Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.mft
File: cEb4mD38NwS25c1-oSgP0PUpeaA.mft (raw, json)
Hash identifier: ai1dh0bf2SjMnTcLIu+lGkNLWUtq5QZYY5OHHpN35Bc=
Subject key identifier: 39:9F:6F:4D:F4:D1:11:35:5D:BE:7B:EC:29:64:BD:4E:E1:47:E5:ED
Authority key identifier: 70:46:F8:98:3D:FC:37:04:B6:E5:CD:7E:A1:28:0F:D0:F5:29:79:A0
Certificate issuer: /CN=A916320B/serialNumber=7046F8983DFC3704B6E5CD7EA1280FD0F52979A0
Certificate serial: 0B87
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEb4mD38NwS25c1-oSgP0PUpeaA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.mft
Manifest number: 0B76
Signing time: Fri 28 Mar 2025 19:14:07 +0000
Manifest this update: Fri 28 Mar 2025 19:14:07 +0000
Manifest next update: Fri 04 Apr 2025 19:14:07 +0000
Files and hashes: 1: cEb4mD38NwS25c1-oSgP0PUpeaA.crl (hash: RMD7klwWyYlDZwuTkY2HHs+YhzC6J0l+lSMYxSmYO+4=)
2: B9003CC84EE811EA8C045D52C4F9AE02.roa (hash: kbjVSRJWVNsKP886UTdCXje46K3vQ/OgBysCSuexrdk=)
3: 1B8483D04EEA11EA828FA155C4F9AE02.roa (hash: 0VsxW37CUzW4AoNDh7cYqP2zuBQmSz8Y4/jKr2zDwys=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2951 (0xb87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916320B
Validity
Not Before: Mar 28 19:14:07 2025 GMT
Not After : Apr 4 19:14:07 2025 GMT
Subject: CN=67e6f4ff-61f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:67:fe:8b:76:c0:da:e1:5f:5c:d8:98:39:6d:
a2:a6:bf:d3:3e:63:02:23:41:c4:7a:de:a6:da:5b:
95:20:28:2f:2d:f4:db:10:d9:9a:08:79:f6:b6:16:
b1:a9:7b:c9:ad:38:a0:50:1e:33:36:d5:b6:75:45:
6b:ab:7a:86:a6:a3:b9:b8:1e:11:c0:8d:01:c9:8e:
5a:0f:c2:01:7b:81:93:93:eb:ad:37:f1:43:92:1a:
bc:09:fc:bb:f8:7d:04:bc:d0:c8:0d:a2:59:52:54:
19:b1:b5:2b:02:1a:dd:86:ec:7c:41:78:d6:13:dc:
67:0a:0b:0c:e4:24:e5:14:f3:bc:14:ea:2b:d3:19:
d7:34:64:a3:9e:07:66:07:5f:71:bd:64:9d:6d:14:
eb:b1:a4:7d:b6:b4:37:a3:d5:38:f7:8c:17:0f:c0:
2d:78:a1:41:04:ab:c5:8c:7a:8a:26:d9:fa:13:e8:
32:02:eb:26:38:66:b4:91:18:c1:34:a6:9e:24:49:
82:4b:d5:71:61:d2:02:fe:37:ed:7a:04:22:94:16:
6d:3f:46:17:30:1c:04:aa:4c:f0:6e:a3:8e:d4:c0:
5b:fe:53:dc:fb:0f:f0:80:23:f8:c4:d4:21:19:aa:
e6:ad:65:5e:7e:67:7b:cd:a3:b6:22:60:1a:53:e6:
8a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:9F:6F:4D:F4:D1:11:35:5D:BE:7B:EC:29:64:BD:4E:E1:47:E5:ED
X509v3 Authority Key Identifier:
keyid:70:46:F8:98:3D:FC:37:04:B6:E5:CD:7E:A1:28:0F:D0:F5:29:79:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEb4mD38NwS25c1-oSgP0PUpeaA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2c:f0:43:6a:cb:7e:e9:ac:a2:04:be:f0:a9:b5:0e:2b:8c:9f:
79:db:f7:a6:20:79:c1:75:9d:76:a6:a5:1b:aa:4a:1a:72:0f:
61:dd:82:13:d3:3b:e5:5e:c8:e5:f6:94:4a:8f:5d:ed:8b:ac:
be:cc:7e:49:db:04:de:af:e0:bd:e1:14:44:79:e7:ce:4d:5a:
1b:92:62:f5:e3:eb:63:d8:0e:93:ac:d0:3e:82:a2:82:a0:79:
c3:c2:43:8b:cd:12:b0:1a:e7:99:ad:1d:af:28:90:38:bf:f8:
ab:10:17:36:be:c9:32:f3:7f:f5:60:01:45:da:fd:c9:b9:12:
b8:b9:cb:e7:69:a8:fc:85:bd:d3:46:e3:a1:6f:90:21:0d:dd:
f1:a9:4d:46:67:53:b1:5f:f7:81:a3:eb:38:93:91:df:e0:bf:
98:43:c7:83:8b:ba:16:8d:90:ec:17:00:35:26:a4:22:39:d8:
af:e6:b6:3a:2d:53:48:ab:0e:12:57:31:e7:36:f9:19:89:dd:
86:a8:45:32:cd:c5:44:d5:3a:67:95:be:fb:af:ef:9a:df:81:
1c:81:e6:d1:df:11:fd:70:71:82:a5:04:08:52:e9:1e:5b:4f:
af:6c:97:e9:35:72:7b:65:bf:cd:74:c7:f2:4a:cd:47:f3:47:
89:71:95:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 00:12:10 2025 by rpki-client