Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft
File: 4QiBh_ZAlCY92mdJqV9zqmwasGM.mft (raw, json)
Hash identifier: Xkrj3esSWCnmiiQvt1UCHik+vR4ZwgDDMVs7k27UJUY=
Subject key identifier: 82:F4:7F:83:18:76:B4:B7:EB:B9:58:BF:CA:1B:37:3D:41:7D:A9:14
Authority key identifier: E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63
Certificate issuer: /CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063
Certificate serial: 0291
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft
Manifest number: 026A
Signing time: Sat 29 Mar 2025 02:06:50 +0000
Manifest this update: Sat 29 Mar 2025 02:06:49 +0000
Manifest next update: Sat 05 Apr 2025 02:06:49 +0000
Files and hashes: 1: 4QiBh_ZAlCY92mdJqV9zqmwasGM.crl (hash: XG34Wa7hqJ27BtFGY3eIPaiNnvKm85iN4OVXGcDsw0w=)
2: CC647BDECAC711EF80553A61C4F9AE02.roa (hash: JjvbSqdanHSpYIcMXGp+ZgcFpNIRiyjhFnX93ubLPo8=)
3: 4C7C3EA8E8F511EDBC11CF6BC4F9AE02.roa (hash: voNhvFt+rl48+RXxjQWaNEIjDq7tMEczadZRVwJF374=)
4: 78BC7D28A87E11ED9AE70779C4F9AE02.roa (hash: J3Ksm9WsEr0TXjLLhaQloclJKmSPXVrqrAzTlf/eKtU=)
5: 3632957E441311EE8A03A472C4F9AE02.roa (hash: hc0GUtEKKEGW9gMZlTO39H3fWKoJ6wdGBAjVqIVrLxQ=)
6: 780136B63D1211EEBB0A0C5AC4F9AE02.roa (hash: SMaX3aa/UFh43gcKCcEgmT4cm/dWEuQesSH3aBzRpfE=)
7: CCEE4F76CAC711EF80553A61C4F9AE02.roa (hash: 74i29heKayX8ulpi57w5YoL9mLrlBcexKja8YJG8ecM=)
8: 9DC49A2449A011EEB3DFDD0DC4F9AE02.roa (hash: I/sFHc7XYiJ8eT0AIMA2+7XdYKHUvmlkXtbK7T+Me2I=)
9: 3D34A750A88111ED80831318C4F9AE02.roa (hash: a76JQF1qiEmLZKSWyiAc52KnTZOIYMAyGXRjtxdQkfY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 657 (0x291)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917BAC5
Validity
Not Before: Mar 29 02:06:49 2025 GMT
Not After : Apr 5 02:06:49 2025 GMT
Subject: CN=67e755b9-41d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:82:a7:17:1b:d1:14:a6:75:73:b2:69:d0:bb:
5f:80:2f:51:2c:87:de:f0:91:47:25:c7:ef:d8:7e:
eb:0d:49:0d:8b:49:75:2b:51:a0:63:9e:e5:b2:36:
3f:8c:3c:e2:a5:c9:61:1e:c8:5d:44:7f:40:bb:be:
ef:f4:c2:f7:af:d2:f6:2a:71:2c:4c:71:23:40:69:
48:4a:5b:10:3d:fc:a6:cd:f8:76:df:90:74:11:f7:
e8:cf:50:7c:03:1e:63:b9:04:cb:bb:ad:58:32:67:
60:02:fb:56:35:da:6d:79:92:af:94:fb:81:6a:50:
9c:e6:91:a4:17:03:8f:f3:5c:56:09:8d:e2:49:0d:
6f:f2:39:ff:20:d6:36:c7:57:80:74:f7:0f:9a:ce:
a4:97:ab:1b:15:76:f8:a9:92:e1:33:37:61:66:3d:
3f:ce:1d:6d:94:3a:c5:d8:89:e6:24:0d:1d:23:48:
9f:4f:fe:69:50:54:e4:c6:1d:1a:e4:4d:01:39:2e:
9a:19:5e:41:5a:68:23:77:51:2b:ab:a1:7e:e7:a6:
9d:2a:f8:e9:39:6b:2c:ec:c7:01:39:01:a0:b3:b9:
ae:e7:41:cb:a4:0c:b4:bd:b5:5e:f0:f2:6d:e2:0d:
f4:a0:13:28:04:62:f7:41:4c:65:0b:c7:4a:c1:cf:
16:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F4:7F:83:18:76:B4:B7:EB:B9:58:BF:CA:1B:37:3D:41:7D:A9:14
X509v3 Authority Key Identifier:
keyid:E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
60:e5:0b:6c:30:1b:c4:37:37:fa:ee:60:2d:3c:fb:b0:0c:5d:
39:f3:c8:3d:3b:27:97:2c:2b:9e:73:f2:3c:f9:83:ba:d8:d2:
03:e3:05:07:cb:d0:61:1f:7b:31:1f:2e:63:ba:f3:68:18:fe:
be:48:10:70:47:b1:7d:fa:67:67:c8:45:11:c6:3f:7c:7f:51:
55:1f:b1:56:16:ab:98:77:66:d0:d3:2d:b9:82:73:e7:5d:6c:
1c:7d:4a:ac:43:c4:7c:c0:9d:1c:24:0c:05:7d:17:ba:5a:00:
b7:e8:0f:d4:ab:bd:01:4f:53:b2:1f:b1:c9:93:45:ab:a9:14:
fb:59:70:0f:c7:17:be:b2:fc:94:d2:6b:5b:0a:96:7f:0b:e2:
78:fa:8f:d8:33:81:e2:6f:5e:ab:39:8c:a9:3c:0f:be:d3:a4:
79:64:48:86:98:6d:de:b0:5e:4f:55:0a:8f:68:67:9f:ec:6d:
e1:03:7f:90:91:50:93:b4:4a:f1:54:f3:71:e1:bc:76:55:38:
3f:87:b2:56:8c:36:1a:11:be:27:a7:5e:83:5d:91:ae:71:fc:
a0:49:ab:f9:52:07:bb:ed:c6:6f:8c:bd:e5:26:0e:6c:8e:dc:
ed:82:e1:86:37:61:25:06:30:f5:94:5c:80:52:0a:ae:51:b5:
17:5c:90:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:14:29 2025 by rpki-client