Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft
File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json)
Hash identifier: uxFC1YoQ3cBl5OzP/9+I52pdJJtZMrNyHVCZBlvD5CE=
Subject key identifier: FC:3A:96:A5:99:55:DC:1D:EB:CA:11:F8:5D:56:F9:16:3C:B3:3E:66
Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19
Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119
Certificate serial: 09E8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft
Manifest number: 09E1
Signing time: Fri 28 Mar 2025 20:09:29 +0000
Manifest this update: Fri 28 Mar 2025 20:09:29 +0000
Manifest next update: Fri 04 Apr 2025 20:09:29 +0000
Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: 1X0okp18rnp35K8m5zjT+gsUJl+/bf88mavF+m/xJ78=)
2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Cq3lv6Zk0IbD7VRfp29jZdbfC7fvyWbXvi/cd+0Sx0c=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2536 (0x9e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914E3F5
Validity
Not Before: Mar 28 20:09:29 2025 GMT
Not After : Apr 4 20:09:29 2025 GMT
Subject: CN=67e701f9-dabd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bf:44:1e:43:9a:0d:0f:98:bf:09:52:06:9e:
25:5e:d7:42:b5:86:b0:16:73:ed:ba:c1:78:5e:07:
de:7a:ca:e4:1a:96:3f:96:c7:97:e8:a9:dd:72:78:
b7:7e:57:79:d1:bd:a2:48:88:de:2f:4c:1f:bf:b5:
ae:45:33:7e:79:64:56:eb:27:20:6d:ff:47:d7:e5:
70:32:5f:70:b2:aa:44:ba:4f:f7:b0:dc:bd:86:30:
91:41:96:5c:5c:ed:19:8b:6d:e2:bf:4c:3f:d4:6e:
1f:38:56:29:9e:57:97:60:b8:55:95:93:c2:14:8d:
8c:9c:bb:80:64:4f:db:ba:32:93:6f:55:ad:8c:06:
e5:49:cf:ea:62:b3:1f:1e:9f:93:66:fa:f9:1c:27:
58:23:de:6c:d2:59:2d:a0:c1:dd:f5:9e:6f:c9:b1:
cf:52:a2:3c:d0:97:c7:7f:01:7b:7c:6e:ec:9b:0d:
3c:4c:3f:05:59:b4:c1:3a:c4:a1:06:65:68:73:67:
7e:dc:0c:6f:67:28:fa:2b:f4:55:8e:1a:47:43:cd:
f6:97:30:28:dd:91:3d:3d:0e:e4:75:88:bc:40:ff:
bc:c3:98:f0:8a:7a:72:40:02:74:5a:47:5b:e7:23:
01:9d:b3:74:ae:01:26:f4:06:23:67:d2:b3:73:90:
f6:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:3A:96:A5:99:55:DC:1D:EB:CA:11:F8:5D:56:F9:16:3C:B3:3E:66
X509v3 Authority Key Identifier:
keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2e:3e:0c:a7:bb:6c:f4:cf:0a:3e:63:b8:d4:68:d1:ea:03:15:
63:86:d7:20:91:71:ad:96:60:7e:f7:33:b3:9e:13:c7:35:73:
43:2c:15:c3:04:f1:b8:16:43:60:f8:ef:c9:82:03:e3:57:35:
96:96:20:f2:c6:ae:db:20:fc:a2:57:63:0a:8b:b9:7f:c6:d7:
30:7d:8a:a2:74:0f:b5:9a:c2:e3:4e:e3:7b:a8:32:28:bc:4b:
11:35:e5:09:a2:34:0d:fc:bb:b4:1f:58:07:73:6a:33:85:49:
88:a8:2c:47:ca:fa:04:84:80:8e:15:59:8a:78:90:e3:a7:5e:
d6:98:0e:96:43:2c:9c:11:fd:ba:e4:d5:61:07:e6:3a:a9:ff:
ce:9f:0b:4c:64:29:78:3b:59:80:5f:47:4c:ca:72:ee:03:f4:
00:53:52:5e:40:f1:b7:e2:b4:af:d9:3f:31:ae:4f:28:ad:1c:
1f:73:ef:a1:3c:54:c9:4d:b4:a0:ea:ef:5d:74:e5:cd:c5:9b:
20:ef:8a:75:87:69:a1:cb:9e:d3:61:31:fa:f4:f0:03:54:f9:
d6:2d:8f:1e:4f:32:21:0b:3b:00:a0:48:ae:a6:09:6b:e8:51:
70:10:bc:15:87:85:57:1a:ae:57:bf:19:ef:6e:94:1b:80:17:
da:75:dd:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 16:57:48 2025 by rpki-client