Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft
File: OLX3py9k7NJYhfi0dYUC4j2oOLs.mft (raw, json)
Hash identifier: 3trtB2U6Ms932cOhDy62FvEaiBR+Lw7/GXMvPNUEF2A=
Subject key identifier: 8C:13:17:AC:13:F5:85:0B:8D:CF:34:77:CB:FB:2B:8B:C2:26:92:8C
Authority key identifier: 38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB
Certificate issuer: /CN=A912C039/serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB
Certificate serial: 0A01
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft
Manifest number: 09ED
Signing time: Fri 28 Mar 2025 20:10:30 +0000
Manifest this update: Fri 28 Mar 2025 20:10:30 +0000
Manifest next update: Fri 04 Apr 2025 20:10:30 +0000
Files and hashes: 1: OLX3py9k7NJYhfi0dYUC4j2oOLs.crl (hash: PYlEag8emYJbzfxTzFAk2izdg+ubmiEmVTJ+FXbnIv4=)
2: 2E53CDEC139C11EF8D2CFD84C4F9AE02.roa (hash: Xr0kUKQZvKHV+XXy5dNfpEHtkH4Lcw1pk0TaWeYnQ8g=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2561 (0xa01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912C039
Validity
Not Before: Mar 28 20:10:30 2025 GMT
Not After : Apr 4 20:10:30 2025 GMT
Subject: CN=67e70236-9806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ae:79:e9:c7:d8:ce:96:c7:99:62:5a:01:02:
48:fb:53:16:0a:98:04:43:da:a5:d0:41:84:37:a1:
b6:94:d1:60:b6:7a:fe:ce:c8:fb:32:78:29:04:82:
2f:b9:eb:4d:e2:b4:6f:fe:56:85:7b:5c:1d:6f:1b:
67:df:b2:ca:69:a2:21:c9:88:c3:0d:42:08:41:37:
bf:2e:27:94:ca:02:2b:0d:4b:30:42:ec:94:9d:e3:
ad:4c:03:71:c9:b5:26:f5:02:c4:0f:a3:34:77:cb:
4f:57:ff:57:69:65:8f:f5:4b:c7:df:65:c5:77:58:
7f:37:7d:c1:b1:5f:50:aa:0b:9e:ef:01:84:db:40:
d8:68:c6:32:ad:c5:37:cf:4c:4e:19:cb:30:40:b2:
2c:cd:dc:90:35:f4:ce:d3:a2:23:70:06:4d:a2:72:
18:e1:5d:de:f5:12:bd:03:ec:17:50:60:38:a9:f4:
81:a7:14:eb:24:b4:2b:7f:ee:85:1f:96:e1:eb:3d:
2d:3d:e6:9e:0c:2e:0a:72:fa:ec:3f:ba:7d:8b:1c:
83:c3:7c:e4:be:fb:7b:0e:69:7d:d4:56:3c:64:62:
18:02:72:da:e7:86:82:20:25:16:e8:6c:de:93:dc:
29:25:3b:05:7f:16:82:3f:94:89:9f:c9:5e:db:a1:
bd:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:13:17:AC:13:F5:85:0B:8D:CF:34:77:CB:FB:2B:8B:C2:26:92:8C
X509v3 Authority Key Identifier:
keyid:38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
33:fa:e4:23:fb:3c:53:13:54:12:4a:79:9c:c7:bd:6f:d5:55:
07:12:b2:68:44:14:17:18:e2:11:f3:dc:6c:cb:75:49:87:ab:
0d:72:51:53:08:64:f3:e2:ec:cf:24:ea:50:62:ec:c4:eb:ac:
66:c2:81:97:d4:20:c9:9a:21:a3:ec:78:c6:79:d4:e9:95:bf:
ef:61:bf:d6:fd:85:e1:23:25:f1:c1:64:85:1d:a5:ff:f6:48:
91:92:e1:21:e1:f4:aa:bc:45:70:3d:90:1f:8a:92:05:9b:f7:
d5:f3:c6:6e:66:6d:1e:65:7e:68:c9:44:94:b1:c0:69:22:9a:
8d:c0:31:c2:e1:06:95:cf:68:2e:27:18:b2:b5:88:22:54:f3:
ea:4f:4f:d4:be:d5:df:5f:fa:a7:28:71:fc:16:81:cc:86:40:
80:eb:dc:06:cd:4b:74:c9:5a:a6:a8:ef:80:89:6a:b6:68:52:
cc:d3:73:84:8e:bd:f0:75:04:82:ae:29:1c:12:6d:6e:1e:9c:
da:11:25:20:2d:da:0c:aa:f4:0a:a4:81:b7:5a:db:07:00:86:
34:ba:9a:97:48:99:06:16:64:9b:56:50:02:3f:6e:3c:ab:43:
41:33:c4:a3:35:9d:36:33:35:1c:58:18:16:ff:b1:4a:8d:6f:
8b:03:b2:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:46:02 2025 by rpki-client