Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft
File: 0PiwBllsfAN8tUkwWzlpAACq6KQ.mft (raw, json)
Hash identifier: vtyIuUFz6g11GPjzzHhdoxeKlOfFxOfyeXC5JAA4TL8=
Subject key identifier: 4C:E1:DA:E8:7C:D4:BD:70:F1:6B:F5:D9:FF:48:28:2C:8B:53:0B:81
Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4
Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4
Certificate serial: D6
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft
Manifest number: D2
Signing time: Sat 29 Mar 2025 05:02:04 +0000
Manifest this update: Sat 29 Mar 2025 05:02:03 +0000
Manifest next update: Sat 05 Apr 2025 05:02:03 +0000
Files and hashes: 1: 0PiwBllsfAN8tUkwWzlpAACq6KQ.crl (hash: SRABEHcPmUuuCXDbcsMoTy/KbjCpLSZ7khZLATp9GsM=)
2: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (hash: tE5MO0yGqfdQRPhR9mD7EUVj7T64niX8BINnA3y1Amk=)
3: 6BA3FEA4CCBD11EEBADDFC4AC4F9AE02.roa (hash: qBQp3vvSD9elb8dQbwCPuGirBXWWVwR3GT0tS3LqEZA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 214 (0xd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91754C0
Validity
Not Before: Mar 29 05:02:03 2025 GMT
Not After : Apr 5 05:02:03 2025 GMT
Subject: CN=67e77ecc-b50c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ee:a3:b6:38:77:f7:a0:9c:bb:ad:9a:b6:35:
91:47:74:21:8a:70:8e:31:fa:a4:7e:63:64:5a:c9:
cf:8b:2f:78:c0:4a:5d:57:99:26:63:22:c7:52:93:
d6:1e:d1:4b:da:bf:fc:82:b5:a8:af:1c:03:eb:9d:
5f:61:01:3e:62:6f:16:99:61:0b:1e:8e:6c:6c:ad:
20:ff:d5:84:aa:3d:d0:7b:54:86:15:fa:39:d1:0f:
c7:69:23:c9:cc:5e:e2:28:ca:ab:9e:40:af:e0:04:
ab:6b:26:90:b1:76:19:48:9b:ab:65:79:fe:aa:a8:
35:e3:9a:4d:15:6d:08:10:52:fe:e2:6e:92:9f:6d:
d6:b1:70:63:24:6c:11:4f:ca:70:69:b1:03:fe:53:
90:b9:6e:0d:f8:8a:c1:87:d3:7c:be:41:d4:77:99:
e3:8a:63:ec:e4:ff:c0:88:7c:a5:d7:fb:70:29:8c:
eb:72:5c:54:1a:e1:3f:d6:82:6d:5e:46:f6:55:6a:
4d:60:e2:db:1a:07:68:89:b0:d5:ae:ba:9e:14:34:
d4:8c:94:8c:1f:36:11:4f:31:9b:10:49:56:93:c6:
d8:28:2d:b8:79:91:a0:a7:20:45:5a:20:5b:94:54:
e9:59:19:5f:7a:4f:17:42:e5:65:60:e8:e0:75:0c:
7f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:E1:DA:E8:7C:D4:BD:70:F1:6B:F5:D9:FF:48:28:2C:8B:53:0B:81
X509v3 Authority Key Identifier:
keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
66:ab:99:bb:7c:1b:61:34:8a:0e:49:d2:d4:78:3a:69:bd:3d:
e5:4c:1c:e1:b5:47:31:0c:d3:16:13:b6:95:18:ff:23:e8:f6:
b7:b8:86:35:1f:3d:9d:6e:cb:44:18:42:11:07:bd:e1:80:e3:
ac:46:f3:4d:87:21:25:2f:e1:e2:56:3e:9b:2f:6d:51:1c:97:
7d:cd:72:14:00:a9:a9:b7:6c:be:36:83:83:8b:a6:7b:1f:be:
42:58:c5:6a:b3:ac:d3:3f:a5:29:83:c1:e0:2a:80:83:10:82:
29:b3:97:10:4b:46:1c:08:1a:49:72:b2:c1:e1:02:29:10:22:
1b:08:1c:56:b6:08:2d:be:a5:d2:94:6c:5e:ac:80:19:b1:c2:
47:63:f9:83:21:ab:88:de:b8:79:d0:43:89:54:fb:92:1b:57:
01:bd:bc:27:69:d6:ca:1e:e0:a6:d2:4c:55:78:52:ed:c2:5a:
d0:42:a0:59:17:c8:16:44:88:a0:18:f0:66:e9:11:8b:16:0e:
b1:48:d6:6e:17:8a:a0:52:75:2d:46:0b:ee:bb:24:b2:08:bb:
8e:0d:83:8d:3b:0f:ba:9b:3e:f6:68:3b:28:f2:f2:a0:82:14:
2a:ae:8c:af:7b:5c:b0:3e:30:a5:cc:fd:af:2b:34:a4:ea:c4:
0e:a3:19:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 00:39:36 2025 by rpki-client