Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft
File: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft (raw, json)
Hash identifier: N12ri3LEjESMAo93sPM3bwWtsAb6f6kfGFpbQD8X8lE=
Subject key identifier: 26:7D:0D:F6:64:58:AF:19:13:90:8F:ED:FB:A9:CF:50:A3:91:F2:2A
Authority key identifier: A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA
Certificate issuer: /CN=A911FABC/serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA
Certificate serial: 0190
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft
Manifest number: 018B
Signing time: Sat 29 Mar 2025 03:12:14 +0000
Manifest this update: Sat 29 Mar 2025 03:12:13 +0000
Manifest next update: Sat 05 Apr 2025 03:12:13 +0000
Files and hashes: 1: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl (hash: xK2svrlej9BcnO+miFgIbcte32Fzp1cyqVYqHXs4sic=)
2: 9BF55430C4D611EDA65E8C87C4F9AE02.roa (hash: li4OxnhOQgQRujPF67sN5Xz793LOnzHpSZGFaFwRWYE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400 (0x190)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911FABC
Validity
Not Before: Mar 29 03:12:13 2025 GMT
Not After : Apr 5 03:12:13 2025 GMT
Subject: CN=67e7650d-7c5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:85:93:ad:d5:20:38:07:aa:70:1d:88:40:c3:
85:82:50:9d:b8:6e:f2:4d:13:b8:5d:ce:20:c9:96:
4c:0c:ff:11:7f:de:ba:95:32:6b:fc:29:90:f0:95:
63:95:ca:15:9c:a3:9e:78:aa:05:f6:5a:ad:de:a8:
ae:9a:98:15:58:49:28:5c:d1:3f:02:96:c3:a4:f2:
d6:0e:2c:8d:69:b7:9f:6d:a1:0f:3c:64:e3:1d:c4:
91:51:5a:74:a8:cc:77:78:e0:c7:f8:99:23:2a:ff:
16:d8:33:dd:2e:c3:e0:b3:9c:54:5b:9b:bf:35:dc:
da:8f:a9:30:a9:ea:d2:df:8c:40:45:13:e3:63:42:
c6:6a:7e:17:dd:89:39:6d:0f:45:10:d3:49:f4:24:
77:10:f1:a1:d8:30:39:7e:00:77:df:75:cd:f4:b2:
d2:0f:69:e2:84:0e:c3:a9:14:4a:fb:04:76:ef:4c:
a3:26:48:64:67:b9:c5:15:1e:03:8b:29:6d:28:f9:
c2:11:f2:10:b0:bd:60:79:82:c6:84:bf:36:5d:60:
87:f1:39:28:38:da:70:89:66:74:60:77:5b:22:67:
18:e2:b8:5f:70:d9:8a:42:83:13:f0:6f:28:e0:40:
ac:4c:73:e6:6e:f7:44:d4:f2:b6:d0:44:9d:a0:59:
19:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:7D:0D:F6:64:58:AF:19:13:90:8F:ED:FB:A9:CF:50:A3:91:F2:2A
X509v3 Authority Key Identifier:
keyid:A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
50:e3:20:e4:b1:71:84:de:6f:b4:de:2d:77:ce:67:5a:30:22:
29:9c:2d:f3:c1:1a:a4:34:89:a0:0a:32:71:85:02:81:3b:49:
40:67:31:32:de:8a:7d:88:bb:c1:47:b1:c4:5b:1a:31:f7:5a:
04:14:3b:a5:2d:26:77:98:3d:4c:fb:c1:d6:0e:f6:cf:51:13:
bc:28:21:58:6c:e3:c8:fc:7f:73:58:a6:cb:86:b4:9c:fe:ad:
4b:8d:cf:b5:a1:0e:68:25:cb:ba:42:e9:f1:83:72:18:24:42:
37:6e:c8:11:47:e0:60:cc:bf:a7:a7:48:f1:28:d8:66:57:6a:
8f:8a:ed:ea:e8:9d:48:10:f5:39:d5:05:46:fc:8a:95:08:9d:
e8:37:81:23:5d:31:7b:8a:de:db:20:c0:10:1c:a0:03:b0:a9:
d0:c4:c2:0e:4d:88:af:29:e1:68:5d:ae:63:65:26:ab:5a:f9:
46:5f:1d:7f:f0:8a:a3:14:57:a3:e2:44:b9:0c:2e:f7:0d:bf:
84:c1:70:3a:5e:b8:60:88:a0:3a:94:b6:47:17:5e:fc:f5:64:
b0:3f:24:e7:bc:4d:25:c4:ab:12:42:27:54:17:a3:82:bb:6a:
be:98:ba:93:dc:88:83:a8:2b:12:e1:02:82:74:a2:30:5f:9d:
bf:64:f5:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 16:30:39 2025 by rpki-client