Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168EB9/F3BC02A654B011EB96C9775AC4F9AE02/w98lVuh_X0ILAY-cGusQkxofA8s.mft
File: w98lVuh_X0ILAY-cGusQkxofA8s.mft (raw, json)
Hash identifier: CCESO6sv/iaDFjmvp5y2s3h8oQtFyoCF/hdJk3m8bRI=
Subject key identifier: E9:75:6F:A8:CD:1E:93:5A:54:EC:E7:EF:15:AC:34:72:1B:0F:A3:8D
Authority key identifier: C3:DF:25:56:E8:7F:5F:42:0B:01:8F:9C:1A:EB:10:93:1A:1F:03:CB
Certificate issuer: /CN=A9168EB9/serialNumber=C3DF2556E87F5F420B018F9C1AEB10931A1F03CB
Certificate serial: 06A1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w98lVuh_X0ILAY-cGusQkxofA8s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9168EB9/F3BC02A654B011EB96C9775AC4F9AE02/w98lVuh_X0ILAY-cGusQkxofA8s.mft
Manifest number: 069C
Signing time: Thu 06 Feb 2025 21:40:50 +0000
Manifest this update: Thu 06 Feb 2025 21:40:49 +0000
Manifest next update: Thu 13 Feb 2025 21:40:49 +0000
Files and hashes: 1: w98lVuh_X0ILAY-cGusQkxofA8s.crl (hash: ZY9Rza5Ql+6wMjKVvHfrSRLh6msldRR8NMMwTVWKzKM=)
2: B9D3CFC254B211EB9C4D4D5CC4F9AE02.roa (hash: sxs0n/m2HHgaEhbkzBCMRoX2MbbU87JuGmwyN2hoOa8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1697 (0x6a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9168EB9
Validity
Not Before: Feb 6 21:40:49 2025 GMT
Not After : Feb 13 21:40:49 2025 GMT
Subject: CN=67a52c61-7778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:7a:64:d1:18:48:9b:0a:73:72:91:63:8a:bb:
52:4b:06:fa:7b:0e:26:8e:f7:c8:0b:56:d4:8f:e6:
28:b1:cc:a2:dd:a7:6e:fe:6b:9c:86:02:53:6e:5a:
fd:04:4e:0c:69:30:84:bd:87:07:1f:16:31:11:e8:
4e:4c:3e:11:ca:f5:f5:98:0b:cf:5d:ea:61:0a:a6:
f6:30:cb:10:22:c3:62:44:8c:72:f9:5d:af:fd:5a:
36:67:23:9c:5c:c1:20:24:3d:b1:d1:e2:05:58:94:
ed:79:2b:09:f8:94:e3:2e:50:51:ed:58:6a:25:94:
e1:f0:4f:45:f7:06:9c:26:44:49:8e:27:0a:be:dd:
81:96:48:0d:9e:de:dd:24:89:4f:74:99:ce:6d:62:
70:7a:8a:b3:f5:4c:48:70:56:1a:1c:37:6d:e4:69:
37:3a:ce:94:db:4a:6a:07:58:c4:29:b2:1f:a8:10:
5a:b8:af:52:4d:f8:d6:c2:55:44:7f:d6:12:f5:9e:
5a:5a:d3:2f:1e:3e:e4:5e:e9:ba:44:82:63:67:c0:
2b:08:e3:9b:8b:32:a6:d3:d6:6f:50:fa:5c:65:e1:
0e:f8:9e:7e:ae:dd:4b:64:ca:cb:8b:60:95:2e:d8:
5a:e6:01:f8:ad:0d:c9:5c:48:8a:7f:f2:94:1a:61:
40:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:75:6F:A8:CD:1E:93:5A:54:EC:E7:EF:15:AC:34:72:1B:0F:A3:8D
X509v3 Authority Key Identifier:
keyid:C3:DF:25:56:E8:7F:5F:42:0B:01:8F:9C:1A:EB:10:93:1A:1F:03:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9168EB9/F3BC02A654B011EB96C9775AC4F9AE02/w98lVuh_X0ILAY-cGusQkxofA8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w98lVuh_X0ILAY-cGusQkxofA8s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168EB9/F3BC02A654B011EB96C9775AC4F9AE02/w98lVuh_X0ILAY-cGusQkxofA8s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
de:c1:6d:0a:dc:6c:b4:64:cd:fa:df:57:e2:c6:fe:57:1f:71:
28:b9:05:32:03:42:dd:69:9c:24:3c:7b:6e:d8:e6:11:b6:03:
a4:a5:61:c3:6a:48:c0:80:cd:40:54:f7:99:12:b7:25:5e:e2:
6b:62:e0:50:6a:62:b3:a8:6c:83:e2:61:d1:f8:fb:3f:ff:82:
05:bc:ab:f1:42:c3:7a:68:a5:38:9b:53:9d:1d:88:85:45:b4:
3c:7e:dc:11:d9:94:0d:6b:d4:16:26:bd:0f:a9:b3:7f:ad:d0:
6f:cb:61:e7:1b:b2:56:78:81:1c:2b:3c:15:73:60:ff:9e:75:
43:db:57:9d:87:47:68:a6:55:38:bd:72:93:06:ef:ca:fd:b5:
1b:ec:e2:3f:12:f6:2a:4e:0b:ca:75:d5:2e:d6:e8:c9:f2:cd:
8d:2c:43:c8:ca:fd:f3:37:8e:39:a5:a0:9f:5d:e6:f9:01:0f:
55:6d:d0:c3:10:10:51:a9:61:a9:5e:d6:1f:34:13:57:a9:86:
c4:c0:0c:ac:bf:91:34:c8:d8:8d:e8:4b:f8:d2:45:96:5a:db:
3c:f3:9d:2a:0d:c2:0b:a4:e6:8a:22:43:1d:c3:48:4a:a1:98:
26:03:47:eb:70:5f:6d:91:71:fe:de:81:6f:2e:be:ab:f5:a6:
be:d0:50:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:11 2025 by rpki-client