Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft
File: ZGscQagf9-WCtezcHO9UzmEVJWM.mft (raw, json)
Hash identifier: DX3RdGZAKvYGQ3P199MbOhrwy5w0cL4culAqoJQQXfU=
Subject key identifier: 7C:04:F1:A9:E3:0E:D5:04:CD:E5:CC:2C:FF:FC:39:0E:55:B3:50:68
Authority key identifier: 64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63
Certificate issuer: /CN=A9129D4A/serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563
Certificate serial: 1D3A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft
Manifest number: 1D30
Signing time: Fri 28 Mar 2025 16:15:14 +0000
Manifest this update: Fri 28 Mar 2025 16:15:14 +0000
Manifest next update: Fri 04 Apr 2025 16:15:14 +0000
Files and hashes: 1: ZGscQagf9-WCtezcHO9UzmEVJWM.crl (hash: ky2Ezl8v16Xh6vkV45nRC8vOhFxq2fWkgL6UVRPPucE=)
2: 810AF2B0AC9611E6A37EC415C4F9AE02.roa (hash: mxRFoZlbF7GrkWlo6RWpK5mJSh6VlbtldbAN6DTyqBQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7482 (0x1d3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9129D4A
Validity
Not Before: Mar 28 16:15:14 2025 GMT
Not After : Apr 4 16:15:14 2025 GMT
Subject: CN=67e6cb12-fdbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:27:d5:58:12:cf:ac:bd:08:21:a8:2a:bb:0b:
a5:e3:c0:e5:9c:dc:37:4a:c0:45:7d:3b:f4:57:e6:
09:f3:20:eb:a8:d1:e5:39:dd:65:6f:f1:0d:39:97:
85:67:68:59:69:7f:14:2a:f3:37:3f:f9:26:dc:b4:
77:e2:1b:3d:1a:6d:41:bb:71:82:55:e7:f5:c9:9f:
26:c0:52:d0:29:ed:c9:cc:a4:34:38:11:b2:61:3e:
3f:d3:1b:89:26:b8:ca:07:40:0d:ed:8e:2c:56:2b:
20:39:13:e2:34:59:a3:84:2c:54:40:a7:c0:c8:73:
19:e8:61:c5:0f:b5:9f:da:0d:39:3b:42:c1:4c:b5:
19:68:1b:bc:a8:f4:a3:34:1f:98:96:4c:84:30:68:
77:3d:1e:3e:50:af:84:6d:91:4c:0e:e9:43:99:6f:
f1:e5:b8:60:10:e7:f4:fe:6b:59:c2:70:fd:b5:24:
ae:41:80:57:b5:ea:25:e5:40:e6:5e:a2:0c:27:ec:
df:ca:60:2d:c1:cd:55:52:e5:be:de:23:17:af:1c:
20:c2:68:73:54:15:4a:ef:6d:69:8c:43:a3:cc:df:
44:b7:0b:85:7c:52:92:51:6f:85:71:73:dd:71:98:
ac:9c:70:b0:a8:08:97:bb:f6:10:84:d6:30:a6:47:
60:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:04:F1:A9:E3:0E:D5:04:CD:E5:CC:2C:FF:FC:39:0E:55:B3:50:68
X509v3 Authority Key Identifier:
keyid:64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
36:79:4a:7a:f0:1c:23:bd:50:be:a1:9d:52:e2:cc:14:4b:d2:
ce:8d:b5:bc:ca:17:62:a2:e3:b8:2a:b5:16:de:da:88:92:8b:
12:10:2f:d3:86:1a:17:76:70:e9:55:cb:27:f9:f9:ef:c1:3e:
cf:15:14:e2:d1:1f:18:a6:3f:84:64:41:31:89:ee:3e:c1:32:
02:24:b8:f5:1a:d0:0c:85:1e:59:e1:04:70:96:1f:08:7a:cc:
9c:ee:e3:75:4c:12:e2:c2:c2:c8:30:c3:96:c7:3d:0d:71:5c:
50:d8:fb:c7:3c:b1:22:1f:0e:2e:43:8c:5e:ee:af:6b:fd:70:
5c:5f:1c:fe:1b:30:29:a6:e7:96:03:60:fe:5c:71:08:fe:17:
63:c3:d7:66:e1:2d:c5:f4:21:af:21:8c:8f:cc:e3:d8:33:37:
11:69:85:88:7e:2b:0a:2c:58:01:57:fe:af:fb:50:31:e6:ff:
98:8a:9a:d5:32:15:76:eb:bd:36:f3:77:4b:98:9e:3e:b2:d4:
55:06:09:6a:bb:6f:33:fd:91:9e:22:1f:f4:42:95:99:d1:b3:
a3:38:a4:37:5b:58:c4:62:8b:cc:cb:26:6e:ef:c9:4d:52:86:
33:6b:d4:f9:74:05:18:6d:f1:1f:a1:d3:48:ee:67:a8:83:35:
f7:0b:54:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 10:27:14 2025 by rpki-client