Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft
File: RYBbVYDVFRl9GmFa1myLnUhU9eo.mft (raw, json)
Hash identifier: dtuuXFwREIsfxn+GVUj2qXU7ETLANsQ35X1ZhmHW5V8=
Subject key identifier: F5:B9:0E:48:84:55:F7:99:FA:E4:B4:42:30:FA:56:5F:F6:A8:83:F6
Authority key identifier: 45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA
Certificate issuer: /CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA
Certificate serial: 17C5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft
Manifest number: 17BC
Signing time: Fri 28 Mar 2025 16:40:46 +0000
Manifest this update: Fri 28 Mar 2025 16:40:46 +0000
Manifest next update: Fri 04 Apr 2025 16:40:46 +0000
Files and hashes: 1: RYBbVYDVFRl9GmFa1myLnUhU9eo.crl (hash: plIc6RbN6h3J5XU7ZJzWSGpfY5A8QMYXW5B464IA7+k=)
2: 94A1F97A369711EA866E381CC4F9AE02.roa (hash: KWbJbgpGfDdYPVO+KIuyWusqQxr6PU0FBc6ESlEd+IQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6085 (0x17c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91589E7
Validity
Not Before: Mar 28 16:40:46 2025 GMT
Not After : Apr 4 16:40:46 2025 GMT
Subject: CN=67e6d10e-851e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e0:cf:d9:e7:0e:91:54:c9:6b:65:5d:4f:2a:
ed:10:cd:e8:80:7f:f6:70:60:bf:3c:50:9e:7d:65:
f2:ae:a2:02:91:2a:32:c8:f3:50:a3:17:50:e0:14:
b8:84:48:16:b5:7c:be:93:d9:cb:ea:e0:13:c1:c7:
78:a7:f7:13:d8:e9:11:f0:61:63:8c:4d:1d:60:86:
c8:a8:db:ee:5f:99:39:a7:33:3a:a7:5e:12:41:da:
6c:a3:56:89:d0:6c:9d:bd:c9:29:46:ab:3e:fa:1b:
31:36:75:70:6f:5d:93:99:1f:18:bb:b1:26:f6:97:
91:82:e6:09:78:00:0c:ea:66:0b:5a:4c:dd:38:d2:
d4:df:0f:0a:f5:d9:c1:e8:5f:ec:7f:eb:57:bc:6e:
18:ed:95:13:99:41:f5:e6:48:33:51:ca:42:e6:2a:
6e:ec:a3:36:49:5c:80:47:2f:73:8c:f4:d8:4b:b5:
4a:77:6d:6c:aa:f6:51:b0:35:ca:18:9e:ff:87:1a:
05:77:70:ef:e7:19:12:ab:9b:71:fa:1b:e6:b6:fd:
01:d8:be:c3:13:a3:5a:da:97:ef:b2:a8:74:e5:c0:
09:f1:ca:d0:a3:cc:43:21:64:a2:f1:87:d9:c8:f1:
36:f7:6c:62:04:69:fb:d0:3e:07:cd:24:0a:17:79:
c4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B9:0E:48:84:55:F7:99:FA:E4:B4:42:30:FA:56:5F:F6:A8:83:F6
X509v3 Authority Key Identifier:
keyid:45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ac:a0:94:69:be:a9:1d:d1:61:33:a7:09:5c:c1:48:a1:21:a8:
00:ed:a8:65:04:23:46:ab:93:b0:db:42:2d:1d:7f:6a:43:97:
38:23:fc:1f:ac:50:48:53:88:dd:db:50:a1:2a:d0:64:c9:77:
b1:7d:d2:69:cb:2d:31:01:f8:89:1b:b5:d4:37:c3:43:97:15:
75:12:80:b3:61:11:62:0a:2f:91:d5:aa:f5:45:93:9d:45:c8:
94:19:fd:57:9c:73:ae:6d:e6:d4:04:13:35:13:d0:d3:21:05:
2c:95:1d:95:17:f3:51:1d:3b:cc:8b:0b:49:76:e5:97:d0:b9:
63:85:1d:10:0a:5a:c3:f9:74:48:8d:fb:f5:f3:7b:9e:d4:e0:
97:f0:43:9d:37:37:78:56:cd:3f:55:02:1f:55:fa:05:5f:54:
95:68:8a:7c:90:76:34:f7:a5:10:3d:26:46:8f:b9:5d:aa:64:
57:d9:96:c3:3d:47:df:3f:57:d9:3c:ef:28:b1:73:38:fd:3c:
5d:12:85:67:44:14:02:cf:1b:07:93:9f:c7:ad:ba:29:58:7c:
eb:e5:57:ad:f5:17:68:97:7a:79:50:ba:ef:41:77:48:44:6a:
4d:81:50:a0:5d:24:cf:96:e7:4f:be:4b:f3:49:94:79:03:26:
ac:26:d7:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 10:27:27 2025 by rpki-client