Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft
File: lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft (raw, json)
Hash identifier: AINUaxlSxjmRTbxO76Vk1cNy3a4oz6WhrPeFkDcTWbc=
Subject key identifier: 67:1E:45:BD:47:DE:94:95:AE:83:8C:BF:8E:2A:77:04:7A:DE:59:C5
Authority key identifier: 95:28:16:0E:4C:30:4E:13:07:DB:F6:6F:19:01:63:2A:DF:9F:1A:64
Certificate issuer: /CN=A9132457/serialNumber=9528160E4C304E1307DBF66F1901632ADF9F1A64
Certificate serial: 0175
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft
Manifest number: 0172
Signing time: Sat 29 Mar 2025 03:19:49 +0000
Manifest this update: Sat 29 Mar 2025 03:19:49 +0000
Manifest next update: Sat 05 Apr 2025 03:19:49 +0000
Files and hashes: 1: lSgWDkwwThMH2_ZvGQFjKt-fGmQ.crl (hash: 6lp2i4rVV16YqC6t15RgPOgzJA7O2u0TgSM98N1Aw7A=)
2: 8E10E282D81B11EDAB75C13EC4F9AE02.roa (hash: ZFOIV6D/1mwtehXiBOGpEO/D359oTLwlftiwuF6vQmg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373 (0x175)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9132457
Validity
Not Before: Mar 29 03:19:49 2025 GMT
Not After : Apr 5 03:19:49 2025 GMT
Subject: CN=67e766d5-ed19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a2:2f:23:32:6b:d6:7d:07:a5:32:fc:b6:58:
9b:1d:ec:d4:78:94:c9:9f:b0:1a:e1:bc:56:e7:0a:
90:ea:1d:82:45:49:2a:8f:bf:dd:8e:52:68:c1:ed:
a0:97:3c:f5:87:a9:c4:5f:80:0a:a6:85:4f:6e:14:
88:90:35:15:17:2c:c4:db:31:c2:2c:76:28:17:82:
2c:6f:f1:b8:65:f1:20:19:cf:d4:7a:ef:49:89:82:
f2:2a:33:76:35:a6:c3:4f:15:24:10:f6:e3:5f:ea:
cf:df:31:89:f5:92:bd:8e:d7:35:25:06:85:35:4d:
be:41:7b:10:31:24:65:a4:a4:e7:64:c0:4f:05:93:
68:69:0e:ca:cf:59:bd:14:85:5a:55:ce:e1:b1:1e:
3e:9a:f8:b1:b8:64:99:20:a8:26:93:ba:21:3c:a6:
fb:76:92:20:83:e8:d5:e7:73:b8:e9:2c:3a:5b:60:
fc:2f:a7:2d:c9:a2:03:e9:6a:f6:d7:16:e3:2f:c1:
00:3d:2d:35:87:44:fe:fc:1a:09:fa:44:c0:27:f0:
94:65:41:c2:4b:b3:69:4c:af:ab:36:b3:e9:99:02:
9f:55:19:15:b2:ab:e3:06:94:8a:2b:e6:b4:f9:24:
5f:09:72:04:97:c7:38:9a:77:c9:1b:8e:56:fd:0e:
82:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:1E:45:BD:47:DE:94:95:AE:83:8C:BF:8E:2A:77:04:7A:DE:59:C5
X509v3 Authority Key Identifier:
keyid:95:28:16:0E:4C:30:4E:13:07:DB:F6:6F:19:01:63:2A:DF:9F:1A:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
13:90:10:bc:f5:55:a4:da:59:ab:5d:64:62:76:e0:42:2f:29:
