Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft
File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json)
Hash identifier: AgLPcDV2vsbI5jRmIq8TgKW+O1rzFum7viV1o5osfw4=
Subject key identifier: C5:C4:F5:86:4C:9A:9F:19:59:93:8B:EF:A0:0C:5B:B4:57:61:BF:05
Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F
Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F
Certificate serial: 0181
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft
Manifest number: 0179
Signing time: Sat 29 Mar 2025 03:20:13 +0000
Manifest this update: Sat 29 Mar 2025 03:20:13 +0000
Manifest next update: Sat 05 Apr 2025 03:20:13 +0000
Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: YlCYE14CpNGkb8VJ3Mju9ISCmAFFwcfEugvHnwk+vLg=)
2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: fF5qhzlNsRoevz2xwRiMiJlwy42Apo4uSvGZ/c3+DCY=)
3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: nDg9tGieY+hhukTrtCHIrGu5m7tkEFWVmvQM/81QKSI=)
4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: yrSI/VPF/gmdws9LHJgb8tXVegj+jybX3Fb+sP5IwCo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 385 (0x181)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9173C63
Validity
Not Before: Mar 29 03:20:13 2025 GMT
Not After : Apr 5 03:20:13 2025 GMT
Subject: CN=67e766ed-7bff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:22:26:30:17:a3:50:10:dd:c0:f3:2c:7f:43:
d8:46:cd:97:65:6a:39:34:cb:52:9b:c0:68:77:d4:
1d:d3:91:65:e4:d2:fe:95:99:bf:ad:d0:10:a9:15:
83:75:b7:c1:06:9a:56:bd:65:4a:29:22:c2:41:19:
4c:76:4e:8f:96:46:d8:ec:92:d7:ac:01:f9:10:2b:
c7:20:f0:4e:f9:cf:53:09:53:c9:4b:90:d4:66:2e:
37:42:05:d5:63:15:43:8e:f2:7e:ad:a3:3c:2c:99:
d7:77:b5:dd:30:e7:0f:62:c5:cc:f0:53:e6:8d:7d:
16:7e:5f:82:07:39:e6:d6:43:82:c0:94:e7:8c:9f:
7b:bb:ce:13:fc:d1:ec:93:22:de:a4:83:cb:c1:56:
e2:7b:55:55:5f:9c:b6:57:8a:66:14:33:5b:8d:df:
ee:ee:43:49:c2:97:8b:2a:ca:3f:0c:dd:07:84:35:
60:ae:03:59:55:08:63:88:49:64:e9:ec:eb:6c:3e:
6e:df:49:20:0c:4c:99:0e:0e:62:a8:39:af:00:3a:
f2:bd:1a:de:2a:5a:93:73:be:00:c5:fe:ab:32:01:
7e:8e:b0:01:d1:6e:16:62:d2:ed:3c:57:7a:47:d6:
ca:33:e2:c8:b0:ab:36:dd:ec:93:3a:7c:c4:f4:d5:
67:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C4:F5:86:4C:9A:9F:19:59:93:8B:EF:A0:0C:5B:B4:57:61:BF:05
X509v3 Authority Key Identifier:
keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
86:c7:ab:83:d7:44:c7:f2:42:f2:53:cb:a1:3b:1a:b7:23:2f:
9d:2f:2d:e5:ab:4c:a2:4a:7b:34:95:d2:ab:2c:cb:62:c9:6a:
10:c5:58:b7:6e:ad:1f:fe:f9:93:2c:e4:81:50:9d:da:f1:dc:
3a:10:bd:20:63:b7:58:cb:5d:49:cf:0b:32:16:8d:bd:4c:3b:
f8:dc:ce:09:6b:06:e9:21:8d:cf:db:e4:e9:53:12:39:12:13:
54:b7:98:6a:9e:a9:d6:ae:1b:02:16:5f:ed:29:10:62:07:36:
1e:80:d3:dd:6a:48:5d:47:83:07:47:5e:2f:1b:e0:fb:17:e8:
0a:81:ad:47:4d:b7:65:4d:02:eb:7c:42:1f:5d:24:ae:d9:ef:
64:a5:9e:dc:b6:1f:a4:86:31:a3:4d:e8:1b:ee:0b:d9:33:19:
33:b6:f2:56:8b:26:99:6e:b2:56:1d:7b:ce:49:59:23:51:0b:
0e:b4:92:c1:87:f8:ba:96:a4:ca:68:58:6c:6f:4f:74:5f:e4:
d3:af:f4:36:9f:8a:60:8f:cd:6d:73:1d:10:2c:53:d6:fc:22:
ef:eb:81:07:da:6a:0d:fb:6e:68:c1:91:28:e8:ce:ee:1b:31:
42:6e:45:3f:2c:40:04:39:79:ce:90:3b:97:2c:35:ae:80:f4:
be:79:0b:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:28:02 2025 by rpki-client