Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft
File: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft (raw, json)
Hash identifier: E2En8gvsdySuqhJ7e9duO2DBWLDDo75zyP3VMYdGbEk=
Subject key identifier: 50:4A:67:0F:81:EB:20:45:8E:8D:06:97:29:DA:D8:C4:EC:E2:AD:E7
Authority key identifier: 28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8
Certificate issuer: /CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8
Certificate serial: 0658
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft
Manifest number: 0652
Signing time: Fri 28 Mar 2025 22:43:24 +0000
Manifest this update: Fri 28 Mar 2025 22:43:23 +0000
Manifest next update: Fri 04 Apr 2025 22:43:23 +0000
Files and hashes: 1: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl (hash: 2ebvHc9H+0hwq+A1JQMJ2Fuj03vKgUjZDJ9RzLOb65A=)
2: 7883418E943A11EBB6706530C4F9AE02.roa (hash: TnZM67noo4lbQHfXpAgCtw+JAFkneMpGmuhyQRw2ydg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1624 (0x658)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91602ED
Validity
Not Before: Mar 28 22:43:23 2025 GMT
Not After : Apr 4 22:43:23 2025 GMT
Subject: CN=67e7260c-fb86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:15:b4:f4:24:48:07:e8:4c:58:4b:56:3b:6e:
30:e8:93:9f:ca:6f:85:15:b5:43:a7:af:20:79:dc:
67:03:b6:78:4b:b9:80:d5:a2:ff:85:5f:d5:35:ea:
20:d0:b8:72:eb:84:fc:50:a0:60:1b:bb:a9:3b:7f:
cc:1d:52:b9:3a:ff:63:a1:7c:51:9f:93:4f:f7:58:
cc:4e:bf:a9:c1:81:94:53:d9:43:6f:29:fe:bd:e1:
89:ab:14:84:7a:b1:18:d8:73:4f:00:32:2e:2a:57:
16:ad:24:ae:ff:f1:24:00:19:b3:9c:cc:1f:b2:1a:
5b:70:a7:4c:48:f1:e9:0a:75:55:cc:94:d2:61:5f:
fc:c0:fc:48:f9:e1:cf:06:9b:e6:e2:0f:bd:e3:d5:
5b:92:8c:58:f7:f7:7f:92:3a:c3:c0:47:32:72:52:
a2:ea:00:80:8b:d5:c4:b9:93:1b:58:bc:13:72:b4:
d8:0d:df:df:35:7c:45:58:d1:68:e4:94:89:eb:49:
36:4a:69:aa:13:f4:9b:de:02:14:71:97:70:39:9a:
b4:4c:fb:06:b3:34:7f:52:35:25:3b:07:1d:df:eb:
fc:e6:77:a2:8a:43:b8:b7:9e:e4:17:be:8a:dd:85:
c4:d0:46:6d:d8:44:64:05:5c:d2:fa:c5:f4:6d:58:
f4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:4A:67:0F:81:EB:20:45:8E:8D:06:97:29:DA:D8:C4:EC:E2:AD:E7
X509v3 Authority Key Identifier:
keyid:28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3d:01:9e:75:e3:b2:57:0f:02:79:f6:2d:13:5c:46:e3:31:69:
5b:ed:15:b9:8d:0d:f3:04:c9:e1:c8:d9:6b:1e:97:d4:eb:91:
d2:4a:8c:b0:ba:90:41:2d:20:0e:15:4d:87:df:93:a2:34:fc:
c1:a2:40:02:ca:f4:da:31:c1:d0:a0:e2:54:14:36:fc:2b:6d:
4b:3a:a4:4b:45:f0:5f:84:1f:49:c8:9d:22:73:f6:7e:ec:35:
45:47:8e:5e:57:b1:45:92:84:ab:27:a7:a7:c6:fb:b8:95:cc:
13:af:be:f6:98:77:d8:bb:6b:af:9f:ad:04:8e:27:a0:9b:f8:
fb:82:5d:d4:b7:6d:1a:43:5a:d4:86:39:6e:19:3c:49:70:c4:
0c:9a:3b:61:36:8e:8d:e9:97:39:36:9f:82:25:44:22:ab:1f:
12:2b:15:83:36:4b:b1:f1:50:41:ef:bf:ba:9b:87:df:cb:1a:
58:c0:e9:a6:c9:93:e1:e0:30:06:6c:83:58:75:a3:ea:62:b8:
8c:b6:d3:28:e7:0b:70:01:cb:fb:6a:67:b7:17:e2:1b:9c:ee:
22:9c:82:6e:9c:a1:1e:24:5b:a8:f2:7e:77:7c:d0:dc:1e:df:
1f:24:b5:d5:89:27:27:12:04:ca:a9:79:81:2b:82:40:bc:97:
10:32:84:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:08:56 2025 by rpki-client