Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft
File: LTKZEtaZA7hQCX-MbthXHaxxBa0.mft (raw, json)
Hash identifier: FXRA58amcjHA8JqFaSmrQO2kZM+y0GHXLDOx9cNAb7w=
Subject key identifier: 20:1B:46:98:ED:36:74:50:71:2A:60:46:E8:90:3D:38:36:E4:10:24
Authority key identifier: 2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD
Certificate issuer: /CN=A916708F/serialNumber=2D329912D69903B850097F8C6ED8571DAC7105AD
Certificate serial: 0C90
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft
Manifest number: 0C88
Signing time: Fri 28 Mar 2025 18:20:18 +0000
Manifest this update: Fri 28 Mar 2025 18:20:18 +0000
Manifest next update: Fri 04 Apr 2025 18:20:18 +0000
Files and hashes: 1: LTKZEtaZA7hQCX-MbthXHaxxBa0.crl (hash: 3oxE0aFDbh6qhUmryUxLL7e3OSxczJuaLyf7d5C9B04=)
2: 8174C3BEF16411E980D2F667C4F9AE02.roa (hash: VEw9MLhojPtBj7/yVbdylAjgIZeL4XHegjDH9vdhq/Y=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3216 (0xc90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916708F
Validity
Not Before: Mar 28 18:20:18 2025 GMT
Not After : Apr 4 18:20:18 2025 GMT
Subject: CN=67e6e862-55c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c5:81:c4:14:de:c0:2d:43:6b:f9:1e:c1:7b:
b2:c8:31:56:93:74:25:a6:a5:48:5c:89:25:6e:b7:
1c:f8:e9:17:a3:fb:6b:c9:00:08:67:c3:fe:3f:a2:
8f:ef:3b:74:4d:80:29:fa:c9:a8:d3:a1:0e:ab:39:
51:87:6c:70:65:63:68:97:80:1c:f1:80:69:b0:26:
65:d5:0e:34:06:8e:96:e6:b6:77:b1:d0:1b:ba:09:
6f:00:3a:98:4c:8c:24:4d:be:92:ef:76:4c:63:b7:
d7:5f:f7:56:95:ac:d1:b1:b0:28:e2:64:54:e1:04:
5a:52:f7:14:5d:e4:50:db:a5:0c:36:45:3b:a5:cc:
88:9f:5a:4e:6f:db:ab:93:82:b1:b7:b7:a1:88:f3:
1b:4e:e0:f3:55:dc:6d:d2:a7:3b:55:77:1f:72:a1:
96:e3:63:9b:65:3a:72:6d:50:04:51:14:5e:56:52:
fe:a8:6e:98:9b:d9:4d:4c:a5:70:41:ac:c7:9c:87:
63:93:08:68:79:42:c0:38:78:cc:d4:bc:43:49:e4:
41:3b:6b:1a:58:05:82:ba:ca:89:3d:df:1a:c5:ce:
7c:80:92:3d:76:e7:97:cb:22:d8:85:ab:bb:d1:25:
12:35:e1:6e:26:3b:f1:2a:50:86:1a:45:fb:ab:bf:
7f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:1B:46:98:ED:36:74:50:71:2A:60:46:E8:90:3D:38:36:E4:10:24
X509v3 Authority Key Identifier:
keyid:2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
13:7e:d9:ab:70:99:ff:1c:40:11:10:ee:7b:b0:f2:58:37:b9:
d0:e0:d4:19:ad:75:8b:08:7b:2a:9c:0f:27:ee:9b:0d:49:bd:
d3:67:d8:80:19:34:13:4c:65:3e:40:2b:41:68:da:8b:9d:6a:
ff:11:16:e8:0c:b5:52:e7:ad:b4:c8:9b:1a:44:5b:6e:3c:25:
5c:97:5e:3f:9a:cb:bf:df:0e:17:f8:ea:de:a3:8e:6d:31:59:
05:ae:d0:b3:b0:83:d6:4c:b3:df:68:a9:0e:32:0f:99:7f:88:
94:23:df:b8:a8:0a:02:66:dc:f4:be:d4:e1:0f:3f:db:07:e6:
66:ce:57:55:92:d8:4f:f1:61:1f:02:d9:4e:00:22:b2:6b:87:
d8:33:47:13:c9:6b:7b:85:25:95:02:02:ed:b7:3c:1d:42:4b:
d0:23:77:e6:3f:24:6b:87:6b:a1:ea:5d:28:66:73:3e:c5:8b:
c7:a2:7b:14:14:b9:73:0a:84:2f:44:f5:b9:77:cf:73:0a:30:
af:b5:a8:a5:1e:85:d1:f5:a3:1a:5d:49:24:e4:b4:00:49:71:
16:29:d4:44:76:93:f7:b6:f6:5b:cb:fa:20:9a:5e:49:1e:de:
0c:76:db:14:52:f7:5c:32:c0:4b:8f:12:0e:c0:de:01:a5:ba:
17:3f:14:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 19:36:19 2025 by rpki-client