Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft
File: 9fHi3rMlVisihf-LXeJd8srfdwc.mft (raw, json)
Hash identifier: HiovDY2iFlByatYmg3FSWT2GSvaDFJot8Q1i354sFJA=
Subject key identifier: 78:A0:6B:FF:74:BD:6A:4C:A8:0A:AA:4F:F3:55:FA:E3:43:EB:5F:1F
Authority key identifier: F5:F1:E2:DE:B3:25:56:2B:22:85:FF:8B:5D:E2:5D:F2:CA:DF:77:07
Certificate issuer: /CN=A915B4B5/serialNumber=F5F1E2DEB325562B2285FF8B5DE25DF2CADF7707
Certificate serial: B7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft
Manifest number: B6
Signing time: Sat 29 Mar 2025 05:19:06 +0000
Manifest this update: Sat 29 Mar 2025 05:19:05 +0000
Manifest next update: Sat 05 Apr 2025 05:19:05 +0000
Files and hashes: 1: 9fHi3rMlVisihf-LXeJd8srfdwc.crl (hash: b3aX1TpFf/rlKwXnt7yy/+tlbWb7AyqP5C3Nh8xTRFQ=)
2: E0207030F13611EE869F9E34C4F9AE02.roa (hash: OsYm03YOb1sFS9q082zuXs6miPfh1tqBo5SwMn83UWQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183 (0xb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915B4B5
Validity
Not Before: Mar 29 05:19:05 2025 GMT
Not After : Apr 5 05:19:05 2025 GMT
Subject: CN=67e782c9-f45e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4f:3a:25:b1:cf:1e:14:61:26:99:12:52:a8:
84:0d:ad:80:c3:67:c3:1c:e6:5f:bb:9a:56:94:66:
5d:64:b7:f9:ad:b9:a5:f8:3b:3c:e5:e8:0e:18:22:
a0:85:6f:58:69:ed:0e:d3:96:dc:83:00:bf:96:76:
f1:ad:b5:49:40:e7:fb:42:b0:9d:af:58:ae:f4:92:
66:33:53:ea:90:ad:e0:dc:b5:f1:eb:ac:7c:0d:69:
44:cd:5b:55:88:83:03:f1:70:d3:9d:9f:c7:8a:cb:
aa:9d:44:7b:9d:ee:fc:2f:ee:fa:23:f1:1b:61:5b:
91:af:a9:3b:52:0f:87:01:2b:c0:5e:8c:68:7f:ce:
ec:98:e6:47:77:85:fc:f3:82:b4:1c:6d:1d:48:3b:
90:74:51:95:54:2a:3b:ca:b9:a8:16:73:62:06:c0:
2f:51:4b:29:8f:a8:c2:12:5c:03:2e:9d:ec:ac:9a:
55:59:b6:3b:bb:ae:65:8a:5e:b0:9b:eb:35:0a:c7:
1b:bb:69:77:dc:c7:4f:b6:33:14:42:92:40:e7:7e:
d9:82:fa:84:32:43:81:31:6c:6d:a0:ef:cd:f5:80:
59:1c:57:e8:e1:5c:b5:9c:a1:5d:16:1a:92:f9:db:
fa:b8:eb:73:57:7a:de:0c:77:1c:43:c0:43:68:30:
47:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A0:6B:FF:74:BD:6A:4C:A8:0A:AA:4F:F3:55:FA:E3:43:EB:5F:1F
X509v3 Authority Key Identifier:
keyid:F5:F1:E2:DE:B3:25:56:2B:22:85:FF:8B:5D:E2:5D:F2:CA:DF:77:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c7:13:d3:97:f3:ce:8f:7f:b8:fb:ae:d5:27:f7:b8:08:45:b2:
ee:44:32:d8:a7:82:bf:c1:78:76:a1:cd:29:a0:2d:99:10:3a:
3e:95:a5:60:df:ba:3c:5b:0c:5a:b9:75:80:a6:12:03:09:ad:
65:c9:1d:4f:7b:c1:1b:38:d5:9c:83:c5:fa:1d:ff:6c:50:b2:
74:66:ae:9c:83:30:61:a4:f3:91:14:e3:cd:0f:17:b0:fb:22:
fa:64:70:f5:33:22:c9:53:f5:1b:c2:e0:38:68:80:d0:a3:a5:
a4:94:a2:e9:bc:69:e2:ee:14:48:30:8d:e3:6a:c4:92:7e:da:
5e:35:78:ff:c9:4b:44:f9:c2:0e:4b:1f:84:a5:0a:e3:be:2e:
f6:2f:74:5c:db:91:d3:0a:8a:41:ec:49:26:4a:91:01:c1:44:
70:81:e9:5b:7b:b2:f5:1c:62:9f:79:72:6d:85:bb:19:90:57:
b1:2e:06:91:9e:97:dd:63:f8:bb:63:49:fd:f1:a4:bf:bd:bb:
e3:f3:b0:95:6b:97:dc:c4:9f:54:65:d7:c2:5f:5c:ee:8d:59:
53:ad:70:fe:be:41:e6:5f:f3:5d:a1:c8:a0:78:8c:f8:8c:42:
57:33:4d:f2:17:56:60:6c:90:cb:6d:1c:4d:cc:39:bd:34:bc:
86:1e:40:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:39:26 2025 by rpki-client