Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft
File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json)
Hash identifier: bLZOKQysvgpNK61yVEO5PT+DkW/JQs5PUvYbU2hOamg=
Subject key identifier: A0:9B:3B:BF:3D:E2:48:E3:38:84:FB:34:1A:8C:F1:21:E8:42:0C:66
Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19
Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319
Certificate serial: 014B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft
Manifest number: 0148
Signing time: Sat 29 Mar 2025 03:44:19 +0000
Manifest this update: Sat 29 Mar 2025 03:44:19 +0000
Manifest next update: Sat 05 Apr 2025 03:44:19 +0000
Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: +D9x0tN+jG9PG6LXLLEBxNCD6eBB2dDbx9YXiO8VG8Q=)
2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: gXQtBkkUAb9x4NlHq240u/Z9LPp8ccDpu+5MVL1TOAI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 331 (0x14b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917A67E
Validity
Not Before: Mar 29 03:44:19 2025 GMT
Not After : Apr 5 03:44:19 2025 GMT
Subject: CN=67e76c93-89e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ce:a0:96:e2:dc:d6:5e:3a:9b:95:a7:bf:9a:
3f:f3:cb:16:c9:d3:65:9c:d0:4a:e1:00:71:02:b7:
4f:5c:45:a5:32:df:69:03:ef:b7:c3:e9:a2:21:2c:
02:cd:ce:42:38:42:d0:92:88:2a:b0:bb:4f:d7:bc:
f5:22:4c:ac:8a:8c:92:c7:75:f6:92:ad:01:5a:7c:
00:36:e7:3f:1f:07:35:12:be:23:9c:a3:93:34:77:
6c:22:43:a9:09:0e:85:1d:f3:e5:af:6f:d2:69:dc:
9b:91:f3:ee:9d:fc:fb:05:3e:d7:10:d0:07:f1:a7:
2a:ac:aa:dd:50:e9:0e:87:79:a4:1d:88:d6:93:f6:
f9:a4:13:d8:ad:e0:d6:6d:77:fa:02:3b:92:90:e9:
fc:9b:ad:2d:36:a8:12:53:67:fc:8a:87:e2:37:cc:
19:3d:be:bb:27:1d:e5:c1:08:2e:5d:e2:71:bf:6a:
1a:c0:b7:8e:da:60:7d:d1:51:1a:60:bb:d2:5c:80:
07:c6:43:ec:d6:e6:0d:33:7a:4d:b8:5d:27:f3:8a:
7d:25:e7:aa:d0:35:84:00:81:82:6e:91:3e:b9:3a:
a3:b7:58:77:24:83:38:ed:cf:67:50:e4:42:77:5b:
94:d5:44:b0:9b:44:61:5b:80:00:7a:a8:93:9d:cc:
8f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:9B:3B:BF:3D:E2:48:E3:38:84:FB:34:1A:8C:F1:21:E8:42:0C:66
X509v3 Authority Key Identifier:
keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
30:86:c5:9d:1b:94:b1:24:74:35:e8:da:ba:ab:ab:8b:17:9f:
f9:ac:05:5a:b9:59:cd:7c:a4:91:0d:28:46:06:12:ab:29:d9:
3f:a1:c2:51:6f:2c:36:39:14:d0:91:ed:81:11:fb:89:25:ab:
f2:37:2c:54:4a:4a:f5:d9:0f:cc:21:5d:ba:69:7d:36:71:58:
56:d0:54:ba:21:62:ea:c6:6b:e7:05:cd:4a:df:75:fa:24:31:
55:13:c4:45:c2:93:d8:ee:6a:71:78:7a:10:19:c4:d7:72:3b:
77:cc:f6:1a:04:a2:d5:48:b9:c9:ff:16:d6:61:9d:d2:dc:00:
69:d5:36:e6:1f:28:a6:98:fe:a6:ca:a6:92:df:b2:d2:39:46:
79:0d:0a:21:08:8d:1c:05:bf:cb:16:40:9e:1a:ed:d2:ee:de:
9b:12:a2:7d:11:ab:b0:97:b4:43:5d:9c:87:d0:43:98:f6:03:
19:63:cf:a8:95:bf:c3:0a:65:b4:44:24:f3:c4:86:61:cd:90:
d0:2d:df:73:be:bf:e6:0e:18:6c:fd:7b:fb:73:44:01:83:10:
70:14:f9:ef:af:10:6e:2f:d5:f1:45:50:28:99:cc:10:7f:2e:
c5:e3:f2:5e:2a:4b:cc:3a:d3:9d:57:57:e5:8e:f3:f8:92:78:
4b:2e:f9:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 05:52:22 2025 by rpki-client