Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft
File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json)
Hash identifier: 1GxGZ+K/3eX9ogmgfF01HeQ2XP/7GCjXuF1gt7DTOkE=
Subject key identifier: 7F:6B:84:E3:DD:91:EF:EF:71:D4:D7:DA:05:75:01:98:7A:C5:9E:DC
Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89
Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389
Certificate serial: 0182
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft
Manifest number: 0180
Signing time: Sat 29 Mar 2025 03:11:23 +0000
Manifest this update: Sat 29 Mar 2025 03:11:22 +0000
Manifest next update: Sat 05 Apr 2025 03:11:22 +0000
Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: LXuFIwvqFIKbINrcQd53ZjKbn2u+kyBT0F7AwcxtXkE=)
2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: l8Gj0m9EkG6Fdaxl7SxKrM92rnUZHTkx+j8ukMd+sL0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 386 (0x182)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9168C73
Validity
Not Before: Mar 29 03:11:22 2025 GMT
Not After : Apr 5 03:11:22 2025 GMT
Subject: CN=67e764da-1178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:7e:18:0c:f9:17:4c:fe:42:bc:b7:26:84:e7:
5e:09:e8:ce:9e:9d:f4:5e:16:9c:35:1b:79:a9:80:
b4:bd:f4:54:85:8d:4a:e7:a5:9e:b3:26:ed:a1:fc:
24:5e:aa:45:ff:25:35:a8:a0:f5:9d:65:0a:fc:ae:
24:9d:d0:62:71:f3:88:f9:ae:e6:b2:89:32:e3:a3:
64:61:9e:79:cd:bf:fc:25:f3:a3:59:2b:cd:3b:fc:
1d:3c:fd:0f:32:80:9f:35:3b:15:97:29:28:ea:4d:
81:b9:44:b8:71:f9:ca:21:8f:35:30:c7:0a:b1:24:
c9:5f:7f:b6:50:9f:24:55:d5:b9:28:49:ee:52:8d:
e4:76:0f:30:8d:6c:67:93:5e:24:e6:c8:88:46:e0:
5a:88:c2:48:0b:83:dc:99:fa:2a:8d:48:be:25:e6:
65:6b:2a:6b:a0:a8:55:47:5c:51:66:63:68:88:03:
8c:ac:f4:a0:94:dd:ea:77:0c:66:d6:0e:cf:57:be:
e8:d6:24:09:7e:0c:18:75:45:a1:ea:08:ca:26:25:
93:5e:24:8e:a5:a1:07:d4:98:f3:3d:3f:e7:50:ab:
d2:4b:aa:ff:10:dd:85:6f:d3:f4:b9:f8:32:ea:5c:
a6:62:ed:82:0a:ad:11:bd:c3:fc:e5:16:81:1d:09:
b1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:6B:84:E3:DD:91:EF:EF:71:D4:D7:DA:05:75:01:98:7A:C5:9E:DC
X509v3 Authority Key Identifier:
keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
50:c1:d4:06:3d:f5:0c:43:92:46:d2:9f:f6:62:c5:39:8e:76:
e2:49:d0:e2:f1:96:fe:86:03:28:8c:8c:11:d9:b5:2e:74:78:
65:76:e8:30:65:b7:4b:b2:03:b6:b9:33:21:3f:9d:cc:61:d3:
4c:24:ae:bb:d8:07:c7:a6:28:7f:e6:a1:ad:9b:b5:85:23:b1:
9c:61:df:57:93:fd:58:c0:4f:8b:97:b6:2b:7c:86:ef:0d:bf:
39:25:b9:a0:bb:a2:32:7b:b7:a0:d9:4c:1f:6e:73:9b:4f:92:
64:ea:f5:80:74:ef:f9:09:54:4c:3b:d1:81:68:ec:8c:98:5f:
57:b0:ef:25:95:7a:b3:d7:84:20:89:ae:4e:7a:12:25:71:3b:
a5:cc:82:5b:9d:99:8e:dc:f9:95:44:f2:f9:c4:0e:bd:20:96:
9d:63:57:ad:98:be:27:f0:e7:c7:f0:4f:e7:40:8d:f8:7b:11:
f4:71:03:e8:eb:2d:36:b6:b4:17:97:4a:65:8d:b4:58:12:c0:
bb:ed:6a:fa:46:80:43:ed:e3:93:38:18:d8:ff:d8:ee:b1:9d:
e4:fc:e4:c1:a0:a6:fe:63:8f:12:80:f2:28:e6:76:59:50:4d:
21:cb:07:4b:72:4a:83:11:74:78:bc:eb:ca:9c:27:e8:25:ab:
20:9e:2c:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:21:59 2025 by rpki-client