Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft
File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json)
Hash identifier: iKOFTzeS1dRKUoI9g7ISWZieuSe2uyy2oJyYqxdYFnU=
Subject key identifier: 23:44:2C:5B:59:BB:0B:84:A9:AE:7B:75:E4:86:4C:71:1B:15:4C:E5
Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D
Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D
Certificate serial: 0593
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft
Manifest number: 058D
Signing time: Fri 28 Mar 2025 23:31:50 +0000
Manifest this update: Fri 28 Mar 2025 23:31:49 +0000
Manifest next update: Fri 04 Apr 2025 23:31:49 +0000
Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: prB2ciT459MRoLMlEJGOh3Nhj+DJevLtoLO48fo6zPw=)
2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: tl2kppVQ05tVhEGA0iZghAdvk5il8hkt04HkORheCWE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1427 (0x593)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9147B58
Validity
Not Before: Mar 28 23:31:49 2025 GMT
Not After : Apr 4 23:31:49 2025 GMT
Subject: CN=67e73166-126b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3d:10:69:87:ca:07:7f:52:54:9b:91:32:9a:
5d:c1:b6:c8:34:2b:b1:01:b8:09:20:c8:f0:9e:0e:
67:b8:ea:ba:79:04:95:ab:3c:11:59:ac:fa:e1:55:
98:b9:2f:bf:e5:d6:b5:4c:7a:31:69:e2:88:d9:e8:
de:cf:e0:50:f2:76:a4:a1:65:78:3f:bf:53:87:55:
46:23:0f:4e:d2:28:72:f5:f5:d6:02:da:fd:af:08:
39:c5:b1:01:33:f9:48:07:02:99:a4:d7:35:42:93:
01:06:3c:a1:11:97:f8:44:e6:f8:61:38:39:d2:9e:
7b:6c:52:35:7a:fc:b9:39:34:fd:aa:25:6f:f3:35:
ba:0f:1b:5f:2d:88:0c:4f:e0:ef:28:99:f3:ca:2e:
77:70:e5:83:dc:85:57:fe:00:77:84:eb:7d:42:fd:
12:46:00:18:1e:93:8c:50:a7:12:3b:9a:79:3c:f5:
31:8a:e6:c7:f2:34:fa:ba:19:5d:d2:41:a6:c0:44:
ef:b7:22:c3:f4:53:64:bf:a4:bc:5c:c2:0b:bb:c4:
58:bd:c0:d2:c3:7f:12:05:57:99:4a:b8:02:4e:a3:
6c:ff:e2:0a:81:a1:30:4a:13:be:ce:0c:4d:99:1d:
78:1f:45:a0:d3:56:4b:0d:4c:9f:cd:71:81:69:c3:
19:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:44:2C:5B:59:BB:0B:84:A9:AE:7B:75:E4:86:4C:71:1B:15:4C:E5
X509v3 Authority Key Identifier:
keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8f:3f:cd:72:d6:3b:ea:8e:c9:d4:01:92:dc:d7:15:d9:5d:f6:
93:0d:99:72:60:86:0e:37:3e:84:b2:4a:e7:f8:8d:97:6f:c8:
29:0c:ac:95:02:5f:f0:98:79:7d:44:c2:1f:65:c9:8f:68:c4:
d7:29:36:56:73:cd:c5:59:9b:ca:c7:2f:da:e9:10:d9:a4:6a:
c7:d6:3f:fc:d6:5a:04:74:e9:6d:2b:05:c1:86:96:08:fa:30:
47:e5:a8:d0:3b:41:ab:01:c3:d0:91:da:d2:ab:f1:c6:fc:0e:
1c:96:1f:87:4a:0d:04:51:62:23:da:af:fc:28:aa:13:e5:39:
6d:69:83:f4:51:f9:14:af:4a:f6:f7:f2:9d:3c:4c:2e:81:de:
04:b5:d3:68:f7:75:ab:28:ac:09:35:f2:3a:92:2c:b1:e8:0a:
2d:80:76:f8:20:25:ed:2c:4e:ca:de:98:b5:01:ec:78:9f:1b:
80:cb:cb:16:bb:2c:f8:4d:f7:54:23:55:87:db:00:20:6b:6c:
94:5a:b1:fa:a9:36:5c:42:76:c4:f9:ad:35:a5:05:d7:22:ad:
d9:fb:57:e5:b3:99:bb:34:8e:68:37:0a:07:02:e3:f3:dc:3d:
a8:4d:94:6d:1d:70:7e:ae:67:d6:1c:10:ea:18:d2:ef:05:3b:
d7:4d:14:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:54:53 2025 by rpki-client