Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft
File: Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft (raw, json)
Hash identifier: W+s7t+uBMrUQ4Fzz30K4pvwgOwKAVCHLGNtVblV3iw0=
Subject key identifier: 1D:D4:DB:59:87:78:C8:05:F8:41:08:38:E0:4C:CA:CC:C2:4A:A9:2E
Authority key identifier: 37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2
Certificate issuer: /CN=A91142EA/serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2
Certificate serial: 0171
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft
Manifest number: 1F07
Signing time: Fri 28 Mar 2025 16:11:45 +0000
Manifest this update: Fri 28 Mar 2025 16:11:45 +0000
Manifest next update: Fri 04 Apr 2025 16:11:45 +0000
Files and hashes: 1: Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl (hash: ub81rRlzEoE03U64fmg1Dw9gp0x4GcL4d9c2MO26aFs=)
2: 9FD12146ED7211ED8A92041CC4F9AE02.roa (hash: oRm2blLyiJS/QAfKc6f3YExIUJkkRHUJrPUQp9W2Q+s=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 369 (0x171)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91142EA
Validity
Not Before: Mar 28 16:11:45 2025 GMT
Not After : Apr 4 16:11:45 2025 GMT
Subject: CN=67e6ca41-4e27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c2:43:fa:a5:e4:6e:e7:b0:7d:49:15:80:73:
10:e8:7b:fd:7a:30:7f:33:bd:5b:d8:c8:6e:a9:dc:
d0:24:52:89:cb:ad:6d:25:9a:05:af:7a:3b:d8:72:
44:e1:da:40:88:c2:ac:e2:d0:9d:9f:b7:ac:1b:f8:
78:ad:87:25:8b:72:cd:2c:f7:99:b1:6e:f2:12:d2:
c1:35:59:e2:bc:2c:e8:e5:3b:28:2e:ce:62:87:0f:
f2:ca:11:f8:f0:38:2c:84:b5:16:3e:60:5c:6e:38:
de:75:a5:0b:db:67:75:00:34:36:6b:66:cc:c9:28:
d7:73:f6:8b:96:2e:33:22:f1:b2:0f:3e:01:d7:f4:
ae:58:a3:f7:ee:f4:84:88:74:6a:8e:75:51:bd:90:
97:d8:e7:c6:1f:57:44:9f:8c:fd:2d:45:a4:86:34:
0c:c2:da:7c:e6:65:cf:c1:00:ea:9c:f4:b3:b4:1c:
ba:a0:4a:b1:33:f1:e7:a8:58:2e:24:d5:10:ad:c5:
9f:69:30:40:e9:1f:e5:04:16:1b:3d:06:1b:4e:80:
b7:b1:60:0f:0f:02:ca:12:b6:57:42:90:2d:44:7c:
e2:81:99:c4:ac:f5:38:7c:47:93:46:84:ef:83:fe:
76:4d:e4:5b:d7:7e:4a:0c:97:89:86:e9:5f:c8:0a:
65:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:D4:DB:59:87:78:C8:05:F8:41:08:38:E0:4C:CA:CC:C2:4A:A9:2E
X509v3 Authority Key Identifier:
keyid:37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7c:a7:96:f1:03:97:7c:d1:0a:d8:d4:57:06:f6:87:3d:ae:ba:
e9:4e:cd:b4:28:6c:bf:65:c7:f9:86:b0:dc:b9:16:fb:44:86:
4e:bc:9f:35:e7:71:42:3e:5b:26:09:66:04:42:6f:e9:80:6d:
73:e4:5e:2a:20:c8:02:83:23:24:e3:15:0b:c1:83:b9:f6:bb:
2f:c4:98:3d:aa:d8:65:1b:cf:f2:76:7a:44:74:1b:17:5c:aa:
01:cc:82:41:c1:df:a0:45:7c:46:e4:2e:e7:40:b6:87:c6:65:
93:d3:44:83:c2:d7:1c:87:58:6c:06:95:b8:3b:f9:f6:ad:a6:
58:4e:27:62:68:3f:dc:8a:bd:08:b6:e9:46:d9:51:e8:da:b9:
08:ad:8e:51:6d:e8:9f:71:b5:cb:2a:1f:3d:93:68:d0:0f:25:
38:5d:c0:41:56:dd:86:c1:29:12:d1:74:2d:bc:d4:7e:a9:87:
64:17:8a:27:91:70:af:e5:c4:2b:5d:80:e2:19:66:6b:96:36:
f2:3c:19:78:35:d2:75:51:04:6a:6b:a3:ad:81:89:0c:d8:5b:
5a:54:2c:a9:a1:24:dd:3f:3d:4c:72:28:96:e3:2c:1b:e9:c6:
32:aa:70:0f:25:42:5a:25:ac:1c:03:60:cb:96:91:02:c5:87:
5b:0f:17:ab
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTQyRUExMTAvBgNVBAUTKDM3MkYxQzc3NjFCMUREQzgzMjhDNTBCQUQwRUVFRENE
OTlGMkU0RjIwHhcNMjUwMzI4MTYxMTQ1WhcNMjUwNDA0MTYxMTQ1WjAYMRYwFAYD
VQQDEw02N2U2Y2E0MS00ZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0MJD+qXkbuewfUkVgHMQ6Hv9ejB/M71b2MhuqdzQJFKJy61tJZoFr3o72HJE
4dpAiMKs4tCdn7esG/h4rYcli3LNLPeZsW7yEtLBNVnivCzo5TsoLs5ihw/yyhH4
8DgshLUWPmBcbjjedaUL22d1ADQ2a2bMySjXc/aLli4zIvGyDz4B1/SuWKP37vSE
iHRqjnVRvZCX2OfGH1dEn4z9LUWkhjQMwtp85mXPwQDqnPSztBy6oEqxM/HnqFgu
JNUQrcWfaTBA6R/lBBYbPQYbToC3sWAPDwLKErZXQpAtRHzigZnErPU4fEeTRoTv
g/52TeRb135KDJeJhulfyApluQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3U21mH
eMgF+EEIOOBMyszCSqkuMB8GA1UdIwQYMBaAFDcvHHdhsd3IMoxQutDu7c2Z8uTy
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDJFQS9GNTMzMkQ3RTg0
QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNjZ3lqRkM2ME83dHpabnk1
UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL055OGNkMkd4M2NneWpGQzYwTzd0elpueTVQSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
NDJFQS9GNTMzMkQ3RTg0QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNj
Z3lqRkM2ME83dHpabnk1UEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQB8p5bxA5d80QrY1FcG9oc9rrrpTs20KGy/Zcf5hrDcuRb7RIZOvJ81
53FCPlsmCWYEQm/pgG1z5F4qIMgCgyMk4xULwYO59rsvxJg9qthlG8/ydnpEdBsX
XKoBzIJBwd+gRXxG5C7nQLaHxmWT00SDwtcch1hsBpW4O/n2raZYTidiaD/cir0I
tulG2VHo2rkIrY5RbeifcbXLKh89k2jQDyU4XcBBVt2GwSkS0XQtvNR+qYdkF4on
kXCv5cQrXYDiGWZrljbyPBl4NdJ1UQRqa6OtgYkM2FtaVCypoSTdPz1MciiW4ywb
6cYyqnAPJUJaJawcA2DLlpECxYdbDxer
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:47:54 2025 by rpki-client