Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft
File: OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft (raw, json)
Hash identifier: 3QrfwaEwgqyJnUikhqYaCxlKrq9yeiiPY1LwWoEVei4=
Subject key identifier: 78:87:0C:26:A3:36:E7:C8:60:BB:99:D0:3A:37:A6:AB:F7:C3:B1:69
Authority key identifier: 3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B
Certificate issuer: /CN=A913B32D/serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B
Certificate serial: 03DE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft
Manifest number: 03D7
Signing time: Sat 29 Mar 2025 00:49:59 +0000
Manifest this update: Sat 29 Mar 2025 00:49:58 +0000
Manifest next update: Sat 05 Apr 2025 00:49:58 +0000
Files and hashes: 1: OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl (hash: RjSLgpHzZtWLE5qk3bJ5Q1FFD/coNQN8b6nG/1kqzFA=)
2: F2BB36DC790E11EC8EA0F77FC4F9AE02.roa (hash: 17t3m0KvoRjfHzLmSGQMixJ4h1po9W3fjkqykP9EfmA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 990 (0x3de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913B32D
Validity
Not Before: Mar 29 00:49:58 2025 GMT
Not After : Apr 5 00:49:58 2025 GMT
Subject: CN=67e743b7-c5b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b4:c0:fd:d0:6f:f2:a9:26:61:29:14:28:d7:
86:20:d9:16:25:95:3b:50:34:88:91:75:f2:d4:e5:
9e:23:7c:67:8c:66:94:9e:8e:11:92:11:6e:1c:59:
d7:06:9a:b2:2c:49:dc:f7:73:0e:de:13:48:c4:eb:
6a:da:f4:50:29:09:58:d6:f1:b2:2a:3f:35:f5:7c:
08:75:da:ad:b8:99:84:62:82:52:70:fe:87:5c:b7:
13:af:da:be:41:04:9a:58:7e:67:3f:67:94:56:3a:
72:74:cb:71:2d:46:2c:bc:67:7b:34:f7:ee:fc:71:
3e:9a:11:c4:5e:4f:96:4e:48:b3:e5:6f:a9:bc:8b:
bc:fc:ee:f6:67:1e:e7:6f:7f:89:bb:02:97:ed:d2:
e6:42:b9:65:1c:a6:db:79:f5:c9:07:dc:3c:03:43:
e4:91:8e:0a:5c:30:84:97:a2:8d:75:de:1e:77:4d:
20:da:56:59:3d:e8:c6:8d:c4:ea:76:38:24:38:77:
7b:c4:7e:17:30:53:13:24:39:63:c2:e3:6e:a4:0f:
5f:02:ce:92:dc:c7:05:f5:dc:05:85:0f:69:26:a8:
ac:7b:30:58:ce:55:1b:2e:3f:21:2c:0b:85:6c:65:
3e:7f:cf:01:73:93:b7:b3:db:34:b4:57:96:ac:ea:
2e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:87:0C:26:A3:36:E7:C8:60:BB:99:D0:3A:37:A6:AB:F7:C3:B1:69
X509v3 Authority Key Identifier:
keyid:3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
61:af:b3:39:c9:4b:5b:ed:8e:a4:48:31:de:73:36:5b:3d:67:
ee:00:56:97:2d:a3:15:c2:20:32:32:4c:54:85:b7:42:50:88:
9f:47:cf:eb:3a:9d:f3:f8:97:7d:82:da:07:23:74:8e:2c:e3:
7e:5f:fc:58:7a:d0:55:a0:4b:cb:1e:d8:f9:7d:79:10:dd:6b:
93:da:bd:53:3c:38:7d:51:07:d2:9b:0e:0f:a4:2d:12:fa:23:
e8:14:a4:07:42:09:5f:85:ee:00:6f:85:ca:ec:05:08:23:30:
88:5b:73:45:ee:22:c3:38:26:e1:fb:a9:ca:1d:d6:0c:b8:cb:
1d:2c:51:dd:61:22:bc:23:ae:c0:6e:ba:e4:17:28:90:2d:62:
bb:71:e5:28:eb:05:df:99:e5:32:da:65:0b:27:de:21:94:2e:
33:f8:b4:5f:f5:b5:47:ba:db:da:65:06:23:cb:2d:9e:2e:fe:
1e:97:e5:a0:65:ad:14:c2:a3:26:a8:a4:38:01:58:0e:17:13:
cc:92:a4:7d:50:0f:f3:1a:0e:6c:d6:fb:e3:ce:a6:8c:a1:61:
8e:27:6a:6f:43:1c:35:e8:46:38:15:94:0e:41:5d:b5:43:02:
f0:92:3a:81:6d:84:74:ca:59:c9:f8:11:a9:43:e3:3e:ae:c5:
e1:e1:8f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:46:03 2025 by rpki-client