f0:ff:9a:79:32:67:26:b4:bf:42:a6:e8:68:3a:93:22:
6d:2e:05:e1:71:0a:6e:cc:17:9b:ff:a1:58:19:7f:50:b7:6c:
03:8c:de:c3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTIzMjAxMTAvBgNVBAUTKDkyNURBOThCNEUwODVENjgwRDE2RDdCQTE4M0YwRUE1
NDI2QTFBMDMwHhcNMjUwMzI4MjM1MzQxWhcNMjUwNDA0MjM1MzQxWjAYMRYwFAYD
VQQDEw02N2U3MzY4Ni0yYzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1jwtAPVyJMFEeJEBFIftOPSJ1y/CD0HzXMWXXmplAjLVsQgRnCz8qOmCuwy3
OHTherH4EaIbNuo5S1sPobimD5UlgCUo1aJ2e1nr0Wa9HjGXdIGHPjRV96KPVfpp
5bVi9tOwRlFswYIeNiAaJsXo3VMvY4Aks5qCa0XtSiLEEzBeFHi9aECfll/sFOXJ
nHTdBGob/Y/hPgmRQytF7WGDbTrcM8CU2W1SAg9O0KcdrrY437vy7XsRdsj8jxhz
Yi8vi4Nt/acR289mT1GCIrX92n24CnhpZiFTmgv+CybOIuMHMKZnsnHwyUYLd7dk
aWM85h34quDZ6MrJe4l5xcDjhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuIqmiM
qTAYc7ngMk20jBkZ18vUMB8GA1UdIwQYMBaAFJJdqYtOCF1oDRbXuhg/DqVCahoD
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC82RDcwNUJDRUZF
NzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhXZ05GdGU2R0Q4T3BVSnFH
Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tsMnBpMDRJWFdnTkZ0ZTZHRDhPcFVKcUdnTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
MjMyMC82RDcwNUJDRUZFNzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhX
Z05GdGU2R0Q4T3BVSnFHZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBNY5NvqxB7tcrCogM0o7BwI5vE7PDGAWAPr1vidwuasCYS8lLkyFHm
CIsGWuymyDThWNRE34ybtV0XaRf+YKX9SSqaCVgqAI8iN+IzT5ijuW3/CGmv0nXP
AfLUxQciQWLyH4/LXYCa5ZEkyedmZ/PW0zB282wFqu+puRTSfduCL4SNwtP7NGuH
nW2UMUrQBzDK+oMagimCvKyO67uZspz56n+7yWrfY+HDetSFtgaLvK8gnQV2qwz4
fcvItHA1XyDOaAEQH5juS6edHoazO0e43gJvpzAv1DTvSPD/mnkyZya0v0Km6Gg6
kyJtLgXhcQpuzBeb/6FYGX9Qt2wDjN7D
-----END CERTIFICATE-----
Generated at Tue Apr 8 17:39:16 2025 by rpki-client