Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft
File: GHJyN_a30WUlK_m9s4a24ergVXQ.mft (raw, json)
Hash identifier: i+ecSP8DQrogxtlaGa/luel2PD/hSlIElayoCTETNvk=
Subject key identifier: 5F:87:78:EA:30:32:C8:B7:3F:D5:01:B9:7F:0B:F2:2E:5C:5D:06:76
Authority key identifier: 18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74
Certificate issuer: /CN=A917418A/serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574
Certificate serial: 02C5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft
Manifest number: 02C1
Signing time: Sat 29 Mar 2025 01:41:31 +0000
Manifest this update: Sat 29 Mar 2025 01:41:30 +0000
Manifest next update: Sat 05 Apr 2025 01:41:30 +0000
Files and hashes: 1: GHJyN_a30WUlK_m9s4a24ergVXQ.crl (hash: uEEuxWe8laMwWipy/DY5gkPZDrDeMzyG0Cla7IvarMY=)
2: FCA92EAAE4AD11EC839CED77C4F9AE02.roa (hash: wW4HCqhcoyo/dCvusJDIhbj+A+f9Rh4hUlMCJe2c3dY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 709 (0x2c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917418A
Validity
Not Before: Mar 29 01:41:30 2025 GMT
Not After : Apr 5 01:41:30 2025 GMT
Subject: CN=67e74fcb-5929
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:35:29:40:d7:dd:94:70:3b:a4:11:3d:20:5b:
7b:93:75:a7:4c:b0:5b:0a:06:bb:13:52:16:6f:7c:
55:aa:09:1a:0f:06:8e:09:8c:b1:fd:60:a0:21:6a:
28:c4:0e:83:8d:33:fb:4d:ef:a3:f9:a4:5c:5b:dd:
72:03:89:bf:03:25:02:c4:b5:bd:e1:f0:e9:04:2a:
76:4d:f0:17:66:98:c6:d4:15:db:55:4f:63:84:93:
5e:78:e1:de:08:7e:ab:83:9d:2f:af:89:88:c3:90:
ea:b2:0f:ca:0e:dd:34:41:35:a0:40:b2:20:71:56:
b6:e8:a1:35:f8:a5:be:e4:db:42:c4:bb:43:82:1e:
a1:b0:6c:98:82:85:f2:02:76:67:94:29:e0:8f:f7:
2d:1c:46:d8:c0:f2:e4:83:70:ae:cb:62:fa:d7:0c:
ce:5f:1c:0b:27:51:d9:85:56:fb:8f:3b:4c:8a:cb:
8b:e4:8a:a1:fa:93:8f:66:c3:ec:ed:14:68:cf:f7:
bb:a0:71:0b:90:c1:a4:7b:57:b0:bf:bd:c3:81:0e:
2f:61:66:e4:52:c3:8d:c9:79:4d:b6:02:22:f1:7e:
55:f3:56:f2:10:89:f8:63:94:f2:5b:c4:77:75:6b:
7d:28:8d:8a:1f:53:8f:02:18:ed:17:88:9c:90:96:
f6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:87:78:EA:30:32:C8:B7:3F:D5:01:B9:7F:0B:F2:2E:5C:5D:06:76
X509v3 Authority Key Identifier:
keyid:18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9c:31:99:19:a9:a8:df:da:8a:c4:ad:b8:a2:3a:90:37:20:13:
3b:f4:3c:24:52:5c:ba:b6:13:3c:b8:34:96:9b:79:12:44:85:
a3:90:cd:50:b0:3b:d1:f8:79:e3:0f:d1:0b:25:64:b7:5d:56:
9c:67:d1:bc:d8:49:bc:94:b8:02:02:95:36:da:e1:57:f1:79:
6a:5b:3f:af:17:91:55:0d:a9:98:ef:11:52:15:84:ce:f2:f5:
41:0c:0a:46:27:e9:d5:30:6d:78:29:24:8a:c1:41:59:c6:d7:
4b:9e:35:23:26:eb:2a:b7:98:fd:ab:0b:73:c5:72:ac:7a:af:
8e:35:75:37:3f:df:b3:f1:19:84:2e:d0:2e:5f:9a:4f:61:07:
89:87:ce:ab:3e:a8:88:e5:c0:6e:d4:e7:d2:cd:eb:93:f7:2a:
df:30:2f:d8:4e:0e:62:66:4b:00:bf:0f:bf:2c:90:a7:67:f5:
6c:b0:b9:25:36:52:54:61:3b:b0:6a:66:dd:e5:d8:8e:ed:06:
cd:a3:c2:29:ce:40:91:d0:db:34:fb:6f:09:53:6f:46:5d:0d:
c5:6b:b6:b0:40:a1:7e:ed:dd:de:36:9d:ee:1a:36:d4:a2:31:
fc:8a:6a:46:dd:a8:a3:3f:fa:ce:55:36:ed:05:30:7c:59:da:
34:f3:6b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:31:00 2025 by rpki-client