Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft
File: 2-bH-ZCQRq41ohWw4hVErlIjfoo.mft (raw, json)
Hash identifier: LGoElWafGuRKcsL+ASzKZ7efPeSLRfuM0zQ+VhRlTA4=
Subject key identifier: 70:82:BE:98:57:F1:99:4A:CE:DC:5C:A5:B8:4A:BB:78:EB:70:45:BA
Authority key identifier: DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A
Certificate issuer: /CN=A914F697/serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A
Certificate serial: 065D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft
Manifest number: 078B
Signing time: Fri 28 Mar 2025 21:19:27 +0000
Manifest this update: Fri 28 Mar 2025 21:19:27 +0000
Manifest next update: Fri 04 Apr 2025 21:19:27 +0000
Files and hashes: 1: 2-bH-ZCQRq41ohWw4hVErlIjfoo.crl (hash: scBihS68TcD0F8/Ako1BWnFGNHL3Fo1PrEDgw+AtfkY=)
2: 1AA7504A92DD11EB9B9E993FC4F9AE02.roa (hash: C75Vrv4Uz+C6zFOBFG0FQ16ertvfsDBJQmC7BROeKb0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1629 (0x65d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914F697
Validity
Not Before: Mar 28 21:19:27 2025 GMT
Not After : Apr 4 21:19:27 2025 GMT
Subject: CN=67e7125f-a4ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bb:f0:1a:79:78:89:74:8c:7f:8e:8e:3e:71:
ba:08:aa:49:07:1e:c5:e9:2c:1b:80:28:8d:5e:61:
87:bc:ae:eb:aa:22:ec:ce:b8:ec:db:9f:32:9b:8a:
36:f4:fd:52:18:49:f3:a3:06:17:ba:e4:80:41:6d:
06:70:e3:f9:9a:52:11:94:d0:51:1c:ee:5f:89:5e:
57:10:f6:60:73:10:79:7f:a7:e6:21:42:5c:14:50:
3c:87:e9:d6:64:c9:35:55:65:66:1a:dc:e9:9f:a2:
48:4f:d8:70:dc:f9:f7:ef:e8:ed:ae:e1:23:58:4d:
d9:20:42:b6:41:f2:72:15:da:ed:bb:9f:ae:3b:c3:
39:99:e6:e6:01:08:c6:9a:29:42:21:fa:46:fa:f0:
da:2f:69:d6:7e:83:19:52:ed:3c:e6:60:72:be:3f:
80:29:b3:37:b4:1f:fc:8e:26:31:43:50:2a:9f:18:
14:0f:d9:6d:79:f1:d3:1c:4a:ef:09:bf:94:2a:0b:
97:b9:a8:54:ad:6d:15:43:b7:66:8b:ad:6f:ab:20:
44:06:11:7e:3c:74:3b:d1:7b:03:2c:0a:af:ba:f0:
03:c6:77:99:a7:2a:c9:8b:76:13:3d:3f:bd:fc:83:
e6:79:5a:0e:ec:bd:2f:09:90:31:55:92:70:3a:96:
f6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:82:BE:98:57:F1:99:4A:CE:DC:5C:A5:B8:4A:BB:78:EB:70:45:BA
X509v3 Authority Key Identifier:
keyid:DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5c:80:ea:8a:f1:e5:d9:43:af:90:ee:6e:d6:d5:6f:34:fa:56:
72:4b:7b:12:a9:e9:5e:18:ec:98:d7:b1:aa:c7:5b:1b:77:1f:
8f:c4:e6:35:d0:a6:10:06:4a:0f:a1:ca:73:c7:43:33:b4:89:
6f:85:16:66:bc:78:24:5c:c6:40:a6:bf:82:88:be:78:21:b3:
51:25:14:d0:e4:62:ef:39:73:53:6e:2f:46:8b:04:68:01:70:
38:1c:7c:e7:49:25:88:62:03:07:50:9f:f6:bd:0d:50:fd:62:
dc:ea:69:ca:aa:66:56:8f:b8:11:47:93:64:81:f7:56:05:0e:
7c:f9:1f:df:85:52:86:8d:97:7e:32:84:95:27:62:f6:81:02:
e9:55:45:90:1e:f3:1f:a9:88:45:e4:46:60:6b:a5:8f:c0:09:
24:c6:80:2d:54:54:44:96:a4:8c:7e:2e:df:e6:1f:b3:fe:f4:
ad:66:c4:ae:1c:c6:d7:bd:7d:d4:60:f3:6e:d5:0a:3a:59:32:
1c:40:d2:37:3d:aa:f3:91:56:a3:21:ef:33:8c:f5:b4:cd:dc:
da:76:2a:01:23:7b:86:9c:26:20:9c:a9:d1:33:7c:27:4f:7b:
9f:db:c8:50:60:b9:3c:5e:aa:3b:c1:30:57:85:b1:2f:a2:b8:
23:65:be:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:33:22 2025 by rpki-client