Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft
File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json)
Hash identifier: zISGc9wV48pUjLXz5mZH+1ogf5HsyIGV00Q1SLSWl2w=
Subject key identifier: 09:E2:3E:39:2A:E6:94:58:F2:10:A7:07:6D:A5:8E:82:84:E8:4D:3E
Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97
Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897
Certificate serial: 1656
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft
Manifest number: 1618
Signing time: Fri 28 Mar 2025 16:52:45 +0000
Manifest this update: Fri 28 Mar 2025 16:52:45 +0000
Manifest next update: Fri 04 Apr 2025 16:52:45 +0000
Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: 1sCoJEBM9AkHIH6Zp8Z6gMsGJq3OQXhRQNQsq6y5ZJc=)
2: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: pak3Iy8E0gYpnvDkmWBebcI4LeVYUCjbRqic1+nKIXc=)
3: 56C8FCACE38011EFBF195482C4F9AE02.roa (hash: YpgFRa2Rul9X6oABfgOzOCogI1xE9k1rvzUQOQyIs6c=)
4: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: v+Ks9nZk5YSGi8jwz8W2ujGkO89h3nHyAUbCbrfDviU=)
5: 2357FC145F8D11EF94E7303FC4F9AE02.roa (hash: Adsar2w8VAjS3SUaIO5TAhSv+c7iSEo6NtUlziAok5s=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5718 (0x1656)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9172D91
Validity
Not Before: Mar 28 16:52:45 2025 GMT
Not After : Apr 4 16:52:45 2025 GMT
Subject: CN=67e6d3dd-c34c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0f:7b:b4:fe:aa:cf:b3:19:47:53:a0:bb:50:
3a:44:47:db:bf:4b:be:4f:b8:64:c9:ae:13:4d:0e:
8d:0c:08:db:86:ba:30:24:24:7c:6c:8f:77:8b:90:
17:0a:67:48:a6:0e:95:83:c8:a0:3e:f0:38:00:24:
0f:31:93:fc:82:7d:97:a9:73:4f:c4:d2:db:ba:e6:
a3:ef:55:ca:d4:b6:8e:3e:71:6f:97:d0:9b:63:8c:
22:53:ed:d6:eb:f3:12:78:a1:85:ea:0c:df:86:74:
ea:ef:a3:f7:5d:e8:16:40:0e:fc:ac:29:74:ed:2d:
54:52:13:ed:90:c7:c5:6e:93:56:03:b6:a9:ef:28:
3a:90:cc:88:9e:ff:27:8e:ea:38:56:f2:b8:5c:67:
52:85:ec:f0:74:46:d5:db:ae:db:ca:02:1b:2d:63:
8c:ff:b4:1b:94:50:dd:89:bc:3a:33:61:a7:1e:f6:
58:dd:1c:ea:3a:58:c4:ab:09:65:46:d8:1e:9b:d3:
33:ab:ce:6f:bd:e3:8e:9d:8f:2a:57:26:26:d0:25:
5d:55:7d:21:7c:7a:6a:0c:2c:ca:fe:67:7f:58:5a:
72:a1:53:49:d0:82:1f:b0:ad:54:88:42:62:80:32:
dd:26:5e:53:fb:cc:20:47:ff:a1:02:ef:b5:18:69:
a0:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E2:3E:39:2A:E6:94:58:F2:10:A7:07:6D:A5:8E:82:84:E8:4D:3E
X509v3 Authority Key Identifier:
keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
71:8a:9a:35:90:18:4b:94:90:76:82:2f:29:82:fe:ca:77:0f:
b1:d5:76:90:73:b8:96:dd:bf:83:f8:44:de:2b:08:c5:54:84:
66:e0:48:a1:15:e6:3f:89:e4:b7:3b:28:e9:75:39:95:38:19:
0b:d4:22:15:54:37:79:a5:6b:52:98:e0:b3:61:45:d2:ac:aa:
06:55:53:49:96:80:e0:af:83:7e:c1:8f:be:ce:89:28:0e:5d:
5b:ec:47:17:55:c7:56:ae:9c:5e:fe:fc:d6:39:bb:d6:9c:85:
0a:50:77:da:34:dd:1a:9a:80:9b:a1:dc:03:de:01:de:37:2e:
57:a9:4f:c4:f4:10:42:86:6c:92:d8:ac:18:85:dd:4a:0a:eb:
fe:7f:7f:e5:e1:6e:bd:35:d6:92:15:d7:2c:d0:bf:c8:56:89:
86:85:25:e6:2f:00:ab:f2:5e:d3:71:e8:87:b4:09:2e:01:77:
4b:2e:4d:50:e8:2b:51:20:e1:ee:e2:a1:cc:a9:f1:c2:ce:02:
eb:6a:3b:7a:bb:a7:8c:1d:b3:b0:38:7e:e0:f8:e3:62:43:2f:
7a:74:82:e4:71:8b:ae:c2:a6:ce:6e:8d:90:f6:d9:ff:ea:e9:
9e:c4:f5:6a:37:19:b9:4a:f7:97:8b:a6:29:ac:0d:1f:69:3e:
92:fd:84:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 07:39:24 2025 by rpki-client