Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft
File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json)
Hash identifier: ZHRHziNW/k1kPFgVgAQr9IldoDkYoqSJiC2wDFSTORc=
Subject key identifier: 19:F8:22:C4:71:0F:CD:10:97:48:D5:38:5F:05:16:92:E8:81:5C:33
Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32
Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32
Certificate serial: 2C09
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft
Manifest number: 2B64
Signing time: Fri 28 Mar 2025 15:39:07 +0000
Manifest this update: Fri 28 Mar 2025 15:39:06 +0000
Manifest next update: Fri 04 Apr 2025 15:39:06 +0000
Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: aA8aSxvuFIICFxJ86GUpfY+VjvTyPdyo1XmPJqseUYk=)
2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: cw0PqwBBK0RHpksVvzPS62Y/XzIKpQmwvX5oJ3Ga1Uc=)
3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: G/2ljlZXzsuc6fmr+LrsxDu437pL1+BbINl7CakOHNg=)
4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: ZzwjjjV43983S9z3YZGjXBw9c3x4QvReAm0radZl0Rc=)
5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: iJX8QvRtMVBhv+UXxylmDNIfKvmMzmtMROe4rMBXyWI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11273 (0x2c09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C128
Validity
Not Before: Mar 28 15:39:06 2025 GMT
Not After : Apr 4 15:39:06 2025 GMT
Subject: CN=67e6c29b-7b6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:de:1d:62:4c:cc:1f:b5:a2:58:b6:41:bf:a6:
8a:e8:2d:2d:46:84:7a:90:cd:35:00:0d:e0:e5:28:
21:a1:85:57:56:4d:f2:07:9a:63:74:4c:83:59:95:
b5:8d:b3:2c:92:d8:ef:4c:33:8b:77:d8:8e:8d:24:
77:ed:56:a1:41:16:c7:23:13:50:5f:ae:28:bf:9f:
89:8c:ed:77:c6:87:2c:46:1b:d1:8c:e7:53:7f:04:
78:c2:4e:ea:30:94:8b:ff:11:9d:0c:56:b3:5f:e0:
bc:19:1b:8e:c1:b0:a7:93:32:72:68:72:ff:62:a5:
ba:5d:95:da:09:50:93:9c:72:a1:6d:6c:4c:f4:94:
28:02:4e:81:60:ee:b1:b5:34:82:2f:8b:08:79:84:
5f:db:9e:54:66:56:52:1a:f7:aa:1e:73:c1:69:05:
04:0d:8f:07:e2:27:74:32:2a:e5:7a:e5:e5:92:9e:
2b:b6:7c:57:cc:c2:b9:96:35:b7:9c:a8:da:4d:b1:
8d:1d:23:30:b8:ba:ae:bb:d9:5f:33:89:36:3e:66:
7b:e2:09:eb:95:9f:e1:2f:25:ae:79:bd:a2:ac:68:
80:56:ce:f5:13:ec:43:e1:ce:39:64:8e:96:db:0b:
ca:dd:d6:71:ac:b2:6c:b1:40:06:48:98:dd:19:7e:
88:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:F8:22:C4:71:0F:CD:10:97:48:D5:38:5F:05:16:92:E8:81:5C:33
X509v3 Authority Key Identifier:
keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6b:bd:88:a4:a3:3e:2a:e4:17:85:3d:11:e2:42:b4:df:44:2e:
c6:63:ad:f2:c8:1a:65:33:ba:fa:24:72:c9:dd:6b:55:2f:f9:
84:5b:81:34:82:e2:88:9d:65:a0:f3:b8:13:5a:9d:1b:44:92:
4c:70:a0:5d:8c:1d:73:4b:eb:1e:57:50:c9:c5:a4:67:b8:4a:
17:3f:8d:ba:dd:ec:15:4b:ac:5b:17:88:4b:92:13:e4:c2:b1:
1f:c8:62:ab:af:06:92:ac:4b:94:28:7c:9e:5f:d3:30:0d:5a:
cb:40:9f:45:57:87:6c:c0:70:3b:28:a1:a4:97:f2:48:92:a6:
3e:20:47:ca:86:6c:51:ab:df:74:d2:2f:bf:ca:da:75:77:56:
ae:c5:8a:44:4e:db:e3:31:90:c7:2b:69:8c:3a:83:8e:d9:10:
e1:f6:75:47:71:1d:d3:2b:0b:e2:b7:56:0f:17:23:28:ab:00:
a8:e7:79:c1:d2:cb:c7:fc:21:39:8a:f1:a7:4d:a5:91:0a:ae:
36:29:b6:a6:40:e2:12:95:b6:c2:68:2f:02:05:7d:c3:23:ac:
06:cb:72:b5:9f:75:38:97:dc:6a:19:9d:4a:72:01:71:44:50:
a3:0b:3b:89:c6:0a:45:d4:a6:c9:10:48:c0:51:21:65:84:7e:
dd:01:c5:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 19:12:58 2025 by rpki-client