Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft
File: xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft (raw, json)
Hash identifier: bkaLzvUN3Gmi25PCe6cqfvZ8lQJl6GLLGnMgckhHwNQ=
Subject key identifier: 1B:E7:5E:9C:13:1A:95:54:2A:F3:7C:3F:20:43:EA:CE:7D:97:6A:A5
Authority key identifier: C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44
Certificate issuer: /CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44
Certificate serial: 0623
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft
Manifest number: 061E
Signing time: Fri 28 Mar 2025 22:59:12 +0000
Manifest this update: Fri 28 Mar 2025 22:59:11 +0000
Manifest next update: Fri 04 Apr 2025 22:59:11 +0000
Files and hashes: 1: xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl (hash: tcvQpMOIZGzRzBYVOAP+ZxH1PWLlKM/FmQpNYxTLkhQ=)
2: 807CB298903A11EBA9783756C4F9AE02.roa (hash: HcRkeL0L46StqN8XUYCiDhZBU5a1szFT/RluEKL79UI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1571 (0x623)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9157B66
Validity
Not Before: Mar 28 22:59:11 2025 GMT
Not After : Apr 4 22:59:11 2025 GMT
Subject: CN=67e729bf-5e6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8a:de:24:14:75:ad:6f:77:d4:37:ff:09:08:
30:63:af:3f:8c:71:f3:60:28:8a:48:6a:b6:a1:59:
2c:05:2d:0b:35:d2:e8:07:4d:ae:7c:fa:bf:79:65:
f2:02:57:1a:58:11:38:1c:3b:bf:ab:ea:2b:e9:b8:
ed:ef:e0:af:14:d2:0c:a2:f1:a5:b0:29:2f:fa:6a:
9f:f1:7a:d2:bb:5b:c7:ce:33:3e:64:05:92:ec:17:
46:f8:50:ef:b3:2c:39:fa:b8:7f:0b:06:a8:4f:f2:
5b:9b:f1:58:42:66:8b:79:2a:b7:44:ec:dd:cd:ce:
bd:f3:47:d2:3c:13:1b:ec:14:f7:ef:47:ed:54:52:
de:06:11:8c:1d:bc:e8:db:36:00:48:92:16:9b:b2:
59:a8:79:e1:5f:57:33:64:f8:2f:2a:0d:26:31:7c:
f7:5b:f4:ea:9f:60:9e:43:5a:4a:73:70:91:42:21:
d0:e6:fd:bd:b1:63:54:16:bd:79:3e:fd:22:28:59:
b2:73:b5:b9:3e:bd:18:4b:8c:4f:88:94:4c:32:86:
fb:15:e2:f5:a1:07:01:5c:31:2f:48:ad:d6:e5:a7:
c2:aa:68:0c:4a:78:ee:10:95:eb:ec:28:04:67:94:
52:60:ca:f5:fe:f0:a4:03:93:60:0d:4c:8d:a8:b8:
68:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E7:5E:9C:13:1A:95:54:2A:F3:7C:3F:20:43:EA:CE:7D:97:6A:A5
X509v3 Authority Key Identifier:
keyid:C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b4:54:32:5a:c4:e8:81:3b:8b:e5:3a:e5:9a:1b:5a:2e:26:a1:
df:da:6a:2f:b2:66:83:55:77:47:41:75:df:89:9d:d4:63:48:
f2:d4:52:39:71:04:86:86:1c:6a:1a:bb:4f:e6:75:d2:a5:1a:
39:ab:27:02:1a:23:50:ae:5b:ed:d4:bb:39:77:04:e8:28:bf:
e3:e8:2b:9c:22:91:47:2c:be:c0:de:4a:52:cd:43:8c:2f:9c:
69:82:7d:00:7f:b6:c9:81:4b:26:92:c6:f3:a7:f5:16:c9:39:
d0:10:26:45:63:2d:d5:f3:51:dc:a0:d5:7f:1e:91:e0:93:f3:
75:88:ba:c7:c4:33:9c:d7:8f:78:8b:45:f5:59:b2:dc:07:6e:
16:a8:5e:b1:a6:fc:be:85:05:ac:f1:5c:f8:9c:5d:3d:c8:2a:
38:1f:2c:b2:21:b1:5b:55:d4:81:07:1e:a7:58:41:06:d3:e8:
0b:a1:98:6e:94:f7:27:dc:c4:c8:d0:67:6b:3a:80:bd:eb:92:
6a:92:96:ea:4e:74:2b:ae:42:01:ea:a0:55:d4:da:6e:0e:42:
3b:e6:2e:b7:24:07:32:37:27:98:20:f5:b9:cd:a1:2b:1d:27:
4e:23:60:b0:a8:e8:a9:e2:e3:13:a6:c3:3a:b6:b8:ba:2a:93:
25:5b:68:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:25:02 2025 by rpki-client