Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.mft
File: UzL5rzBSzz-F6r3QqtaBUjlS5lY.mft (raw, json)
Hash identifier: ZGTXRyTXnCjr2oUw/s3xLmvRS7X9uHhnIYPRpy5PmMY=
Subject key identifier: EA:3B:13:E5:0E:4A:CC:DE:C2:AD:90:E8:F1:C6:59:4D:C7:48:38:61
Authority key identifier: 53:32:F9:AF:30:52:CF:3F:85:EA:BD:D0:AA:D6:81:52:39:52:E6:56
Certificate issuer: /CN=A911BAD6/serialNumber=5332F9AF3052CF3F85EABDD0AAD681523952E656
Certificate serial: 01EA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzL5rzBSzz-F6r3QqtaBUjlS5lY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.mft
Manifest number: 01E6
Signing time: Sat 29 Mar 2025 02:21:45 +0000
Manifest this update: Sat 29 Mar 2025 02:21:45 +0000
Manifest next update: Sat 05 Apr 2025 02:21:45 +0000
Files and hashes: 1: UzL5rzBSzz-F6r3QqtaBUjlS5lY.crl (hash: ortubEzw3zeGfNYXsddssI5OlmrKWHzvzMGwvikHipc=)
2: C512161E3AF711ED8065EF72C4F9AE02.roa (hash: VMCvy2D42txsl0/aqoqVsB8PZuXPBoPnAzm2gWsBwaU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 490 (0x1ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911BAD6
Validity
Not Before: Mar 29 02:21:45 2025 GMT
Not After : Apr 5 02:21:45 2025 GMT
Subject: CN=67e75939-b6c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:9e:09:09:4a:ff:ad:2f:89:72:f7:8c:16:a4:
b6:50:e9:18:01:e3:b4:9d:90:aa:1b:f6:b0:8e:8a:
66:0b:17:48:5c:5a:79:20:48:7d:4f:eb:24:1a:28:
09:9c:39:6c:40:41:77:9b:4f:a2:2c:98:c2:c2:65:
76:d1:60:56:db:9b:b1:9b:4c:b0:a4:6c:31:77:eb:
d1:ad:6b:62:59:ff:12:35:5e:ba:72:0e:67:39:26:
58:82:84:e7:05:6c:43:74:37:ca:48:96:f7:8a:f0:
96:46:92:11:3c:66:9b:b2:da:81:ab:3a:1f:b6:cd:
bd:f4:f2:1a:a3:1b:6b:64:3b:35:66:cb:c0:94:2f:
25:d7:50:21:5a:32:3a:01:a1:47:b5:c4:73:7f:32:
ac:0b:84:72:ca:9e:ef:40:c9:8a:8f:60:f8:d2:e5:
2d:1b:1b:35:20:09:63:59:ce:30:37:90:40:9d:a5:
9e:58:a7:46:87:d5:c7:43:59:07:1e:4a:a6:d3:f0:
47:57:06:f6:df:8b:5b:51:70:c8:b0:32:a3:d0:81:
9a:63:2c:fb:eb:c5:bf:4e:b8:12:04:8d:1e:2d:d2:
82:ee:7f:ca:0d:ab:79:6c:2e:e6:aa:75:ee:15:0d:
f7:80:90:5c:a8:61:82:b0:f8:e4:a9:3f:a1:86:66:
24:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:3B:13:E5:0E:4A:CC:DE:C2:AD:90:E8:F1:C6:59:4D:C7:48:38:61
X509v3 Authority Key Identifier:
keyid:53:32:F9:AF:30:52:CF:3F:85:EA:BD:D0:AA:D6:81:52:39:52:E6:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzL5rzBSzz-F6r3QqtaBUjlS5lY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c6:c1:2b:ca:c0:83:d4:f0:99:9d:91:9d:a8:56:e8:05:63:96:
bb:d0:a8:60:b8:4d:4f:71:48:31:a7:9d:97:44:2b:5b:f0:06:
ae:8a:9a:b1:7b:14:14:a8:dd:19:3a:2b:00:93:0e:71:92:f4:
2a:35:a3:29:83:39:29:d6:e3:ca:15:ec:5f:13:79:1e:5f:17:
be:a5:95:2c:96:b4:b3:64:03:e0:33:9d:95:e8:56:f0:7c:84:
15:bb:c2:30:0e:5e:a6:9c:84:e3:9a:19:0d:f7:82:74:0f:34:
75:a0:c2:7b:46:54:00:03:3c:3d:43:23:1d:e0:b9:53:4b:0e:
5c:5e:49:d9:af:be:af:a6:36:f4:70:79:5e:a1:2d:e5:08:46:
61:e2:84:59:dd:45:77:7e:e1:10:37:55:26:9c:6e:88:ba:c0:
8d:7e:79:8c:d7:46:3c:5b:14:51:cd:0d:90:24:2e:97:4b:94:
02:3e:42:ea:08:24:7a:74:a6:11:4b:0f:c5:ab:b1:d0:a7:2b:
12:d9:10:ed:23:ee:fe:3a:9a:52:9c:d2:71:83:6a:b1:b2:31:
b8:c4:94:0d:3f:91:f7:f8:6d:38:b7:8d:db:2c:1e:95:af:1c:
4a:fe:9c:69:57:ef:2d:d7:fa:eb:b4:c7:22:cb:68:c4:c6:8b:
ec:63:c3:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:48:32 2025 by rpki-client