Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft
File: LToKI8WbTfbb4BpMXzt8i___cA0.mft (raw, json)
Hash identifier: ZUw3KWGL7iuVt3lejLhk2WKZGJdTmNdq4+Ds1um01s4=
Subject key identifier: F9:B6:6D:51:FA:31:C1:49:78:3B:8C:A0:09:33:34:AA:76:F3:43:C3
Authority key identifier: 2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D
Certificate issuer: /CN=A912D0BC/serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D
Certificate serial: 01FB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft
Manifest number: 01F7
Signing time: Sat 29 Mar 2025 02:19:33 +0000
Manifest this update: Sat 29 Mar 2025 02:19:33 +0000
Manifest next update: Sat 05 Apr 2025 02:19:33 +0000
Files and hashes: 1: LToKI8WbTfbb4BpMXzt8i___cA0.crl (hash: JGRmoIZ4T9JDLEQ9y0jogGngQ1/bUeYoX0Se0UTS3B8=)
2: C202E82834B611ED815AAB32C4F9AE02.roa (hash: hw3e3hTzsjowGN0Wxe4NUA2TCLqWrlYb3yFyRPFsovQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 507 (0x1fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912D0BC
Validity
Not Before: Mar 29 02:19:33 2025 GMT
Not After : Apr 5 02:19:33 2025 GMT
Subject: CN=67e758b5-0f5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:80:3d:3b:ab:6a:e2:c1:37:6b:f7:46:6b:01:
a3:dc:5d:ad:21:9b:fa:13:22:81:b2:cf:aa:30:4f:
53:b4:aa:d2:11:0b:86:b1:d6:22:af:60:09:b5:d5:
14:08:39:52:eb:6b:03:8b:7d:01:48:7b:b9:73:66:
1b:b7:e2:6d:3e:dd:86:99:f0:32:fb:26:bf:66:f4:
d0:b3:c5:8e:df:12:4b:1e:a0:ab:06:05:53:c9:1a:
3a:97:43:4a:72:8e:f4:ee:4d:68:be:14:df:39:5f:
d2:17:82:b1:2b:ee:f8:3a:ab:1e:6d:56:43:3f:85:
22:01:d2:b2:ca:5b:31:59:93:4a:60:d2:f9:39:73:
11:8c:27:76:4d:f6:f9:fb:77:3e:8c:de:05:da:e3:
c3:32:61:f2:03:da:15:37:6b:3e:79:62:84:ee:86:
09:3b:ac:9b:2d:59:e8:8e:06:5b:f0:29:48:28:f1:
8c:91:36:25:a7:60:d7:83:08:9c:06:ce:aa:83:19:
84:d6:a0:6c:c0:6a:d6:7f:4f:d1:c9:3f:cb:40:a0:
0d:8f:f4:81:6c:0a:29:4c:5b:2d:e6:7c:d9:cd:78:
8c:ca:69:8d:41:69:62:91:89:05:da:38:a2:bf:2a:
97:66:5f:7c:21:ff:31:a1:d0:67:ee:e8:98:4c:47:
24:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:B6:6D:51:FA:31:C1:49:78:3B:8C:A0:09:33:34:AA:76:F3:43:C3
X509v3 Authority Key Identifier:
keyid:2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
28:f6:89:92:ba:b1:72:54:0d:37:24:cf:04:7a:e6:1c:c8:bf:
88:97:50:5b:d1:0b:b8:ac:98:5b:43:b5:4b:1b:1c:1f:d4:f9:
9d:41:4d:dd:a3:98:5a:d6:21:ee:dc:87:fc:1b:20:51:16:b2:
3b:f5:70:37:c0:ea:5e:ac:3d:8d:ec:79:6f:2f:aa:df:6e:23:
e2:f6:28:63:a6:10:49:6b:9b:0a:b8:17:b6:d1:e8:bd:5e:31:
e0:7a:a3:d0:9d:92:16:cd:26:43:5c:b9:68:67:1e:53:60:9f:
f6:1b:9d:b1:cc:87:28:46:0d:03:03:05:38:62:f9:fa:f6:7a:
bf:8f:6c:0b:b5:35:b3:36:44:76:56:e4:19:66:40:19:68:29:
34:57:d7:9c:ab:33:70:18:2e:e9:bf:39:c8:7e:53:c3:e6:29:
3e:6e:81:ab:8c:7c:07:13:88:26:ac:18:3e:66:d8:47:66:3e:
d6:35:d7:bd:d7:74:b3:7a:06:65:50:a2:9f:26:60:f2:5b:c2:
2d:d3:d1:20:79:67:59:09:90:ee:82:58:e1:e8:c4:06:6d:a9:
3e:3b:96:6c:4b:71:85:52:17:cb:9d:d0:d9:da:d3:ac:57:03:
94:da:4d:09:74:ac:24:ec:e2:8d:d1:84:77:a5:b5:f1:d1:b6:
38:45:00:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:42:43 2025 by rpki-client