5a:61:09:e9:c1:db:90:98:b7:08:c3:12:cd:22:b3:6b:f1:82:
8a:7f:f6:17:e7:e9:3f:36:ce:fe:46:17:26:15:9a:2a:b4:82:
4d:eb:68:da:23:2d:ea:9e:59:ab:5f:0d:97:59:96:7c:6c:b1:
15:ea:d9:b5:fc:c9:66:1e:fe:07:57:2d:ae:79:95:41:28:61:
67:7a:af:b8:55:e0:b5:89:61:74:7f:fa:48:b1:a2:64:88:91:
0f:30:db:51:f6:5c:fe:73:e4:1c:6d:81:9f:d0:42:ae:5f:76:
e3:3a:be:d3:41:f6:3a:df:48:8b:05:00:a9:93:25:82:c5:e3:
fd:39:e2:c9:93:eb:3a:c9:dd:b7:27:c0:bb:48:07:6b:d2:74:
8d:cd:76:7c:d7:1f:64:e5:b1:40:51:e7:f8:33:d4:a2:80:27:
5e:98:43:6c:c7:81:6c:94:35:a2:10:32:7b:f2:88:65:bd:60:
8a:02:2d:b6:ba:28:75:52:97:0c:67:19:3c:8e:9f:50:12:bb:
8c:15:fe:50:13:7a:87:00:c9:c3:58:6e:54:47:ae:88:a8:04:
99:10:fa:23:8b:00:ea:3c:1e:95:2f:b3:fd:f2:6d:3f:e4:9a:
ff:ca:36:66
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzI0NTcxMTAvBgNVBAUTKDk1MjgxNjBFNEMzMDRFMTMwN0RCRjY2RjE5MDE2MzJB
REY5RjFBNjQwHhcNMjUwMzI5MDMxOTQ5WhcNMjUwNDA1MDMxOTQ5WjAYMRYwFAYD
VQQDEw02N2U3NjZkNS1lZDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnKIvIzJr1n0HpTL8tlibHezUeJTJn7Aa4bxW5wqQ6h2CRUkqj7/djlJowe2g
lzz1h6nEX4AKpoVPbhSIkDUVFyzE2zHCLHYoF4Isb/G4ZfEgGc/Ueu9JiYLyKjN2
NabDTxUkEPbjX+rP3zGJ9ZK9jtc1JQaFNU2+QXsQMSRlpKTnZMBPBZNoaQ7Kz1m9
FIVaVc7hsR4+mvixuGSZIKgmk7ohPKb7dpIgg+jV53O46Sw6W2D8L6ctyaID6Wr2
1xbjL8EAPS01h0T+/BoJ+kTAJ/CUZUHCS7NpTK+rNrPpmQKfVRkVsqvjBpSKK+a0
+SRfCXIEl8c4mnfJG45W/Q6CbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGceRb1H
3pSVroOMv44qdwR63lnFMB8GA1UdIwQYMBaAFJUoFg5MME4TB9v2bxkBYyrfnxpk
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjQ1Ny84QUU3MzkyRUQ4
MTgxMUVEQkQ2NTBGM0RDNEY5QUUwMi9sU2dXRGt3d1RoTUgyX1p2R1FGakt0LWZH
bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2xTZ1dEa3d3VGhNSDJfWnZHUUZqS3QtZkdtUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
MjQ1Ny84QUU3MzkyRUQ4MTgxMUVEQkQ2NTBGM0RDNEY5QUUwMi9sU2dXRGt3d1Ro
TUgyX1p2R1FGakt0LWZHbVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQATkBC89VWk2lmrXWRiduBCLylaYQnpwduQmLcIwxLNIrNr8YKKf/YX
5+k/Ns7+RhcmFZoqtIJN62jaIy3qnlmrXw2XWZZ8bLEV6tm1/MlmHv4HVy2ueZVB
KGFneq+4VeC1iWF0f/pIsaJkiJEPMNtR9lz+c+QcbYGf0EKuX3bjOr7TQfY630iL
BQCpkyWCxeP9OeLJk+s6yd23J8C7SAdr0nSNzXZ81x9k5bFAUef4M9SigCdemENs
x4FslDWiEDJ78ohlvWCKAi22uih1UpcMZxk8jp9QEruMFf5QE3qHAMnDWG5UR66I
qASZEPojiwDqPB6VL7P98m0/5Jr/yjZm
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:42:44 2025 by rpki-client