Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft
File: VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json)
Hash identifier: Y5Tri6X7PCdVVi0Se/etZG3S+yoefHjgCqpv2e1p4EQ=
Subject key identifier: F1:38:58:02:C9:A2:17:C4:14:59:F6:2B:6A:9A:F6:8C:B6:CF:EE:EA
Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21
Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421
Certificate serial: B6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft
Manifest number: B4
Signing time: Sat 29 Mar 2025 05:25:43 +0000
Manifest this update: Sat 29 Mar 2025 05:25:43 +0000
Manifest next update: Sat 05 Apr 2025 05:25:43 +0000
Files and hashes: 1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: W2JQAZl9I1v4hsrXlHRtlk7xHkAjpr6UXKBdatO0BxA=)
2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: qeKpax6tWFd6dXRCCgHpRrEIFHUWf08cbXJ0Npcf3Z0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182 (0xb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9165556
Validity
Not Before: Mar 29 05:25:43 2025 GMT
Not After : Apr 5 05:25:43 2025 GMT
Subject: CN=67e78457-a068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d8:66:75:8c:1c:8c:69:1d:f6:72:8a:83:bb:
79:6f:6d:0b:ef:c4:11:1f:ae:8e:53:62:2e:71:7a:
62:be:f7:bc:c4:c7:99:ab:ae:43:3f:3a:40:dd:c7:
64:96:48:7e:5f:e8:4d:89:2e:17:ca:98:47:0d:d0:
be:49:6c:80:83:1e:51:0d:73:40:99:05:30:bd:fe:
14:79:21:f1:fb:e9:55:dc:76:2b:3d:6d:ae:f0:aa:
2a:9c:e5:8f:d7:84:35:57:c7:95:73:d5:72:da:32:
07:3a:e8:b7:78:b1:f7:24:8f:53:39:3d:bc:9c:1e:
aa:f8:dc:bd:f7:a0:be:f6:ea:85:b8:79:b2:46:8b:
fb:e3:97:57:7a:b8:08:63:cd:bf:56:89:97:11:91:
d4:5c:f2:6b:20:f6:30:7c:d0:2c:06:36:78:ba:06:
c0:bf:4d:f9:af:a8:fc:4a:b4:f8:51:9e:7a:fc:4e:
c4:89:6c:bc:03:4e:77:30:c2:85:6d:cf:d6:ef:49:
74:93:ae:c6:17:0e:83:5c:89:f4:82:ef:0a:80:e9:
8d:0f:ef:63:57:35:b6:ea:84:14:75:4d:eb:7d:10:
03:0c:23:df:c6:12:36:00:eb:b6:d4:e7:40:2a:2b:
2c:6d:b9:d3:16:50:98:2c:19:be:35:6e:27:d7:76:
b6:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:38:58:02:C9:A2:17:C4:14:59:F6:2B:6A:9A:F6:8C:B6:CF:EE:EA
X509v3 Authority Key Identifier:
keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9b:10:28:cc:51:be:d4:7e:d0:cf:6e:32:f0:41:b5:0f:9e:b5:
81:ab:68:cd:10:ee:ec:ad:7a:ec:2b:00:f0:d9:7f:40:9a:3e:
3e:3f:fe:df:25:45:1d:aa:06:a1:ec:d3:7d:24:f7:e7:2f:19:
78:27:0c:be:db:45:73:5c:08:51:44:8a:ea:e6:56:3c:18:d1:
e2:65:5f:9b:a3:e2:8c:cd:d9:75:98:b6:a5:46:58:21:03:a3:
8b:3b:09:7e:73:d0:cf:71:51:b1:51:aa:65:14:34:ad:8d:6d:
80:4f:0c:ed:ad:e2:6f:d4:9b:93:75:27:ff:2a:e7:25:6c:64:
9e:92:4e:f7:d7:7a:c3:56:81:0d:29:5f:73:d3:34:79:47:8f:
e4:d0:08:16:de:3a:79:2f:5f:88:e9:f1:9d:90:6f:d5:ed:0e:
98:1e:fb:42:b1:b3:e3:ba:72:00:0f:0c:35:96:11:49:ae:47:
5a:cd:f5:29:2c:7d:f3:62:61:0b:56:f2:39:02:2a:82:b1:39:
bc:9f:4a:b0:33:88:09:61:46:13:10:22:b8:b5:65:05:1b:50:
4b:a6:7d:b4:21:a5:79:a6:2d:e3:fa:7c:c1:2e:6f:96:9a:8a:
38:62:7f:10:e2:de:90:cd:d5:71:4b:0b:16:76:21:76:14:4e:
4e:6c:73:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:58:34 2025 by rpki-client