Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft
File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json)
Hash identifier: F/fD3DHx7ht1hT8ery/Zt0QMiwILzZnAZfjfgqNBcOo=
Subject key identifier: 34:D4:5C:D3:04:D8:39:7C:B1:B8:01:7E:A7:6E:A2:E7:E6:3D:2E:BA
Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D
Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D
Certificate serial: 5B
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft
Manifest number: 5A
Signing time: Sat 29 Mar 2025 06:27:19 +0000
Manifest this update: Sat 29 Mar 2025 06:27:19 +0000
Manifest next update: Sat 05 Apr 2025 06:27:19 +0000
Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: Qj1soEwPvDmkyYjx/O9Ug7GREON0W+mbJqVOI9Eietg=)
2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: Yh+9ZtLGM0yeId0yqsUGDk1PUuIX4Mo5I7LLnDotARk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91 (0x5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913647F
Validity
Not Before: Mar 29 06:27:19 2025 GMT
Not After : Apr 5 06:27:19 2025 GMT
Subject: CN=67e792c7-f2c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b0:8c:c9:50:4b:60:62:8f:60:7e:82:31:12:
72:06:a0:fc:12:06:d9:14:d1:2f:25:39:1e:41:b3:
93:45:ad:c9:4c:f0:d7:29:93:24:c6:fd:ef:22:92:
77:2a:33:3c:e9:8c:c3:a0:e5:6d:0f:ac:35:53:52:
4e:1d:70:c4:18:fb:8a:37:86:54:64:86:75:98:c2:
58:24:24:83:8a:03:de:6e:0d:73:44:f2:13:b6:d5:
17:87:71:d1:3d:16:46:e9:00:b5:99:64:47:a3:50:
6b:2a:98:39:e9:4b:94:c1:19:36:56:ac:41:4d:04:
10:ba:4a:c6:03:e2:06:50:c1:a0:20:ef:5c:6a:71:
4c:1f:1a:85:b1:62:73:c0:73:11:85:86:34:de:2a:
37:ea:d9:80:8c:d9:94:5d:f2:11:6d:8e:1b:d0:7f:
80:30:1b:f0:9a:ef:88:85:f4:a1:7e:be:5b:d9:4c:
0a:f9:f0:aa:35:3c:c8:68:37:da:a8:4a:e2:00:ae:
96:ea:88:9e:b1:89:d7:f0:3e:31:0e:86:53:f6:b3:
5d:11:c7:c7:98:a1:97:a7:6d:ba:72:2f:f6:7a:79:
0f:d5:49:ef:eb:36:85:2c:bf:05:82:61:93:20:cc:
2c:02:60:b0:45:b6:01:f1:c3:0a:4e:b8:87:96:4d:
96:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:D4:5C:D3:04:D8:39:7C:B1:B8:01:7E:A7:6E:A2:E7:E6:3D:2E:BA
X509v3 Authority Key Identifier:
keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
92:e8:cf:69:c0:f1:5b:0d:19:9b:fd:dc:29:f1:9a:6c:10:dc:
d1:df:5e:d3:45:c5:2f:37:02:3c:ae:dc:06:cc:56:04:ee:33:
16:5c:56:d5:f1:66:61:76:34:66:78:b6:c1:b2:43:23:c6:db:
4d:6d:57:5e:39:06:c4:f5:9a:cc:48:fb:8a:af:54:32:84:f1:
f0:5a:12:79:85:bb:87:e9:3a:17:e0:41:71:5e:f6:87:2f:2b:
63:18:c5:25:c1:52:2b:19:cf:d4:1d:c8:4d:5a:a2:10:fc:a2:
5a:73:fa:8b:b0:4a:6c:97:3f:85:89:b5:d1:13:3c:31:7c:5f:
17:b0:e0:ff:48:ab:e0:4a:9c:b0:55:05:73:06:84:c1:28:a4:
81:0f:ed:df:e8:9c:f3:de:cb:2b:05:b6:2d:bd:5a:86:c6:25:
23:14:52:65:1e:15:7d:7c:0a:10:9e:37:d2:a3:9a:66:52:ba:
46:08:3e:25:c7:75:9d:0c:ab:ef:9f:82:11:af:4a:00:11:59:
b6:5c:18:9b:ec:da:34:ed:ec:5c:28:9b:15:bc:3b:b6:4c:eb:
04:78:e1:9d:fe:de:b3:51:9e:7a:4d:8f:bf:98:53:e3:8b:e7:
59:79:8a:5e:0b:35:bc:bd:a0:05:1c:02:38:a5:b8:79:ba:c6:
62:7a:39:1b
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz
NjQ3RjExMC8GA1UEBRMoNDY0MTkwN0ZFNUY0NzNGMTg5MDZENDZBQTIwMzA3RURF
REExOUM5RDAeFw0yNTAzMjkwNjI3MTlaFw0yNTA0MDUwNjI3MTlaMBgxFjAUBgNV
BAMTDTY3ZTc5MmM3LWYyYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC8sIzJUEtgYo9gfoIxEnIGoPwSBtkU0S8lOR5Bs5NFrclM8NcpkyTG/e8ikncq
MzzpjMOg5W0PrDVTUk4dcMQY+4o3hlRkhnWYwlgkJIOKA95uDXNE8hO21ReHcdE9
FkbpALWZZEejUGsqmDnpS5TBGTZWrEFNBBC6SsYD4gZQwaAg71xqcUwfGoWxYnPA
cxGFhjTeKjfq2YCM2ZRd8hFtjhvQf4AwG/Ca74iF9KF+vlvZTAr58Ko1PMhoN9qo
SuIArpbqiJ6xidfwPjEOhlP2s10Rx8eYoZenbbpyL/Z6eQ/VSe/rNoUsvwWCYZMg
zCwCYLBFtgHxwwpOuIeWTZZJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNNRc0wTY
OXyxuAF+p26i5+Y9LrowHwYDVR0jBBgwFoAURkGQf+X0c/GJBtRqogMH7e2hnJ0w
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2NDdGL0I5MUFBQTc0ODZE
QjExRUZCQTRENUYyNkM0RjlBRTAyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5K
MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG
RDFGRjIvUmtHUWYtWDBjX0dKQnRScW9nTUg3ZTJobkowLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2
NDdGL0I5MUFBQTc0ODZEQjExRUZCQTRENUYyNkM0RjlBRTAyL1JrR1FmLVgwY19H
SkJ0UnFvZ01IN2UyaG5KMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAJLoz2nA8VsNGZv93CnxmmwQ3NHfXtNFxS83Ajyu3AbMVgTuMxZcVtXx
ZmF2NGZ4tsGyQyPG201tV145BsT1msxI+4qvVDKE8fBaEnmFu4fpOhfgQXFe9ocv
K2MYxSXBUisZz9QdyE1aohD8olpz+ouwSmyXP4WJtdETPDF8Xxew4P9Iq+BKnLBV
BXMGhMEopIEP7d/onPPeyysFti29WobGJSMUUmUeFX18ChCeN9KjmmZSukYIPiXH
dZ0Mq++fghGvSgARWbZcGJvs2jTt7FwomxW8O7ZM6wR44Z3+3rNRnnpNj7+YU+OL
51l5il4LNby9oAUcAjiluHm6xmJ6ORs=
-----END CERTIFICATE-----
Generated at Sat Apr 5 18:50:40 2025 by rpki-client