Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json)
Hash identifier: WVB11SLFKJEIwiJjAolZW4r9vtdhumz3pYYIiXYLp8Q=
Subject key identifier: 9C:36:F5:11:DD:A8:8E:21:F3:74:CE:8F:5F:8C:6C:1E:C1:76:A6:ED
Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41
Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441
Certificate serial: 023F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
Manifest number: 023C
Signing time: Sat 29 Mar 2025 02:09:06 +0000
Manifest this update: Sat 29 Mar 2025 02:09:05 +0000
Manifest next update: Sat 05 Apr 2025 02:09:05 +0000
Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: 7OiZJapmA64n61NIwVJbjjhgP2byuP+gzUKFuImJQ4I=)
2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: WFDjDT7W6+N2rDzG8WkRgFqhswGIShiXVMiFtccQ1zc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 575 (0x23f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9135450
Validity
Not Before: Mar 29 02:09:05 2025 GMT
Not After : Apr 5 02:09:05 2025 GMT
Subject: CN=67e75642-eedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1a:39:95:cb:ef:e5:5b:73:7c:7f:ce:64:c6:
ce:f1:9b:24:50:88:b4:6e:4a:35:7e:a5:a3:02:cb:
e8:8c:cd:88:f4:b4:b6:ad:61:ee:29:c1:3a:f3:af:
1e:fb:db:5e:8c:03:2e:81:0c:9e:9a:b4:e2:30:97:
17:f7:fb:fb:5b:e3:4e:e6:75:8b:22:89:3c:2b:82:
b3:de:b8:14:af:bd:3a:b2:0f:d9:7c:11:90:0b:3e:
53:1a:31:c4:57:b0:1c:b6:6f:2f:c0:cf:80:9c:b2:
32:39:cb:83:51:89:68:22:0d:06:25:f7:07:1a:e3:
b9:d6:22:cc:be:6f:f3:6d:00:e2:0e:97:f8:36:ab:
fa:b1:4f:3c:5e:35:10:3a:1f:4b:cb:50:39:0c:05:
75:0c:43:b2:d6:26:8b:fa:e8:38:fb:50:bf:93:77:
93:c2:6e:65:4f:b8:2c:67:44:45:46:e0:4a:a7:bd:
33:9b:bf:4a:51:7b:12:d5:b7:9f:8f:36:59:f7:d5:
32:1b:50:62:67:a9:de:d5:57:4b:3b:ae:53:f6:75:
5b:72:2a:d8:74:60:97:9a:62:22:a9:7a:c5:f3:89:
12:41:ed:05:26:c9:96:4e:ca:04:c0:e9:65:f8:98:
24:e0:61:37:6a:30:ab:51:db:09:69:0f:54:27:59:
83:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:36:F5:11:DD:A8:8E:21:F3:74:CE:8F:5F:8C:6C:1E:C1:76:A6:ED
X509v3 Authority Key Identifier:
keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
49:3b:b0:30:a5:69:96:d5:ea:3c:5f:28:3e:ef:4a:5d:1e:79:
9f:8b:f0:7c:9d:2a:71:b4:14:62:37:c5:48:82:c1:6f:4d:39:
9f:47:75:79:b1:ce:e4:61:1d:01:fe:6c:3e:36:c5:cd:33:e5:
c2:2b:58:ea:11:d4:08:33:c7:b0:d3:da:bf:1a:08:4d:03:d9:
7b:73:85:b3:97:a8:32:83:54:ae:a4:df:1a:30:94:a0:43:60:
e3:a0:f9:a1:1e:71:40:11:85:e6:ab:b0:29:17:f3:5f:aa:b6:
b9:e0:45:c1:10:42:d0:9c:e4:a8:7c:b8:ea:94:85:86:3f:3d:
13:29:12:6e:dc:38:76:0b:de:d9:f0:b6:c1:0d:8a:05:b1:cc:
34:8f:e7:20:a5:a6:5f:46:7a:38:cf:44:ac:66:90:a1:68:4e:
f3:6d:1b:18:8b:1c:f7:15:c8:94:f4:dd:eb:f7:d1:c8:8a:2a:
a8:9a:48:b1:ee:24:b1:2d:22:01:d8:84:fc:1b:5b:49:77:d7:
f7:be:da:49:75:6c:50:c2:14:6a:7d:3e:6f:72:d3:e9:15:45:
ae:46:1e:43:6b:74:66:88:bc:e6:73:53:b5:a9:2f:bb:09:d1:
6e:7c:53:ad:5f:22:9a:cc:44:08:36:ae:29:c1:84:aa:d4:0e:
e3:07:53:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:12:25 2025 by rpki-client