Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/WmyobkD7bCaOj-ZR_zLs5E2FfQM.mft
File: WmyobkD7bCaOj-ZR_zLs5E2FfQM.mft (raw, json)
Hash identifier: 4UeNNchv5eQxwAmQCSBJF7ITpWeB8tYj66+ohivvUFc=
Subject key identifier: FB:01:A8:3F:6E:53:BE:6D:B2:2D:08:3E:D4:ED:93:7F:FB:79:39:C2
Authority key identifier: 5A:6C:A8:6E:40:FB:6C:26:8E:8F:E6:51:FF:32:EC:E4:4D:85:7D:03
Certificate issuer: /CN=A9166638/serialNumber=5A6CA86E40FB6C268E8FE651FF32ECE44D857D03
Certificate serial: 0ACB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WmyobkD7bCaOj-ZR_zLs5E2FfQM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/WmyobkD7bCaOj-ZR_zLs5E2FfQM.mft
Manifest number: 0AC7
Signing time: Fri 28 Mar 2025 19:39:29 +0000
Manifest this update: Fri 28 Mar 2025 19:39:29 +0000
Manifest next update: Fri 04 Apr 2025 19:39:29 +0000
Files and hashes: 1: WmyobkD7bCaOj-ZR_zLs5E2FfQM.crl (hash: xvmTUmio/lHSe9473QNYUYYRVcGPu27VTmYk7+pktpc=)
2: 8E49B7320E8C11EDAB2A8680C4F9AE02.roa (hash: Ga7YwAWhVqDOExdvtybYiuoMlOw/9ken4EZnlj+WkpY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2763 (0xacb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9166638
Validity
Not Before: Mar 28 19:39:29 2025 GMT
Not After : Apr 4 19:39:29 2025 GMT
Subject: CN=67e6faf1-9ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9d:b9:fa:dc:3f:7c:9c:03:ea:02:99:a1:40:
fd:21:7c:44:d5:4e:aa:6c:b8:26:ef:d0:98:03:60:
d8:bf:41:bf:64:c3:86:7a:a1:c3:09:42:99:5c:9f:
65:f5:fc:73:f6:e8:26:15:d4:29:fa:db:e4:c7:36:
d7:6a:37:e9:63:62:0f:76:8a:f8:1d:34:65:f5:30:
05:8e:4c:eb:ca:75:83:0e:ae:5e:c0:fe:60:84:07:
5e:ec:be:af:bd:c4:7f:4e:57:20:25:ef:d8:b5:bd:
bd:38:22:77:0c:9b:c5:49:b9:1d:19:72:a3:d3:2c:
b2:4a:12:ee:e4:71:30:12:ef:3f:11:36:74:63:38:
8a:0d:74:74:9f:d8:1b:ce:dd:8a:ed:7c:48:9e:60:
17:8c:5b:ed:92:6a:f1:94:a3:ca:1a:e3:75:ea:55:
91:10:b5:5c:e9:18:47:af:cf:32:84:a3:6c:6d:5e:
4f:22:a6:b9:ed:b0:c9:4d:f7:ef:c7:7d:bb:5e:de:
bb:c5:d5:9c:69:1a:8b:32:1f:e2:bc:09:4a:09:07:
9f:6a:ac:d9:da:a7:da:ca:fa:37:3c:92:10:26:92:
79:b6:1d:7d:79:c7:8c:0b:35:0e:c3:d7:7e:40:25:
c8:46:38:53:b3:60:72:be:84:43:49:cd:e6:9f:91:
05:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:01:A8:3F:6E:53:BE:6D:B2:2D:08:3E:D4:ED:93:7F:FB:79:39:C2
X509v3 Authority Key Identifier:
keyid:5A:6C:A8:6E:40:FB:6C:26:8E:8F:E6:51:FF:32:EC:E4:4D:85:7D:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/WmyobkD7bCaOj-ZR_zLs5E2FfQM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WmyobkD7bCaOj-ZR_zLs5E2FfQM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/WmyobkD7bCaOj-ZR_zLs5E2FfQM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
77:a6:a8:20:41:d8:b1:b1:72:9b:8a:0d:37:9c:41:d2:a5:5f:
64:e0:70:33:0a:29:52:02:2a:1b:67:5c:af:69:e9:6d:4a:22:
ba:4d:f5:d5:f9:83:5c:5d:83:a7:23:9e:21:e9:ca:58:d6:58:
b9:60:07:76:32:70:56:1d:a4:1d:d4:a7:42:c7:d1:26:08:eb:
5f:a1:90:6a:2e:40:14:f0:59:da:9f:84:8c:ef:c4:16:b9:1b:
5b:1e:44:85:7e:cd:49:dc:40:66:3e:dd:a8:1a:0a:e0:c1:35:
2e:cc:73:c4:10:2e:0c:56:68:a1:54:8b:d8:df:90:5c:ff:e2:
b3:e4:9f:59:b0:8c:ce:71:fa:fb:84:69:fe:0b:93:f2:e7:ea:
81:18:dc:9f:7f:32:83:df:96:53:da:22:0c:3e:ea:60:ec:2a:
39:e1:38:fc:3b:77:d6:c0:50:f5:14:1d:37:07:83:3d:15:96:
5e:f4:d5:d6:3e:8b:b1:6b:40:1b:2a:a3:ea:31:94:66:1e:43:
7d:5d:1e:95:f6:31:26:67:6b:ac:5b:3c:e3:08:35:fd:29:c7:
d1:0e:30:3b:56:b6:58:ff:c9:f4:b6:72:d6:a8:62:36:38:9b:
87:3c:2e:79:cf:f3:ce:05:db:48:cb:83:5d:6c:8d:0e:0f:07:
b0:11:68:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:54:18 2025 by rpki-client