Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft
File: XOvYaFsXSV2z4edFmXn-hPBDg_I.mft (raw, json)
Hash identifier: tZ2Re4v+aDfqDAvEXnbr14eJgiMcPYFR0dJVS9LZg+0=
Subject key identifier: 8D:58:18:20:44:5D:90:26:DC:4A:D3:A3:8A:89:CD:B6:02:BE:67:BF
Authority key identifier: 5C:EB:D8:68:5B:17:49:5D:B3:E1:E7:45:99:79:FE:84:F0:43:83:F2
Certificate issuer: /CN=A917C716/serialNumber=5CEBD8685B17495DB3E1E7459979FE84F04383F2
Certificate serial: A6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft
Manifest number: 02F4
Signing time: Tue 25 Mar 2025 01:43:26 +0000
Manifest this update: Tue 25 Mar 2025 01:43:26 +0000
Manifest next update: Tue 01 Apr 2025 01:43:26 +0000
Files and hashes: 1: XOvYaFsXSV2z4edFmXn-hPBDg_I.crl (hash: 7xsF27mhs3FKlv3MD9WpqmrukL+N4czk4SxhflN50uc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166 (0xa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C716
Validity
Not Before: Mar 25 01:43:26 2025 GMT
Not After : Apr 1 01:43:26 2025 GMT
Subject: CN=67e20a3e-3980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a9:f6:06:ad:93:4c:42:2c:54:da:77:a4:83:
de:ea:18:f1:18:0a:e9:5e:2f:ff:84:13:8e:00:09:
df:c6:fa:85:a7:33:24:30:31:8f:1d:ad:11:5d:7e:
53:26:08:cc:c6:47:ff:b3:36:60:6e:07:c1:81:d8:
0a:61:6a:1a:09:02:17:16:12:f5:11:a9:7b:3a:a5:
34:8d:3c:be:92:6f:67:22:81:c4:8e:56:e6:8c:1a:
d9:b9:52:4c:ec:9b:8d:00:42:8f:74:bc:20:bb:c4:
0d:c3:cc:0b:9f:44:f6:25:a4:80:27:89:bc:53:39:
a0:34:17:de:35:1f:4b:0e:49:80:cc:3c:b4:79:b1:
18:7a:e0:02:e1:61:5a:bf:26:ea:d4:96:1d:94:36:
56:56:fd:2b:53:29:f2:67:c5:1c:e6:35:61:6a:e5:
b4:fe:d6:f4:ef:28:a2:72:b8:23:9f:3d:f7:10:eb:
da:42:9d:a1:07:6d:3b:58:22:e1:95:47:69:0a:52:
ec:0c:15:85:e8:15:61:99:31:e7:70:a0:eb:eb:8b:
9e:80:fd:12:33:52:b9:e3:16:a2:4b:22:e0:95:15:
cc:83:8e:9c:6d:8e:af:0a:20:f1:5e:bd:e4:66:5a:
f0:b9:d1:7e:86:38:1f:0f:a3:3e:d1:d0:95:2d:b5:
04:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:58:18:20:44:5D:90:26:DC:4A:D3:A3:8A:89:CD:B6:02:BE:67:BF
X509v3 Authority Key Identifier:
keyid:5C:EB:D8:68:5B:17:49:5D:B3:E1:E7:45:99:79:FE:84:F0:43:83:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4c:d7:ef:9f:58:59:6d:5a:01:5c:29:71:b5:f4:66:f6:fb:45:
53:a5:ab:6a:5b:5f:4a:54:aa:e5:31:c6:6c:f7:c3:b3:29:1f:
b9:0b:c2:e2:cb:a2:20:7e:fa:42:72:2e:c6:fc:4c:a9:47:3c:
41:b8:b0:26:58:bb:e2:88:23:d5:d6:43:02:c5:10:aa:9f:fe:
19:35:83:3f:46:2a:43:5d:b9:82:d3:d8:73:3c:2b:8a:b6:8a:
f7:8b:b9:3a:d5:f5:69:a5:90:21:1d:88:e5:fe:33:88:95:0f:
18:a4:fd:b6:00:29:53:d3:b2:d6:0d:f3:12:1d:bc:eb:d5:35:
8d:b2:80:d1:5c:b1:0d:0c:3e:23:77:74:36:2e:ea:3a:b9:e3:
b0:94:39:e9:1d:bb:fb:8d:12:79:42:f3:b5:db:e7:92:1f:c7:
c6:10:4c:78:6d:2e:b7:80:3b:50:81:6d:68:fd:29:ff:2f:f1:
20:4f:17:d3:18:14:5e:18:39:4e:ea:cb:cc:23:b0:1c:aa:e5:
c1:d5:b7:2c:7c:fc:67:7e:f1:21:34:18:33:99:79:81:f8:93:
90:f7:40:57:74:1c:8b:78:6b:8e:90:ca:bb:a6:fe:70:c4:ea:
77:48:2b:ca:c5:a6:4d:84:38:7a:9b:ce:fd:9a:bf:1a:6b:92:
f0:45:7a:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:59:47 2025 by rpki-client