Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft
File: OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft (raw, json)
Hash identifier: 2sd9b0uamu8EvouPXAWYy0i74eSFD7I6uFUqNgPMrzs=
Subject key identifier: A0:49:73:F8:CC:B9:C5:4B:F9:CB:72:3F:46:46:32:68:D5:88:AC:46
Authority key identifier: 39:01:AF:4A:93:FE:FA:AE:B8:79:CC:9F:59:94:E4:E7:F0:1A:F8:38
Certificate issuer: /CN=A91613AB/serialNumber=3901AF4A93FEFAAEB879CC9F5994E4E7F01AF838
Certificate serial: 01CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OQGvSpP--q64ecyfWZTk5_Aa-Dg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft
Manifest number: 01C0
Signing time: Sat 29 Mar 2025 02:40:51 +0000
Manifest this update: Sat 29 Mar 2025 02:40:51 +0000
Manifest next update: Sat 05 Apr 2025 02:40:51 +0000
Files and hashes: 1: OQGvSpP--q64ecyfWZTk5_Aa-Dg.crl (hash: EMSGy+2kniXP1oCVpd2hm1EfxwRBQWUE5SoLfSHIe2o=)
2: 65AFE18C91DB11EFBC4C2A3EC4F9AE02.roa (hash: LqvEH1o9qv1Spv16C52zEqgMsWnx5LeCvM7wNncYwmQ=)
3: A50FD050DA7911EDB0D3866BC4F9AE02.roa (hash: sq3CtUxJWk/lwN1trxwIddBHXPOdGnUuNzRlPvsNflY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 460 (0x1cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91613AB
Validity
Not Before: Mar 29 02:40:51 2025 GMT
Not After : Apr 5 02:40:51 2025 GMT
Subject: CN=67e75db3-5ef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ed:f3:ea:f7:41:d4:d0:94:ff:e6:4c:72:dd:
df:de:fe:63:24:ab:49:f8:07:1c:d6:d0:1a:e1:08:
f3:f2:9f:b4:12:a1:2b:97:16:f2:17:8b:a7:ee:e1:
52:66:94:07:65:6a:18:d2:f0:2e:8f:21:4e:ea:ba:
36:47:42:b5:f2:99:19:77:2e:fe:7f:9e:aa:a3:5c:
41:71:45:42:0a:11:0c:03:1a:aa:9d:bd:7a:47:2e:
c2:f9:7d:49:75:bb:53:e3:a6:de:70:d4:45:96:80:
13:6c:ea:ce:82:61:9e:07:e2:b1:26:db:41:28:43:
5f:b5:be:00:a4:e3:5f:af:a5:31:c5:1b:1c:68:55:
d0:7d:34:b4:65:27:5e:66:ea:6d:59:dd:a8:8d:8c:
42:71:8b:38:fe:bd:60:1e:21:34:7d:50:1a:d2:c6:
4a:f4:6e:a1:9c:c8:2f:aa:4b:6a:96:96:80:b1:5b:
15:73:01:a0:ca:e8:2c:31:0e:c9:cc:1b:d3:65:d1:
4b:48:4f:4d:20:71:86:07:a1:18:db:da:89:d5:8f:
d9:6e:07:3c:3f:3c:cd:eb:27:57:96:a7:4c:0d:4e:
65:41:32:f8:58:da:50:9c:b5:78:ed:27:cf:ca:6c:
35:c5:9c:7c:82:27:b2:86:52:58:66:2e:17:63:e9:
39:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:49:73:F8:CC:B9:C5:4B:F9:CB:72:3F:46:46:32:68:D5:88:AC:46
X509v3 Authority Key Identifier:
keyid:39:01:AF:4A:93:FE:FA:AE:B8:79:CC:9F:59:94:E4:E7:F0:1A:F8:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OQGvSpP--q64ecyfWZTk5_Aa-Dg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
44:9a:38:74:a1:58:06:cb:ee:e1:63:6c:5a:86:f2:be:0b:12:
4b:6e:5e:54:2c:3e:25:07:53:83:04:35:61:b8:6a:af:eb:4b:
74:95:40:d1:1d:06:36:5b:02:a5:21:7d:cf:5a:d6:0b:03:a5:
b7:17:37:af:db:2d:66:34:89:32:2b:49:c2:a1:51:a5:bf:8d:
72:3a:1c:6d:c1:e0:b0:eb:6b:aa:d2:29:6c:0b:1f:fc:55:dc:
86:5f:6c:c7:21:3b:e7:bf:57:e9:36:4c:2d:d2:af:d7:d1:ce:
81:5a:3e:f2:87:fb:20:8f:f1:68:8c:a0:8e:68:88:b0:82:f0:
1c:10:5b:e7:6b:08:df:b3:57:55:69:34:9f:ca:6f:37:10:cb:
b4:64:57:45:1a:60:5c:fb:28:27:11:ce:82:53:29:58:2e:51:
db:36:84:8a:a1:2e:0e:3f:37:c0:9d:52:55:75:e1:a2:6d:8c:
ee:cd:c7:da:f5:68:a8:38:2b:ef:8c:a7:05:4e:e8:54:5e:19:
10:92:30:9e:08:4f:3a:35:90:60:41:79:9b:67:39:67:ac:71:
d9:21:a0:2a:f3:d2:b4:0c:45:57:02:78:c5:f5:e3:86:a3:80:
a1:11:0a:a6:97:c6:a2:9b:91:7b:8a:02:b7:9b:9e:02:aa:56:
03:16:81:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 05:27:29 2025 by rpki-client