Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.mft
File: kBpDycSAhnF-284lXAKi8DU9qvo.mft (raw, json)
Hash identifier: 0Cw6JjrlMeTKt1dInxGkgjYiAG3JgvL9YswIbBr18B4=
Subject key identifier: E6:FA:97:A3:73:31:F1:46:A2:06:F7:83:B6:FD:13:C5:D5:64:5A:C3
Authority key identifier: 90:1A:43:C9:C4:80:86:71:7E:DB:CE:25:5C:02:A2:F0:35:3D:AA:FA
Certificate issuer: /CN=A9165DB1/serialNumber=901A43C9C48086717EDBCE255C02A2F0353DAAFA
Certificate serial: 0253
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBpDycSAhnF-284lXAKi8DU9qvo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.mft
Manifest number: 0253
Signing time: Sat 29 Mar 2025 02:02:56 +0000
Manifest this update: Sat 29 Mar 2025 02:02:55 +0000
Manifest next update: Sat 05 Apr 2025 02:02:55 +0000
Files and hashes: 1: kBpDycSAhnF-284lXAKi8DU9qvo.crl (hash: QjaxIFn41W4k33Gb3xCzk4qw7uOfZbnEY9wzGxVsaMw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 595 (0x253)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9165DB1
Validity
Not Before: Mar 29 02:02:55 2025 GMT
Not After : Apr 5 02:02:55 2025 GMT
Subject: CN=67e754cf-4b07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a3:62:dd:d8:c6:53:ed:25:b0:f6:32:68:e1:
b2:33:9b:cf:6b:58:95:d1:c6:bf:8d:93:ba:ae:37:
00:ca:ac:f7:f7:36:e8:6e:aa:ab:32:d6:29:f4:48:
e3:3d:be:1b:43:00:ad:a6:22:1a:49:91:be:d2:1b:
0f:f9:1a:02:17:6f:97:68:94:1a:2e:6b:75:c9:a2:
d2:16:c3:76:1c:ab:b9:e8:ec:1f:22:82:69:7a:b3:
08:2f:14:45:ff:d1:8f:b5:ae:1d:01:45:65:6c:48:
eb:7d:ed:ff:75:aa:08:7f:93:ec:86:18:f6:c2:ca:
f1:ab:ae:1c:fd:5d:20:03:88:67:b9:a3:24:4b:db:
e1:59:65:0e:1c:46:73:f2:e7:04:09:43:c8:d4:c6:
b8:20:04:7b:26:23:7f:60:18:40:9a:d1:13:41:6c:
e6:b8:f8:e5:d0:c0:a3:48:43:74:19:6e:d1:5b:96:
3a:c2:83:81:15:35:c2:70:f6:1f:25:7f:2f:1d:e2:
3a:66:01:6b:48:57:62:32:24:cd:a7:15:8d:d1:ec:
ea:39:4d:26:0b:4e:e0:81:d7:65:60:c9:5b:bd:bd:
74:cd:c7:4d:83:a3:f7:4d:7d:de:d9:af:8d:c4:95:
f9:d6:41:cd:05:5d:44:7e:a1:91:9f:e9:dc:07:30:
35:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:FA:97:A3:73:31:F1:46:A2:06:F7:83:B6:FD:13:C5:D5:64:5A:C3
X509v3 Authority Key Identifier:
keyid:90:1A:43:C9:C4:80:86:71:7E:DB:CE:25:5C:02:A2:F0:35:3D:AA:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBpDycSAhnF-284lXAKi8DU9qvo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
81:87:ea:03:d1:86:7f:ad:be:f1:27:cb:73:0b:37:8a:dd:d0:
30:66:ba:70:e2:ba:db:e2:74:f5:56:2a:2b:f2:20:99:56:b7:
4b:2d:72:ea:73:de:4c:6f:60:79:fd:09:66:90:9a:f6:48:62:
40:10:56:d5:07:99:44:36:0b:14:4f:7b:2c:22:af:f6:cd:3f:
83:3c:43:7c:b8:28:b5:b4:06:cf:cd:2a:fb:42:27:7f:3c:e6:
6a:9f:7a:43:48:62:f9:5d:0f:8f:11:b9:a7:ea:cb:63:87:98:
53:8e:62:d1:1c:7d:05:45:6d:ca:7e:29:3c:db:1a:21:9e:40:
e4:78:b8:96:93:84:1d:ae:7f:d2:20:6f:6d:d3:fd:9a:ce:97:
c5:ea:5b:6f:9a:17:bb:f8:f2:58:89:25:45:6c:9a:5c:5e:ca:
8c:0c:38:05:9c:8b:50:3f:4e:f8:bb:3a:c8:9d:b6:59:7a:71:
1e:56:4e:9a:03:27:41:e2:69:09:79:18:da:d8:fc:ea:e4:f9:
b7:99:bd:67:f0:5b:14:fd:70:70:a8:f6:73:80:17:f7:90:3f:
a3:82:88:95:46:ca:de:3d:da:4a:d0:f1:8a:37:84:bf:c1:0c:
d0:d8:69:c1:e3:b0:5d:87:0a:28:7e:e4:01:a5:e1:33:b4:b4:
c4:a7:5b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 00:01:58 2025 by rpki-client