Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.mft
File: E3NT0OjBRaWAywC8MiIInEBIrlE.mft (raw, json)
Hash identifier: VJ0kzlawbsOdRvED2YWGSTPxSExH9bOlRkjopEEkJPk=
Subject key identifier: 97:31:C8:9D:CA:59:87:38:8A:59:84:B3:2C:65:49:3E:A9:80:44:3A
Authority key identifier: 13:73:53:D0:E8:C1:45:A5:80:CB:00:BC:32:22:08:9C:40:48:AE:51
Certificate issuer: /CN=A9153490/serialNumber=137353D0E8C145A580CB00BC3222089C4048AE51
Certificate serial: D7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3NT0OjBRaWAywC8MiIInEBIrlE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.mft
Manifest number: D1
Signing time: Sat 29 Mar 2025 05:04:13 +0000
Manifest this update: Sat 29 Mar 2025 05:04:13 +0000
Manifest next update: Sat 05 Apr 2025 05:04:13 +0000
Files and hashes: 1: E3NT0OjBRaWAywC8MiIInEBIrlE.crl (hash: C9kXxEVoi++6MODEyQLQw3gcSTZOBMlc2+3goafNXn0=)
2: 0FE13C92EBB411EE9D86095BC4F9AE02.roa (hash: dRNilESPTQz/Q5N/cLbpDlE/USFMgoC4F5PCG8xDhno=)
3: 1040CDC4EBB411EE9D86095BC4F9AE02.roa (hash: ONnLvdYQIbTLtbVrwQpfNQIQVF7OagH6RPbHX1a91NY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 215 (0xd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9153490
Validity
Not Before: Mar 29 05:04:13 2025 GMT
Not After : Apr 5 05:04:13 2025 GMT
Subject: CN=67e77f4d-79be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:67:e4:31:53:27:3b:43:b0:3b:87:30:a8:08:
43:c3:4e:e2:8f:f6:51:64:ef:0b:58:b8:98:c8:3a:
46:9c:05:ed:bf:da:2f:08:ad:b8:55:5b:82:00:17:
c8:d2:3b:b9:9c:53:79:22:97:8a:c7:c8:0d:be:75:
31:fb:36:95:5f:ce:9e:0b:a3:02:b4:aa:85:73:be:
75:65:a9:fd:c9:f7:29:5c:0d:cb:72:8f:2e:ab:15:
08:ff:f3:a8:99:e9:7e:23:6f:b5:0e:45:7a:8d:b2:
15:99:93:59:aa:8a:24:11:0b:ef:bd:f5:b8:62:5e:
4c:fb:16:93:42:b6:fa:c7:7a:42:29:4f:dd:ae:79:
cc:a4:ca:81:f5:03:93:a1:06:f9:1e:ac:32:d7:03:
1b:b7:af:5b:6b:4d:f8:6f:39:7a:0c:7f:88:7a:ff:
12:9b:8d:0a:15:4c:6c:a5:48:ed:52:75:14:31:84:
3a:39:d8:91:64:16:d1:19:32:6b:85:87:50:e6:e2:
2c:8e:e8:12:45:f3:dc:96:a1:25:f5:cb:de:30:a3:
b7:de:3f:e9:fb:5e:21:20:fa:75:e1:36:dc:db:ca:
f6:97:a8:02:53:12:c0:62:6c:b6:1d:82:c0:32:f0:
3e:f5:ae:69:76:a6:38:87:4a:31:13:7c:c9:24:a1:
61:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:31:C8:9D:CA:59:87:38:8A:59:84:B3:2C:65:49:3E:A9:80:44:3A
X509v3 Authority Key Identifier:
keyid:13:73:53:D0:E8:C1:45:A5:80:CB:00:BC:32:22:08:9C:40:48:AE:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3NT0OjBRaWAywC8MiIInEBIrlE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4c:95:4e:44:59:e9:48:f5:f3:cc:7b:6f:53:a9:61:8e:1d:8e:
fb:15:7d:30:e0:02:a6:ac:96:7d:b7:08:8a:d3:8c:99:ca:92:
e1:c6:5a:6a:2f:ec:80:b3:80:dd:9b:f2:0a:05:44:4c:a0:39:
d4:30:9b:dd:9c:95:86:cf:19:d3:80:cc:00:1f:6c:b1:90:c9:
cf:cd:52:54:11:1f:33:26:5d:33:56:63:d9:aa:ae:d1:50:ad:
78:6c:dc:1c:1c:a9:62:25:78:0f:c5:a0:f7:0e:0b:8e:00:71:
f1:5a:dc:80:04:92:bc:7c:b7:1c:e7:d7:56:bf:21:a7:fa:5d:
e5:d0:1d:61:64:fc:77:b0:c7:f2:30:54:92:31:34:4f:ec:57:
bc:df:cb:93:d7:2c:f4:79:95:91:81:8e:1e:18:1a:54:22:6f:
36:13:e1:c2:a9:f4:0a:26:a5:01:16:0f:40:50:36:f5:a9:19:
37:99:ea:b4:a2:88:e5:ab:2e:10:64:8b:52:72:57:58:78:35:
2e:e7:39:60:ca:04:05:79:e3:c5:b8:88:68:5c:c6:93:7b:e0:
76:4d:ec:b9:e8:81:f0:4a:66:db:d9:0d:3f:a6:70:4e:65:c1:
b7:20:37:d7:d7:14:3a:f2:f3:c8:61:9d:40:78:2b:c9:87:7a:
92:a5:8a:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:27:38 2025 by rpki-client