Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft
File: aHvrJ3oFne_qK-3WevsbgjiOXrE.mft (raw, json)
Hash identifier: AG2NHAQx7ol9tCiXhlzL3LTDaD8B2NixPgNj0/JMXck=
Subject key identifier: E2:95:F5:BB:1C:30:A6:B0:64:C6:AA:71:9B:8D:49:30:A1:51:B4:38
Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1
Certificate issuer: /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1
Certificate serial: 07AD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft
Manifest number: 0796
Signing time: Fri 28 Mar 2025 21:40:55 +0000
Manifest this update: Fri 28 Mar 2025 21:40:54 +0000
Manifest next update: Fri 04 Apr 2025 21:40:54 +0000
Files and hashes: 1: aHvrJ3oFne_qK-3WevsbgjiOXrE.crl (hash: Wwb4lKt/IhGg8VpxM/aw3FIJxy7w76wsC9np/GFNcqY=)
2: D19E7784AAF811EE8D8CCD25C4F9AE02.roa (hash: +XIvNmYB/5EgcsxvZK5ch01j/uNHHViQProaEC6+kLA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1965 (0x7ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9165FAD
Validity
Not Before: Mar 28 21:40:54 2025 GMT
Not After : Apr 4 21:40:54 2025 GMT
Subject: CN=67e71766-6e97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:03:fa:4b:4e:b8:08:07:05:e0:85:81:00:fa:
4f:19:e7:ae:bd:91:39:2f:87:df:af:8a:d2:b7:3d:
3a:79:58:5b:a3:3a:b7:66:a6:42:29:45:21:1c:2f:
d4:5a:17:4a:b0:a9:af:3a:38:95:c6:a7:65:4a:07:
d5:ed:4a:07:e9:7a:c0:49:d7:74:f9:ea:84:4e:f3:
de:90:fb:2a:e2:62:e7:86:6e:54:a1:e4:0e:c1:72:
d4:6c:0a:67:82:a9:21:dd:74:1c:11:bb:30:9b:9c:
c3:f6:67:d2:d5:31:e0:a7:15:2b:67:b0:11:80:82:
4a:d1:ee:22:01:87:c5:79:43:c7:51:ce:ac:74:54:
8d:7b:e5:70:19:99:6b:22:b1:36:5d:11:e6:3c:d5:
de:f8:13:ed:dc:0b:34:52:6b:fa:66:c7:9c:ab:0c:
f4:ba:85:a9:ee:1d:5a:81:39:56:cf:69:bf:17:09:
fa:a7:f5:c5:76:d1:60:f8:57:27:f8:b7:ac:6e:50:
48:46:c1:13:8a:66:ba:f7:9c:26:e1:2e:7e:a4:e2:
2b:2b:41:d5:83:d3:1a:48:fa:ba:07:a2:2b:b4:75:
48:ba:81:6a:f4:08:7e:d3:ef:7f:80:a3:4d:2d:c4:
58:fe:04:d0:b9:ee:eb:46:96:69:22:47:86:37:a2:
88:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:95:F5:BB:1C:30:A6:B0:64:C6:AA:71:9B:8D:49:30:A1:51:B4:38
X509v3 Authority Key Identifier:
keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1b:ed:0c:2f:b8:8f:41:22:2e:f0:38:c4:19:96:4c:2c:bc:16:
bd:3d:04:0f:69:68:86:ab:88:ea:01:06:bc:fe:08:94:7d:01:
28:b1:bb:e1:2f:db:3b:93:17:7b:2d:30:ca:f4:b6:6e:6b:62:
c9:aa:4c:6a:7c:3f:02:98:19:a6:8a:d3:75:c2:d7:66:3d:36:
fc:d9:d5:20:87:7f:ee:d6:09:94:af:55:59:ca:2a:eb:d2:c0:
39:5f:d1:a4:d3:24:ca:d1:d1:a2:8d:8d:e6:24:c2:71:2d:89:
3f:34:8e:85:f2:24:df:ee:af:e1:c2:0f:45:e4:00:02:a2:e5:
df:1b:57:ce:c9:2d:d7:08:52:18:dc:8f:37:51:89:ae:57:cf:
6c:dd:23:4d:b3:73:e0:1c:f2:d7:90:83:0d:f1:6e:a4:8e:04:
17:a0:6f:a5:f4:0d:aa:39:f4:6a:8e:ed:91:59:22:e7:73:31:
14:ff:39:43:da:fe:a1:79:51:12:9f:4c:dd:3f:14:c8:f0:1e:
19:5e:19:8f:21:2c:5e:9b:36:ee:83:c1:b9:0b:b5:64:9f:12:
e7:c4:a6:ad:57:14:42:15:da:aa:ce:b5:59:7f:d7:6f:2d:85:
64:9a:a8:8c:2e:c4:21:ab:0f:ff:15:6a:32:4f:f0:0a:af:63:
0c:1f:8f:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:17:51 2025 by rpki-client