Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft
File: bYD-tReA9_EG5hkNw-LufOdO77s.mft (raw, json)
Hash identifier: r6vtbzwUpqimLKUPVGnZ18kKXP4u3VymKW8PXkZ8+Y0=
Subject key identifier: 95:B0:FC:1B:D7:73:C8:6C:F9:B7:FB:5C:F0:CF:78:AA:1A:6A:C8:AF
Authority key identifier: 6D:80:FE:B5:17:80:F7:F1:06:E6:19:0D:C3:E2:EE:7C:E7:4E:EF:BB
Certificate issuer: /CN=A917624C/serialNumber=6D80FEB51780F7F106E6190DC3E2EE7CE74EEFBB
Certificate serial: 02F4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft
Manifest number: 02F1
Signing time: Sat 29 Mar 2025 01:33:37 +0000
Manifest this update: Sat 29 Mar 2025 01:33:37 +0000
Manifest next update: Sat 05 Apr 2025 01:33:37 +0000
Files and hashes: 1: bYD-tReA9_EG5hkNw-LufOdO77s.crl (hash: dkKQbFdUIEnoYTc8IPrdW+/64q6drElo8/18wb6c6VY=)
2: 52801AD8D07111ECAF21A75DC4F9AE02.roa (hash: qF7Z9bCq6Bb/CjCCcxi/i5YpMx2Ig2rtU2KcJKtS8jU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 756 (0x2f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917624C
Validity
Not Before: Mar 29 01:33:37 2025 GMT
Not After : Apr 5 01:33:37 2025 GMT
Subject: CN=67e74df1-7b13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1a:ac:2f:b0:88:5b:ac:46:bd:5f:0e:ba:0b:
30:be:8d:e1:b3:0c:d9:53:be:7a:18:ae:ae:38:21:
05:cf:2b:23:ec:63:de:d0:c0:7c:6f:7e:8b:a6:17:
c1:28:1b:d9:ca:05:97:da:d4:05:95:77:b6:9b:62:
33:40:54:11:a4:33:07:98:95:87:13:5b:d4:ef:76:
c9:8b:bc:8f:4f:22:c6:23:a3:15:0d:28:8c:5f:c9:
47:fc:9a:24:88:e4:b1:0e:21:96:53:b9:3d:cd:b4:
07:2b:e3:c9:5a:a5:4b:eb:74:1f:67:1b:1f:3b:01:
8c:b2:f8:2f:5b:c4:58:e5:fa:2c:e9:30:69:57:c6:
a1:8d:19:ed:77:d6:0d:69:4f:79:13:a6:6f:88:64:
91:c8:56:cc:16:e1:3e:ab:ad:c8:7d:32:31:2c:67:
53:43:fc:9c:40:f6:2b:1d:26:07:91:85:b6:29:bf:
bb:5e:47:81:fb:39:02:54:ea:c5:e1:02:80:92:1f:
5f:9a:2d:f3:65:0f:f9:91:50:e2:d6:7b:c5:84:6f:
ee:22:d0:d4:ae:2a:e8:ee:8d:9a:c8:5b:14:b0:01:
8a:ec:1b:2c:14:3b:68:af:75:d7:f5:d0:bd:2e:69:
fd:3d:4d:d5:61:93:1c:9b:47:e5:7e:85:fc:57:2c:
fe:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:B0:FC:1B:D7:73:C8:6C:F9:B7:FB:5C:F0:CF:78:AA:1A:6A:C8:AF
X509v3 Authority Key Identifier:
keyid:6D:80:FE:B5:17:80:F7:F1:06:E6:19:0D:C3:E2:EE:7C:E7:4E:EF:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
74:dd:23:96:3c:55:5d:51:fd:11:f9:12:64:b6:77:d1:f9:19:
e7:1a:92:79:69:92:a8:7e:26:dd:f1:61:f4:3a:9d:5b:ec:d2:
63:ad:51:de:c4:c4:e5:62:db:32:82:0b:d0:86:79:ce:46:5d:
67:45:1f:f9:85:38:7c:16:ee:e0:ad:51:4d:86:b3:66:7c:dd:
20:2c:e4:84:08:c6:48:fb:a5:25:ab:bc:18:f4:e7:2e:49:4b:
ee:bc:79:49:d7:5f:42:a3:38:0c:51:3f:5e:2a:e5:4c:ed:02:
2f:60:70:32:1a:36:de:8e:f9:88:fa:ce:b5:cd:0e:b8:64:a4:
e5:05:bd:3a:10:22:d1:ac:7e:f4:c7:2d:8b:2e:2d:ba:1c:18:
46:bb:ee:5e:70:9a:9b:b2:fa:81:3e:12:27:df:a6:c5:98:25:
91:ba:38:41:25:24:83:07:1b:be:97:a8:4a:e4:96:e4:a1:4a:
34:12:ac:63:85:e3:f0:5e:fe:0f:3e:bb:82:65:eb:9c:da:ab:
29:86:86:53:30:70:9e:dd:a3:39:eb:96:49:37:6e:75:bb:a8:
48:6c:ab:d9:90:13:d9:24:c3:d3:b5:f2:a2:8c:8a:4c:03:3d:
c7:24:dc:9c:a4:4b:e3:77:e6:8f:46:5a:32:dc:45:d3:2c:a2:
40:c4:f0:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:02:08 2025 by rpki-client