Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft
File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json)
Hash identifier: 49yMtiyDCQfBz1fTQRQhUnA7ran/AjNWWj6ozHUkt40=
Subject key identifier: 9F:E5:D1:B8:89:9A:FC:F1:B4:AD:56:1D:97:09:C9:8B:3E:40:46:93
Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D
Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D
Certificate serial: 3472
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft
Manifest number: 346B
Signing time: Fri 28 Mar 2025 15:25:51 +0000
Manifest this update: Fri 28 Mar 2025 15:25:51 +0000
Manifest next update: Fri 04 Apr 2025 15:25:51 +0000
Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: 5LNSiBI/rYhUORuxLZAXxZ0gd7m77m3Hu4T3HvhovIQ=)
2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: 1r2fILVlnPF9g9/RvWkB32IMvkecllavKDmXeDe08HY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13426 (0x3472)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917E754
Validity
Not Before: Mar 28 15:25:51 2025 GMT
Not After : Apr 4 15:25:51 2025 GMT
Subject: CN=67e6bf7f-71f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b9:fe:29:50:fb:dc:df:11:50:b7:8b:a7:57:
fe:21:29:22:7c:c8:fd:88:cc:4b:7e:1c:89:b8:a5:
10:e0:66:ba:d4:41:f0:da:25:4e:cd:42:c9:dd:c2:
f8:4b:f3:0e:5e:e7:b7:94:a6:01:1f:6a:f1:81:d6:
2f:13:38:fc:9f:ec:49:ff:a8:7d:a1:e6:9b:ed:5a:
2a:4f:70:8d:23:e7:e2:6a:9d:5c:c6:aa:d7:bc:c3:
0f:ed:c7:70:cc:b2:a2:23:22:66:1b:f7:90:9c:d9:
d1:45:1d:de:9b:a5:48:43:ed:e6:c4:47:f4:18:79:
40:51:df:95:ac:2e:e7:59:35:1e:9f:e0:ea:81:65:
ca:7e:48:e3:51:91:ef:9b:88:ec:06:12:fb:cb:d1:
7c:e5:35:32:6c:d0:2e:c2:13:a8:05:f8:d2:78:ab:
47:d3:d4:37:27:b8:92:d4:c3:1d:41:d5:67:6d:00:
2d:e6:33:31:7c:ca:98:2e:d7:c4:a8:9e:d0:ad:57:
ae:b6:a7:6e:c0:a3:64:36:50:a2:c4:94:ba:41:07:
63:93:f6:6c:23:e6:2e:99:81:ee:a4:2d:04:9b:a4:
69:da:2b:ff:9a:18:0a:72:64:fe:6d:18:dc:fa:ea:
2d:40:c4:b8:15:40:bc:f6:c1:77:76:23:10:3f:26:
fa:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:E5:D1:B8:89:9A:FC:F1:B4:AD:56:1D:97:09:C9:8B:3E:40:46:93
X509v3 Authority Key Identifier:
keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5e:6b:97:af:e9:9b:9c:17:da:5e:06:43:a1:93:14:b9:46:70:
4e:b9:94:55:fa:07:20:d7:3b:eb:80:60:86:64:a1:85:37:5c:
99:87:a7:34:bc:a5:b8:8a:4b:ee:0b:fd:90:ca:e7:f0:9d:3f:
48:62:6b:22:e3:ee:76:0d:3d:ba:2a:d9:29:57:4e:f6:22:8c:
66:f1:aa:78:72:1c:c5:f6:0e:3f:15:68:8a:06:8f:aa:fa:d1:
00:fb:65:c8:ed:c6:df:18:06:81:dc:7c:82:71:56:b0:9f:43:
b6:75:9e:ed:af:0d:2f:39:d6:90:2e:b2:4a:cb:de:ba:a8:21:
80:42:6c:da:62:30:b1:13:af:e1:ee:e6:14:88:9d:1d:1c:d1:
b7:5f:53:a4:4b:43:80:c6:30:1f:9b:8e:ea:cb:28:aa:09:af:
80:d7:24:d9:d6:65:01:97:7e:42:cb:aa:76:61:f3:e5:1c:86:
96:cf:60:10:21:23:8d:ff:59:37:7c:92:65:8e:bc:38:ed:96:
66:ec:62:3f:ff:fb:4d:18:7e:78:12:2c:b3:a8:47:c9:ab:4a:
52:dd:d0:59:2c:05:8f:85:c5:af:95:c2:85:72:89:c3:37:8f:
21:7e:fe:a0:fd:c6:8a:8f:b2:d5:f3:7b:53:ec:6f:3c:c4:16:
1b:c8:7a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:43:43 2025 by rpki-client