Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft
File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json)
Hash identifier: zPwVutYnjMCmPG6XwGedqNvHtJG7wO4BVfYqcaRVAjs=
Subject key identifier: B3:43:0B:75:C6:04:E6:24:4D:12:88:58:21:9E:4F:7A:F7:5B:F8:79
Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3
Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3
Certificate serial: 0A60
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft
Manifest number: 0A57
Signing time: Fri 28 Mar 2025 19:53:52 +0000
Manifest this update: Fri 28 Mar 2025 19:53:51 +0000
Manifest next update: Fri 04 Apr 2025 19:53:51 +0000
Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: QHjSrfhQIxhdesmPz8VLleN8/AgGEDu09AVpUQrsGJA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2656 (0xa60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915802B
Validity
Not Before: Mar 28 19:53:51 2025 GMT
Not After : Apr 4 19:53:51 2025 GMT
Subject: CN=67e6fe4f-7122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a9:f6:c8:c9:83:df:0e:04:6f:ac:1a:07:77:
2b:d8:45:41:42:1a:e9:5b:d0:9f:6e:0c:e0:cc:07:
9f:13:7f:cc:ac:7c:28:6c:06:c1:dc:cd:64:c1:99:
68:e3:8e:12:dd:b5:0f:51:0d:35:4f:e8:dc:9b:01:
9b:a7:1f:5d:d0:ac:c0:2b:4e:dd:e3:23:cf:b4:2f:
30:ce:4c:cc:8a:7a:14:f7:98:18:e2:ca:0f:a3:85:
95:8c:63:57:ad:32:8b:7b:77:6c:ad:77:4c:ad:4d:
59:9f:2d:c9:d8:f8:cc:2a:c9:ac:0e:d4:4a:c1:a3:
2a:89:fb:d0:e2:c0:db:0a:b8:a0:78:3b:18:12:95:
01:f5:35:69:42:5d:0b:f6:00:0e:2b:86:24:70:99:
d0:b7:8a:27:00:b4:7f:8e:c0:78:0e:52:c3:f0:30:
5c:2a:19:38:64:a5:dd:fb:1d:7b:96:25:e6:b4:16:
1f:16:4a:6f:db:f4:3f:31:52:2d:a2:6f:64:b5:82:
9f:b2:bf:82:b9:06:e4:0e:08:1c:10:c7:85:b5:8e:
03:17:79:a9:9c:ac:db:5f:a5:b2:44:01:d4:0a:b1:
1c:29:d9:56:5a:d8:25:3c:db:52:0b:80:9c:4f:2c:
53:4f:1e:7c:91:4d:b4:36:ec:19:d0:56:3e:20:cb:
cd:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:43:0B:75:C6:04:E6:24:4D:12:88:58:21:9E:4F:7A:F7:5B:F8:79
X509v3 Authority Key Identifier:
keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
49:e6:ba:19:b8:fb:8d:6f:39:dc:77:80:c7:ac:c1:c7:ff:3a:
99:d4:6d:6c:f2:6d:5e:8d:78:86:3a:e8:88:38:09:6b:fd:8b:
14:93:cb:b0:28:eb:01:44:d8:0c:11:93:1b:c8:28:e6:1b:05:
a7:67:d7:da:7e:68:5c:a0:95:ab:8b:41:82:3d:27:74:62:78:
48:45:3a:6c:07:0f:a4:98:0a:f1:17:e2:47:f1:12:96:e4:6a:
eb:8b:69:b0:10:04:6c:4d:24:ff:f5:be:cf:dc:a3:f1:dc:d4:
df:64:41:b1:62:8d:72:f7:4d:cf:38:05:9d:b2:06:4a:bd:b1:
b5:1c:5b:4d:21:d4:5e:dc:41:53:0a:33:37:6d:dd:42:c6:33:
de:19:07:1d:cc:b0:ff:09:10:cd:39:9e:d5:a5:a2:5b:fe:bf:
9d:6a:cd:b8:52:ab:58:56:5d:04:de:aa:a5:9e:a2:f6:fe:49:
72:e8:28:02:5d:0b:71:2f:5c:8d:20:dc:04:45:01:7e:7a:d7:
5d:b9:97:71:00:4f:4d:a7:c5:42:0b:87:72:26:c0:7a:8f:be:
7d:05:2c:6c:33:a8:5d:60:79:ae:04:52:12:78:88:86:5c:14:
a8:95:95:52:ad:01:a1:00:b3:f3:4d:c8:0f:ba:c2:e6:74:70:
f6:72:e8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:28:31 2025 by rpki-client