Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft
File: bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft (raw, json)
Hash identifier: sqQ/ao7Ehqbu7kD8XYfiQsjulgAWQwdOURf9r2QpwTk=
Subject key identifier: D5:A0:5F:86:57:5B:11:4D:2E:2C:DA:62:6D:28:F0:17:D3:E7:91:B1
Authority key identifier: 6C:8D:FA:04:3C:22:B8:A2:7E:AB:60:47:0A:F4:06:60:24:A6:84:40
Certificate issuer: /CN=A913DF8A/serialNumber=6C8DFA043C22B8A27EAB60470AF4066024A68440
Certificate serial: B9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bI36BDwiuKJ-q2BHCvQGYCSmhEA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft
Manifest number: B7
Signing time: Sat 29 Mar 2025 05:20:15 +0000
Manifest this update: Sat 29 Mar 2025 05:20:15 +0000
Manifest next update: Sat 05 Apr 2025 05:20:15 +0000
Files and hashes: 1: bI36BDwiuKJ-q2BHCvQGYCSmhEA.crl (hash: HxYeD9XIvoS/uOG+srzIFWLwXSdmATdPxirUpxczJMo=)
2: EC873B66F37911EEA9FCAF6BC4F9AE02.roa (hash: rsabR21jqtcvoz4XthX1FqvEg0esDGA7DmhhfFQxiEY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 185 (0xb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913DF8A
Validity
Not Before: Mar 29 05:20:15 2025 GMT
Not After : Apr 5 05:20:15 2025 GMT
Subject: CN=67e7830f-4787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a4:4f:2f:65:15:f6:95:da:b8:bf:f1:1e:d3:
f6:e5:bc:4c:e4:23:e6:d9:f1:99:f9:58:d0:a4:5a:
59:45:2a:48:12:a2:f7:36:ce:e6:29:9c:8c:2b:b2:
c8:71:e6:27:41:b4:2a:9d:09:3d:42:c1:f1:e8:9c:
bc:cd:e3:6d:90:aa:86:aa:7a:1b:d7:f7:ef:e4:63:
1d:0a:9c:1a:b0:63:af:cd:38:ae:44:02:74:1a:cb:
70:28:1d:a7:7f:0a:56:a4:5a:63:be:17:95:91:19:
bb:b1:c1:2f:1a:04:d9:66:a5:cf:f3:a4:66:b3:f1:
12:21:74:d5:c7:a1:dc:c6:ae:ac:7d:d1:1c:9c:9d:
3e:3c:2a:38:80:e3:d5:3e:b6:2c:e4:46:14:45:8b:
37:d7:c1:f1:f0:ce:1f:54:c6:7c:8b:bc:6a:ab:02:
4a:23:14:1c:e2:7c:f7:73:cb:1d:b2:f1:39:4d:89:
14:79:af:88:7e:5b:aa:62:0d:31:8f:f6:50:ff:a7:
c4:9a:0a:3e:66:50:a3:cd:2c:9e:3f:3e:58:7e:48:
3b:f7:78:6e:17:90:97:d6:7d:cd:be:ea:09:1a:23:
4b:c6:4a:9b:b5:13:55:24:be:58:b2:21:be:0a:d2:
ef:63:d9:ca:3a:fe:4f:23:69:07:4d:dd:4b:94:a5:
79:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:A0:5F:86:57:5B:11:4D:2E:2C:DA:62:6D:28:F0:17:D3:E7:91:B1
X509v3 Authority Key Identifier:
keyid:6C:8D:FA:04:3C:22:B8:A2:7E:AB:60:47:0A:F4:06:60:24:A6:84:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bI36BDwiuKJ-q2BHCvQGYCSmhEA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2b:da:5f:2f:68:3c:f9:a4:f9:29:44:44:fd:72:49:bc:81:60:
e3:d3:82:77:d4:6a:36:94:cd:11:df:f6:68:30:0e:76:5f:b5:
2b:b3:f3:8a:67:4b:61:a9:11:d3:cc:62:ab:f9:46:d7:85:d2:
86:31:aa:61:2c:bd:99:d5:7d:a9:1a:6a:1e:81:33:2f:8b:74:
d1:4f:f8:5f:04:bc:6c:fc:55:ee:3d:bb:de:85:f4:52:38:02:
fa:50:cc:0e:c0:4d:8d:fb:80:4c:a1:a5:aa:64:65:d5:ea:fc:
a0:82:85:61:71:83:e9:4a:de:22:fd:dd:7e:22:03:a2:55:6f:
5e:99:6e:49:de:c5:b1:71:70:52:2b:13:d2:a7:a2:dc:86:c7:
a2:19:62:48:3f:96:b9:f1:4c:5b:07:2a:24:68:e9:db:57:e4:
e5:4e:c4:ef:25:51:da:15:3d:43:99:fc:60:8f:d7:21:03:43:
49:22:ea:ce:0f:8f:1a:15:b5:85:6f:ad:af:69:6b:66:e5:99:
00:d8:2d:99:90:10:3f:8f:6c:37:99:6e:9a:c4:48:9b:41:a2:
b1:98:98:85:32:41:50:5c:d1:7b:dc:32:8d:67:1b:d8:32:6c:
bc:82:0a:bc:bd:61:b9:3c:57:ac:f8:80:23:58:e7:2b:0e:01:
7e:46:0a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:23:13 2025 by rpki-client