Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft
File: aUCPaxygKBZoPM5MCOAEkyUZRLI.mft (raw, json)
Hash identifier: DLZGpgQV4gvCxmEuTgXdhqxd1MFecfq4Qq1hc8ls5ts=
Subject key identifier: D5:C8:38:B6:F0:45:A0:78:E5:F7:5C:4A:F4:F7:B0:0C:5B:1C:49:6B
Authority key identifier: 69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2
Certificate issuer: /CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2
Certificate serial: 0A23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft
Manifest number: 0A0E
Signing time: Fri 28 Mar 2025 20:06:31 +0000
Manifest this update: Fri 28 Mar 2025 20:06:31 +0000
Manifest next update: Fri 04 Apr 2025 20:06:31 +0000
Files and hashes: 1: aUCPaxygKBZoPM5MCOAEkyUZRLI.crl (hash: jJmsS02BeHgtm8n3rVRxjTAUIoXhJIE9BfnjpB9J6PQ=)
2: EA7A8118DCCC11ECAFD2715CC4F9AE02.roa (hash: EVdIedcKIi6u3CpWW67iH/HMf1q5KJ9SGN4AqXPF/uk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2595 (0xa23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91166FC
Validity
Not Before: Mar 28 20:06:31 2025 GMT
Not After : Apr 4 20:06:31 2025 GMT
Subject: CN=67e70147-7153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9e:b1:9c:e5:3c:0e:6b:87:f1:35:6d:26:63:
68:2e:70:aa:96:ea:92:29:86:c8:0f:b7:82:24:f8:
75:cc:7c:9e:15:6e:f9:d1:d4:fb:23:40:4a:25:3d:
4d:0a:a6:5f:52:a7:b4:30:bb:04:a6:48:97:ec:7b:
5c:f9:bf:8c:fa:28:14:9a:73:e0:25:8b:6f:53:90:
bc:de:fa:0d:27:f7:7a:e6:46:72:30:54:11:84:fe:
60:3f:54:b2:f6:1e:e9:c8:41:41:56:7f:b2:a8:c8:
1d:fc:b5:90:b9:2a:29:6e:29:01:36:e3:26:73:40:
35:d1:e3:a5:dd:00:94:ff:f1:96:5b:48:da:32:69:
86:5b:ea:5f:60:7b:7a:e6:86:80:fe:35:75:72:39:
c2:4b:4f:a2:ba:33:81:b3:dc:81:25:f0:0c:8b:52:
ce:b4:8f:e8:b3:28:a0:62:75:c5:31:62:a7:5f:21:
db:67:cf:28:cf:5d:15:6e:b0:7f:1b:43:35:40:1f:
aa:31:2a:81:11:a4:59:39:99:12:a3:fa:58:3c:1b:
16:cb:b2:5f:53:c5:df:02:26:51:3e:cd:17:23:f0:
ab:15:64:68:ca:c4:bd:c0:a5:32:6e:25:a6:70:1b:
e4:43:fe:64:a4:28:64:7a:67:41:c8:98:37:39:54:
32:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C8:38:B6:F0:45:A0:78:E5:F7:5C:4A:F4:F7:B0:0C:5B:1C:49:6B
X509v3 Authority Key Identifier:
keyid:69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
81:68:79:62:d2:a4:ae:ca:fa:65:f0:36:a9:ea:9b:c4:e1:3a:
4e:48:d9:d6:da:db:0a:8c:63:37:2f:5a:de:4a:15:ab:85:9d:
cc:6b:2f:3c:fc:98:65:3f:f2:ed:74:4b:26:7d:c6:0c:7c:cd:
9c:5e:3d:1d:57:62:b2:f8:07:1f:b4:ba:26:bd:fd:d9:b5:65:
84:3d:cb:15:62:fc:a0:75:74:34:54:62:69:ee:06:b8:73:1a:
1a:13:48:64:ad:94:b2:7d:c0:9b:22:e1:0c:57:4f:7b:49:c7:
4a:85:76:df:9f:68:f7:c9:8d:66:b5:e7:64:fe:0c:20:1e:01:
3a:0f:42:dd:6d:c9:0c:ac:64:53:0b:6a:cd:1d:16:88:f4:9b:
1b:9b:24:08:ca:50:7e:5a:a4:3e:ba:4f:6f:6d:67:e7:d1:bf:
9c:b8:79:45:07:e1:0d:d3:cb:2d:b5:12:26:74:a7:55:47:8b:
fe:3c:23:af:1d:9b:5c:db:0f:a6:0b:15:61:ab:68:c3:1a:26:
69:29:66:37:c9:d3:ff:14:f4:62:93:30:10:24:62:a5:55:19:
5b:a1:47:b4:44:3c:f4:1d:c6:38:c2:96:85:cf:40:04:1c:fc:
1e:ef:29:f0:53:d2:5f:6d:22:e1:fd:eb:85:e9:ff:75:0d:8c:
4a:cf:35:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 13:55:16 2025 by rpki-client