Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/cKH09V1h0yEhCBXRHZ1aIoGF49g.mft
File: cKH09V1h0yEhCBXRHZ1aIoGF49g.mft (raw, json)
Hash identifier: Ovm0unJ+3hH/i6DnthhzfJCfti/zf2WspkHFgEiZO5Y=
Subject key identifier: 48:DD:BE:50:62:4A:36:E7:F5:08:4B:F4:BA:BC:56:1D:D1:35:AF:0E
Authority key identifier: 70:A1:F4:F5:5D:61:D3:21:21:08:15:D1:1D:9D:5A:22:81:85:E3:D8
Certificate issuer: /CN=A917368A/serialNumber=70A1F4F55D61D321210815D11D9D5A228185E3D8
Certificate serial: 02EA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cKH09V1h0yEhCBXRHZ1aIoGF49g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/cKH09V1h0yEhCBXRHZ1aIoGF49g.mft
Manifest number: 02E7
Signing time: Mon 17 Feb 2025 02:31:55 +0000
Manifest this update: Mon 17 Feb 2025 02:31:54 +0000
Manifest next update: Mon 24 Feb 2025 02:31:54 +0000
Files and hashes: 1: cKH09V1h0yEhCBXRHZ1aIoGF49g.crl (hash: 6lCAzJEKDIn3a+6UcAqmphMujBmGxSQ2zhzp4wU731s=)
2: EE0C8EC2CD4311EC8DA37755C4F9AE02.roa (hash: wp8vuIMIgu9u8/7IDWCkvLi4+gnieeCEzclE+crwT1E=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 746 (0x2ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917368A, serialNumber=70A1F4F55D61D321210815D11D9D5A228185E3D8
Validity
Not Before: Feb 17 02:31:54 2025 GMT
Not After : Feb 24 02:31:54 2025 GMT
Subject: CN=67b29f9a-5cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:36:09:3b:08:a7:5e:41:5c:55:1b:1a:74:b3:
d9:07:b7:75:6c:47:d1:5e:a9:ea:e4:43:5a:36:e4:
4f:33:50:a7:4d:99:71:4d:d2:10:02:65:cf:18:27:
14:42:d5:47:f7:c7:c3:ea:9e:64:c6:f5:c3:ce:49:
b8:23:d6:77:68:0e:73:66:53:f3:a4:19:f8:19:d2:
84:d2:d9:48:1e:42:c7:27:10:b3:d6:38:0c:f9:3e:
8c:2d:8a:03:ec:69:0c:b6:fe:8e:9d:63:fc:26:d8:
46:f7:31:c9:9a:0d:40:24:15:49:38:2a:cd:eb:4f:
6b:05:2d:90:5c:7e:0b:45:7a:d6:2e:a8:94:3e:88:
e5:11:55:f6:5b:3f:97:a0:5d:49:2b:3f:f7:15:e7:
64:4f:4f:7b:3b:70:d7:e0:fb:1e:2e:e3:7d:24:3a:
43:0b:0e:ba:23:19:8b:1b:bb:f9:73:3a:1e:1e:d0:
58:6c:c7:97:2e:28:bf:16:51:fd:7a:6d:71:95:6d:
7c:c9:5e:67:58:8c:5c:b6:5b:35:3c:cc:4a:8d:9f:
f2:59:60:ba:82:8f:20:e2:77:d0:a1:69:eb:63:ec:
f5:14:a9:79:c1:ab:9e:16:ce:26:82:0d:30:56:f5:
d0:31:83:1d:15:33:ea:7b:6e:e6:e0:49:a8:4c:e2:
f6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:DD:BE:50:62:4A:36:E7:F5:08:4B:F4:BA:BC:56:1D:D1:35:AF:0E
X509v3 Authority Key Identifier:
keyid:70:A1:F4:F5:5D:61:D3:21:21:08:15:D1:1D:9D:5A:22:81:85:E3:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/cKH09V1h0yEhCBXRHZ1aIoGF49g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cKH09V1h0yEhCBXRHZ1aIoGF49g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/cKH09V1h0yEhCBXRHZ1aIoGF49g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
48:90:97:d7:f1:1d:46:d7:d6:77:b7:4f:f1:33:08:92:7c:af:
b0:3a:97:1b:82:f0:4a:b6:e6:f7:0f:d9:fa:0a:b2:dc:bf:87:
5f:fe:77:12:6d:1f:e8:3e:4c:7f:41:c5:df:01:01:02:7d:7d:
a8:0d:53:6c:b7:46:86:cb:88:39:e6:40:e2:bd:30:8e:09:df:
4f:d0:ad:11:a9:fc:60:58:67:82:24:2a:3f:3d:91:91:be:a7:
d1:86:2e:7a:12:e8:fc:4e:de:88:e8:65:e0:e7:72:ae:28:bb:
f0:a6:3b:c7:31:b6:26:97:e0:0c:f7:b4:eb:1a:00:2c:f4:40:
f0:34:f6:ad:ba:d9:5b:e7:83:18:a1:aa:78:aa:78:ba:b9:d6:
b8:4a:5d:f9:f5:4a:aa:df:05:3b:71:66:41:a2:47:d2:6f:de:
8f:ec:00:ee:b0:6e:68:91:ca:53:a2:7c:71:dd:8d:ce:b1:ac:
f3:77:91:97:c0:3b:f4:86:9c:30:30:e6:ee:40:0b:4b:39:cd:
33:b3:31:f0:45:96:d5:cd:32:89:ad:a8:e2:f9:88:9c:c4:d4:
fc:97:7b:15:14:08:2a:98:fb:e7:94:9f:18:3d:ca:56:ef:79:
56:54:9c:3a:76:d9:f4:2e:86:44:c8:25:ac:f5:38:c7:09:fe:
97:f6:32:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 04:32:05 2025 by rpki-client