Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A911A70E/00083FAC9D5711ED9F989530C4F9AE02/1Dnu1g0xlwmHJHS5BwZjBHO23l4.mft
File: 1Dnu1g0xlwmHJHS5BwZjBHO23l4.mft (raw, json)
Hash identifier: EcRGoJvWpHBM6PwYyhb5XLgSK7YHxYkddbDACdUqHgE=
Subject key identifier: 36:6D:D3:FF:A9:18:4B:12:8B:DE:BD:5F:FE:A1:15:C7:6F:05:5A:30
Authority key identifier: D4:39:EE:D6:0D:31:97:09:87:24:74:B9:07:06:63:04:73:B6:DE:5E
Certificate issuer: /CN=A911A70E/serialNumber=D439EED60D319709872474B90706630473B6DE5E
Certificate serial: 01AB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Dnu1g0xlwmHJHS5BwZjBHO23l4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911A70E/00083FAC9D5711ED9F989530C4F9AE02/1Dnu1g0xlwmHJHS5BwZjBHO23l4.mft
Manifest number: 01A1
Signing time: Sat 29 Mar 2025 02:58:43 +0000
Manifest this update: Sat 29 Mar 2025 02:58:42 +0000
Manifest next update: Sat 05 Apr 2025 02:58:42 +0000
Files and hashes: 1: 1Dnu1g0xlwmHJHS5BwZjBHO23l4.crl (hash: X4kiji7jlquK1cXdAcnFECUz2WW72LVcjSaqgCViMKQ=)
2: 5169DA6EA05D11ED9406DE26C4F9AE02.roa (hash: ubMDKoV/0Mf8cskkFN+EzNxMhabm1KL1nBOoaD8bcg8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 427 (0x1ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911A70E
Validity
Not Before: Mar 29 02:58:42 2025 GMT
Not After : Apr 5 02:58:42 2025 GMT
Subject: CN=67e761e2-6c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b9:1a:c7:8d:f8:03:1b:5d:15:b0:13:25:b2:
1f:a8:09:29:ac:48:e3:b6:37:4a:f1:f1:4d:b7:83:
7b:38:b2:24:ac:e9:2e:a9:67:63:23:37:66:38:6a:
67:8e:4a:f1:5e:9f:e4:db:cb:7d:d1:69:34:e5:2c:
23:42:99:a3:da:e1:73:a5:81:6a:bd:46:e7:d7:52:
a2:be:38:56:b6:f5:ed:f5:95:e1:f6:67:bf:b5:bf:
ca:b7:b7:4c:a2:56:43:5d:ac:2d:d4:2b:81:bf:8b:
a2:aa:55:ec:3d:01:e6:26:9a:06:b0:65:90:1a:f7:
f3:d8:3a:2a:9e:f1:0e:27:19:e2:87:dc:09:ca:33:
74:0d:41:ac:d9:0a:49:81:d3:a5:d7:ac:12:bd:e3:
07:23:a3:c6:5f:fb:ce:c9:fb:a4:db:af:64:bd:94:
b1:c2:68:bc:d7:2d:54:29:35:f0:2e:14:43:a5:dd:
1b:c4:ac:fc:bc:15:4f:51:23:89:34:09:9f:d0:20:
10:17:5b:b6:69:ec:39:06:73:e4:73:24:e3:e7:90:
6e:69:23:10:95:b1:76:94:05:50:90:1f:0b:d8:6b:
02:d2:05:89:0e:28:5d:f0:f8:33:c1:30:9e:75:75:
07:d9:21:6f:3f:cf:41:28:91:9f:32:63:32:af:00:
0f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:6D:D3:FF:A9:18:4B:12:8B:DE:BD:5F:FE:A1:15:C7:6F:05:5A:30
X509v3 Authority Key Identifier:
keyid:D4:39:EE:D6:0D:31:97:09:87:24:74:B9:07:06:63:04:73:B6:DE:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911A70E/00083FAC9D5711ED9F989530C4F9AE02/1Dnu1g0xlwmHJHS5BwZjBHO23l4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Dnu1g0xlwmHJHS5BwZjBHO23l4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A70E/00083FAC9D5711ED9F989530C4F9AE02/1Dnu1g0xlwmHJHS5BwZjBHO23l4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
dc:0e:a3:d3:49:09:4e:36:41:59:e3:21:8f:13:1e:fc:da:ed:
c7:9a:0a:c6:10:6b:a1:e9:8c:cf:b4:71:1c:ec:39:58:ec:53:
c7:0c:c9:ed:36:b6:aa:91:57:fa:89:de:fb:7b:7a:af:81:17:
c6:70:1f:20:bd:8f:ec:25:aa:ba:ed:11:60:28:7b:e0:25:e7:
a7:9a:0f:d6:c9:a9:99:f6:4f:90:b5:a2:59:f8:8f:3c:b6:b3:
4b:ba:1e:60:63:46:43:a0:b9:0e:98:d5:cd:76:e7:2c:aa:4c:
84:9a:dd:a7:3e:cd:39:6a:53:ef:79:90:95:ee:e8:18:1c:cd:
7f:42:25:e1:e3:ad:9c:66:b2:9e:e1:14:df:95:e1:2e:66:e9:
45:d1:22:d4:fe:e5:4c:53:0f:3e:94:7e:51:45:0f:81:cb:83:
ae:c0:64:bf:d2:5a:36:c2:52:4e:12:49:7d:29:6a:37:f8:1e:
36:4d:6f:8c:ff:21:3c:e9:93:09:1c:04:d9:93:30:34:7b:a0:
22:1e:09:29:c5:29:1e:88:3d:f1:07:80:e0:26:50:d1:90:57:
6d:22:c7:80:a9:36:67:d6:cd:89:38:18:cd:e3:e0:0e:b6:03:
c0:41:f8:a7:e5:95:11:8a:fb:22:c4:5b:77:ea:92:cc:19:76:
10:0c:c3:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:12:55 2025 by rpki-client