Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft
File: WF3cT9n54xQAXzcZj9HiLmgknes.mft (raw, json)
Hash identifier: mW1YfgjTdX65KnYvKq3cHN1TvHFjlWfdf/mXdEhByxw=
Subject key identifier: 99:92:FE:00:5D:32:A8:7A:FA:AA:BA:99:B7:7F:66:45:1B:FE:4A:8A
Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB
Certificate issuer: /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB
Certificate serial: 043D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft
Manifest number: 0438
Signing time: Sat 29 Mar 2025 00:32:50 +0000
Manifest this update: Sat 29 Mar 2025 00:32:49 +0000
Manifest next update: Sat 05 Apr 2025 00:32:49 +0000
Files and hashes: 1: WF3cT9n54xQAXzcZj9HiLmgknes.crl (hash: nWm2R9Mv2pfzaGHWSz5HqnBCtag9av2Fbhs21Kk0/II=)
2: 5431D022524211ECA52D990FC4F9AE02.roa (hash: ngVDpB9EeVUj1wtwuXlGNZD63XjFCao61CO9K4ARPTk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1085 (0x43d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912871A
Validity
Not Before: Mar 29 00:32:49 2025 GMT
Not After : Apr 5 00:32:49 2025 GMT
Subject: CN=67e73fb2-099d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3f:68:49:23:de:1e:3d:3c:74:40:3b:c8:38:
cd:ad:1d:b3:39:ae:ad:67:69:fc:30:b1:de:e5:83:
75:2c:f0:dc:56:9a:66:dc:91:f3:f0:66:49:a9:09:
33:34:09:0e:67:3d:e5:d3:1d:e1:da:63:7c:75:f1:
5e:f9:71:ac:9a:40:bf:7a:34:be:63:8d:c3:64:c2:
38:3e:38:17:91:41:f7:03:22:73:ed:d0:67:26:d2:
50:20:e2:d6:2a:b5:fb:96:a4:b9:9d:ac:92:3a:d5:
e1:d6:e9:72:e4:b0:09:d9:3f:f2:e6:ca:cd:79:ff:
78:18:49:eb:57:38:51:66:c0:a0:cf:bf:89:3e:f1:
3b:d0:14:dd:36:00:fb:7a:2e:06:ea:39:ce:a2:e5:
95:e7:f1:f1:02:9c:fb:d2:d8:6b:6a:ec:01:15:3c:
98:f4:50:30:86:d5:79:2a:ab:19:27:f4:46:e3:bd:
69:1d:fa:38:83:c8:e9:b1:58:4c:18:97:8e:f7:e7:
e1:37:df:65:ea:2b:cb:ef:91:45:ae:7e:bf:31:8e:
bb:9b:73:9c:9d:91:3a:0c:cc:b9:78:3f:b1:15:83:
40:1a:d9:4c:f6:5c:46:a4:42:f0:01:96:74:b8:20:
28:a3:c6:87:84:d5:dc:c0:a9:77:08:54:73:93:08:
3e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:92:FE:00:5D:32:A8:7A:FA:AA:BA:99:B7:7F:66:45:1B:FE:4A:8A
X509v3 Authority Key Identifier:
keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
45:fe:3b:44:26:56:d9:e9:ee:d6:be:68:23:35:ce:57:ca:e2:
4c:cc:d6:74:9d:e8:82:35:03:f2:2f:f8:27:90:e9:bf:b8:cb:
ff:6c:da:fa:88:e1:ab:56:ef:4b:5b:97:74:a6:b3:34:e6:f4:
a2:4b:45:46:79:a2:f7:67:63:52:82:31:13:66:78:c4:21:95:
3e:23:00:f0:7e:2b:05:d5:98:78:47:23:8e:e5:af:bc:53:ea:
72:2f:31:8a:3b:fd:ac:ec:de:6e:e4:a9:b2:85:57:aa:b1:7d:
91:d5:ac:4c:26:9c:79:98:4f:41:78:9b:2a:18:cc:e2:e5:51:
c8:e9:8e:77:37:b0:97:52:4e:54:c3:80:93:d8:ca:f4:fb:a9:
db:7e:24:36:a7:08:77:bc:34:85:7e:5f:37:f2:d1:31:52:d0:
a6:11:60:ce:f9:e8:06:17:ba:0c:f0:27:9b:3d:ce:b9:17:0a:
db:dd:1a:9f:e5:26:ee:56:13:bb:40:85:e7:b4:b8:7f:42:d0:
4d:19:54:fd:ab:2d:ea:8f:45:03:97:8c:fa:e6:e3:aa:18:25:
2a:f3:f3:38:49:da:ab:03:e8:24:51:a4:e5:b1:5c:4f:94:50:
cb:b8:3f:60:7b:61:99:9e:6f:49:8b:a8:4e:84:4d:bf:a1:cc:
66:94:55:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:24:37 2025 by rpki-client