Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.mft
File: sGbiQQUMOMNJyyXUQBRFD09QGK4.mft (raw, json)
Hash identifier: T5sJTFCKoDjkuymdxooHcHAxZQNAMfDhOZ3zmXID3I4=
Subject key identifier: 91:7A:13:32:98:B9:64:6E:52:3D:43:3F:AD:27:84:EE:F5:B8:4C:D9
Authority key identifier: B0:66:E2:41:05:0C:38:C3:49:CB:25:D4:40:14:45:0F:4F:50:18:AE
Certificate issuer: /CN=A916CE83/serialNumber=B066E241050C38C349CB25D44014450F4F5018AE
Certificate serial: 1007
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGbiQQUMOMNJyyXUQBRFD09QGK4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.mft
Manifest number: 0FFD
Signing time: Fri 28 Mar 2025 17:34:08 +0000
Manifest this update: Fri 28 Mar 2025 17:34:07 +0000
Manifest next update: Fri 04 Apr 2025 17:34:07 +0000
Files and hashes: 1: sGbiQQUMOMNJyyXUQBRFD09QGK4.crl (hash: rDuXo34fIeZCyxo7elmMDiHE1KMWZW1+ryX1MyHJ7V4=)
2: 6657C8D243B911E9AE253437C4F9AE02.roa (hash: Ksnt24EsyPmiy/Gyqmmcb01Su1qcDddDH/I7fUARzPI=)
3: D38E10ACDEA311EE901DD072C4F9AE02.roa (hash: NbpmBB1gIIGV5sc1Y6a1vNgV2IiOYxP9cMlh7LY3b+0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4103 (0x1007)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916CE83
Validity
Not Before: Mar 28 17:34:07 2025 GMT
Not After : Apr 4 17:34:07 2025 GMT
Subject: CN=67e6dd8f-6047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c5:5e:e1:5c:9e:8c:a5:e4:4c:8b:4a:68:61:
4c:30:e2:55:90:7e:f8:b2:51:8d:fa:ff:16:93:6c:
a1:e3:ca:48:2f:f5:bb:9a:65:53:c4:62:c9:de:55:
a7:b4:72:73:72:81:44:bf:c7:d9:b8:79:d9:39:10:
90:16:78:d8:64:8b:59:e8:8a:a0:42:78:44:b0:fc:
5d:bf:de:34:be:88:bf:86:97:fa:3f:4c:b3:f6:9f:
a2:f0:58:46:80:ba:d8:94:1a:5e:09:4b:a8:5f:9a:
86:2b:9b:06:bb:37:de:52:49:b3:d5:5f:a5:52:59:
2b:51:29:11:30:69:a3:5a:2c:6d:4a:db:c8:01:ff:
84:ad:3e:ec:a1:fa:a1:b5:f9:51:49:c2:58:b2:3f:
c4:a6:a6:e4:1f:02:fd:68:d1:bc:07:87:7a:3d:ae:
2e:af:c4:8b:38:9c:72:60:eb:99:a0:f1:66:f8:ad:
30:34:ab:5c:18:d9:74:65:15:8b:47:84:b6:1e:d9:
12:57:7d:0d:d8:04:2e:fc:f7:1f:04:f0:e6:3e:b1:
14:27:a1:26:ae:74:a8:dd:b7:8f:33:69:5e:8c:73:
35:4c:f2:d0:1f:e1:8f:77:8f:e9:52:94:e3:5d:87:
ac:74:7a:c3:ac:6f:99:60:1f:c8:d7:74:25:f3:6c:
be:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7A:13:32:98:B9:64:6E:52:3D:43:3F:AD:27:84:EE:F5:B8:4C:D9
X509v3 Authority Key Identifier:
keyid:B0:66:E2:41:05:0C:38:C3:49:CB:25:D4:40:14:45:0F:4F:50:18:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGbiQQUMOMNJyyXUQBRFD09QGK4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2e:66:67:0d:3f:dc:96:7f:28:ce:78:34:18:b9:fb:d8:96:b1:
1e:b9:13:1e:e8:f2:c5:c5:2a:6c:2e:1e:33:15:5b:a1:2d:ab:
84:34:1e:c1:0b:2b:23:11:74:f3:28:18:81:16:23:ba:65:84:
07:d8:4d:f4:36:6c:71:bc:0a:12:62:f1:16:be:bc:eb:6f:11:
db:0f:86:bc:10:40:80:46:c2:6a:d2:43:6a:e8:e2:79:56:ab:
9d:98:15:10:cc:70:ad:15:ae:35:50:ce:84:e2:b9:ce:87:6c:
7c:63:27:33:59:10:6b:f8:5a:24:63:d3:0c:44:39:11:17:13:
fe:e5:20:dc:b3:75:a2:5e:83:a2:ce:ef:ac:39:8d:17:a8:e4:
19:c8:e2:21:f6:92:37:c9:12:f7:9e:e3:96:10:d3:fe:6f:60:
fd:42:03:3c:67:c2:fa:c6:2f:5d:68:2f:e1:0d:d4:a6:62:87:
7c:a2:ac:92:fa:38:ec:4f:d0:d0:99:c0:22:2c:ab:76:cf:4a:
b3:43:db:8c:15:db:75:2f:ef:b4:27:c8:28:62:84:49:e9:3c:
ae:75:ad:b0:37:9f:dd:d6:d2:77:d1:c9:88:77:49:6c:e8:7d:
bf:b8:85:c9:13:5b:f2:ad:4f:88:70:ca:95:a2:66:5d:da:d8:
68:f7:3c:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:33:03 2025 by rpki-client