Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft
File: JnQ7Hk4OkKGbJAwJNpecojdojfI.mft (raw, json)
Hash identifier: 2rtN4VxrbQhQFkXlBawr7tX8dmY1Au9w5zRZizAnfiI=
Subject key identifier: 20:62:6E:7E:46:C7:C9:D6:A9:B0:AD:94:C4:58:47:7D:F3:83:E4:60
Authority key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2
Certificate issuer: /CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2
Certificate serial: 16B0
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft
Manifest number: 168D
Signing time: Fri 28 Mar 2025 16:48:24 +0000
Manifest this update: Fri 28 Mar 2025 16:48:24 +0000
Manifest next update: Fri 04 Apr 2025 16:48:24 +0000
Files and hashes: 1: JnQ7Hk4OkKGbJAwJNpecojdojfI.crl (hash: q+xcO4Tbev8eBb+W/xpoXt6+2amQCcoRDHpOK5km5OE=)
2: DED757CC013811EF8A7E136EC4F9AE02.roa (hash: i/Bdlwtsw60KlWyTtnZoHMYWyMWkX8rBZXwz4SUYdDY=)
3: CB91C8D2514D11EEADBDDC4DC4F9AE02.roa (hash: x5fSlx3nNKz6ifMgnnFr+DL48Yd9QT9h8VtP+zrrY4c=)
4: AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa (hash: 9PGVW+39KLlj0WI9eJ5OovuG1UvnRDi3eMzS7oZFC4g=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5808 (0x16b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9144F59
Validity
Not Before: Mar 28 16:48:24 2025 GMT
Not After : Apr 4 16:48:24 2025 GMT
Subject: CN=67e6d2d8-ccaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c6:83:d0:cd:64:15:8c:4e:72:29:a0:ed:75:
f7:92:e2:01:08:8e:73:ef:42:02:75:fe:24:dd:e4:
26:88:27:0e:47:09:89:53:d2:86:dd:da:3e:68:c0:
49:d9:bf:9a:3e:49:55:42:9c:65:07:dd:27:95:01:
b7:b0:7d:1e:c3:15:db:7d:28:07:43:42:27:92:cf:
65:ac:46:33:7d:e0:6d:27:d8:1a:ae:e0:f8:42:be:
d8:c8:3c:e3:c7:d8:33:7f:fb:12:0a:50:18:5b:4d:
6a:06:f4:9d:b0:2a:c6:ff:2a:a8:ae:3c:76:ad:ee:
56:d3:45:c4:ae:2b:70:d1:c3:22:b7:67:67:cf:d4:
99:4e:9f:21:b9:0f:f4:94:e7:fb:92:01:42:98:64:
ff:9a:8c:dc:95:dc:07:3d:f8:dc:62:d3:c4:a6:4d:
e2:cc:dc:a3:a4:14:1c:4f:d0:08:85:31:39:f2:68:
4b:35:66:0b:05:1f:42:24:7c:84:6a:c9:e7:43:cd:
4b:9b:a5:c7:7f:b8:1d:1c:99:03:7e:59:48:4a:07:
86:97:2b:8f:87:1c:59:99:47:0e:10:8e:02:3e:d6:
14:01:55:53:69:25:bf:6c:04:0f:07:6b:ce:ce:82:
17:73:5d:37:09:a7:9f:62:58:75:b6:e5:f3:e2:01:
23:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:62:6E:7E:46:C7:C9:D6:A9:B0:AD:94:C4:58:47:7D:F3:83:E4:60
X509v3 Authority Key Identifier:
keyid:26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
69:33:60:6e:8a:78:97:d9:04:ad:fd:b0:46:fb:33:ed:f9:f1:
da:ba:43:da:c4:d0:de:d7:ae:7f:b6:4c:27:24:75:5e:dc:21:
e8:95:e6:a3:d6:88:d8:60:b1:89:01:01:d8:a9:4a:47:f4:82:
7b:8a:a2:38:5d:d8:65:9b:85:40:25:bc:99:e9:1a:0e:32:c1:
cf:a3:37:a0:70:30:26:ee:22:7d:38:65:30:49:fe:74:7e:da:
ba:71:08:f7:db:36:9a:ba:2a:9d:9a:5f:17:55:a9:22:7d:8d:
07:0e:97:16:b8:e8:23:3e:58:bc:11:8a:8f:c7:c3:13:b7:f4:
5a:d9:d0:4a:7b:f8:64:31:9e:55:7f:76:24:47:d4:2b:45:cf:
48:2f:47:bd:49:56:5d:5a:52:79:84:09:c9:e1:9c:c5:d5:50:
8d:07:13:aa:5a:b3:20:5d:16:b6:72:3f:1d:cf:b8:ed:29:f3:
89:08:b2:84:d2:00:22:11:5a:f8:48:b5:86:da:3d:ea:0f:2d:
11:22:d5:82:d4:49:86:87:48:75:e5:9a:e6:86:d6:71:6f:68:
aa:83:4f:ef:df:d6:36:08:dc:b8:ed:3e:01:e9:eb:91:3d:2d:
39:af:c0:25:89:33:db:c6:cb:c4:ec:c7:a1:68:7c:02:4a:7a:
e0:06:0e:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 01:29:18 2025 by rpki-client