Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft
File: A3iO4rrk2AXrzcpmGOLsGhilxOI.mft (raw, json)
Hash identifier: 7saBDsGkHDqI6vsGOUbbEYU5dmjm5nFzzEd7u0ZmvQ0=
Subject key identifier: 0B:AB:09:87:DF:41:7D:59:13:DE:4A:35:46:21:1F:A6:4D:8D:14:46
Authority key identifier: 03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2
Certificate issuer: /CN=A915FDD9/serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2
Certificate serial: 25
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft
Manifest number: 25
Signing time: Sat 29 Mar 2025 07:07:33 +0000
Manifest this update: Sat 29 Mar 2025 07:07:32 +0000
Manifest next update: Sat 05 Apr 2025 07:07:32 +0000
Files and hashes: 1: A3iO4rrk2AXrzcpmGOLsGhilxOI.crl (hash: gRsNIG4Sj+AeH5JSgfQdnJ7NeMyJFK4Lz0sgxg0a0CE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37 (0x25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915FDD9
Validity
Not Before: Mar 29 07:07:32 2025 GMT
Not After : Apr 5 07:07:32 2025 GMT
Subject: CN=67e79c34-05da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:6f:b1:0a:f2:24:cd:37:b5:90:cf:8a:9c:52:
29:a8:b1:f4:f2:5c:e7:73:54:77:44:9e:37:af:db:
66:48:36:85:db:42:ba:2a:2b:d2:76:41:da:3d:6d:
56:81:0f:1d:b4:e0:70:c3:d4:7f:cc:18:45:56:16:
bb:51:7b:97:fe:44:68:27:4e:7c:cf:78:24:f3:8e:
e5:3f:0f:11:df:53:35:0d:63:c7:2b:d7:de:99:63:
6c:66:46:31:3c:cf:ed:9a:43:7b:5e:52:74:12:f7:
54:14:fa:9c:df:0b:71:d1:a1:0a:67:45:eb:af:5c:
fd:e5:c7:f2:cb:6e:15:08:60:6b:b3:4b:da:4a:39:
61:3b:75:51:41:d6:4b:90:83:58:e4:01:6f:85:d1:
0a:5e:9e:ed:5e:1d:7c:bc:45:a2:96:e3:4f:32:5b:
4b:1e:1e:24:42:c5:d3:76:37:97:ed:1d:27:3b:c8:
f8:eb:34:4c:01:b2:0c:9e:2f:0f:f3:fe:51:37:ae:
f1:d7:82:1d:fb:67:be:85:4a:db:03:fd:7e:83:66:
dd:f8:69:9e:cb:b8:f6:54:6a:49:d0:8b:ac:c1:fb:
85:30:10:5c:b0:79:5a:9c:64:94:e8:85:a8:6b:4d:
de:2f:34:aa:38:d8:57:50:55:fe:2f:ea:b5:e7:6a:
04:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:AB:09:87:DF:41:7D:59:13:DE:4A:35:46:21:1F:A6:4D:8D:14:46
X509v3 Authority Key Identifier:
keyid:03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b1:6b:3c:ba:b1:d6:fe:6b:05:8f:97:a5:6c:2f:f2:1a:65:40:
71:ce:e2:ff:42:c7:dd:f2:31:0b:f8:8e:d1:72:35:8b:b7:28:
36:5a:25:84:20:e7:1b:f2:70:e9:46:44:64:07:cf:33:15:4e:
bf:ca:24:3a:f1:03:f8:f3:ea:02:6d:4f:de:a9:f0:7e:8a:3e:
09:0c:3d:47:0b:0f:dd:d3:85:a4:9f:a7:e9:4d:e3:63:6e:78:
00:9d:bb:ee:fa:1e:1f:77:5e:95:a4:63:78:10:d7:f7:9a:d8:
75:bb:5a:4a:8e:41:fd:54:bc:57:0b:e8:3e:70:85:7b:34:f1:
87:9d:3e:94:39:cc:94:d0:f3:d9:8e:17:9d:40:44:80:34:aa:
b9:ff:bb:5a:a7:45:0e:b0:c5:99:d5:e5:9c:8d:39:84:ab:7c:
90:22:e6:35:20:eb:be:f6:8b:1a:5f:d2:9a:de:42:33:6c:7b:
64:b3:16:98:32:76:e6:4b:cf:b1:5c:46:08:68:43:6e:30:04:
67:3e:63:80:4b:4e:5a:ac:b8:cc:51:f6:34:89:39:87:33:2c:
d4:c3:b1:86:2e:63:db:b0:60:3c:cf:e9:b9:f4:19:8e:eb:c1:
f1:cb:ed:5e:68:62:74:49:73:98:22:57:92:40:b1:73:14:6f:
c8:a3:5b:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 16:29:20 2025 by rpki-client