Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft
File: Ns9cwKYOC31UYSoS61uYkoRobbA.mft (raw, json)
Hash identifier: Pc6u0P8waxNAPWSvFEuQe7zZrETvqdlrAo62QajiaRc=
Subject key identifier: 22:82:BE:EC:A5:B6:3A:5E:0A:87:11:44:A8:8F:C8:92:30:4B:DA:BE
Authority key identifier: 36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0
Certificate issuer: /CN=A917ECA2/serialNumber=36CF5CC0A60E0B7D54612A12EB5B989284686DB0
Certificate serial: 016F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft
Manifest number: 016B
Signing time: Sat 29 Mar 2025 03:23:03 +0000
Manifest this update: Sat 29 Mar 2025 03:23:02 +0000
Manifest next update: Sat 05 Apr 2025 03:23:02 +0000
Files and hashes: 1: Ns9cwKYOC31UYSoS61uYkoRobbA.crl (hash: x7uttFAGBN+QAOQRDEhP24petsDIeHhUHWRYEePYYJs=)
2: BE7ACD44FEDF11EDB4C36F29C4F9AE02.roa (hash: XvPpK73yQ7IRxyPallfmcFZ9RhrXsoC3LQs+zpaUSLI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 367 (0x16f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917ECA2
Validity
Not Before: Mar 29 03:23:02 2025 GMT
Not After : Apr 5 03:23:02 2025 GMT
Subject: CN=67e76797-8f48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b2:be:d5:a2:33:df:d0:cf:be:9a:51:bd:4a:
29:76:22:df:8e:db:44:43:c0:06:a5:a2:0a:89:ee:
80:0d:c4:71:59:3e:ef:da:42:a5:87:22:03:0a:1a:
ad:85:28:8b:34:5a:3f:c4:35:ab:b6:d5:c6:2f:bf:
fa:a5:e4:98:f8:c0:02:7d:72:cb:93:fe:72:6b:8c:
3c:df:f8:bd:d1:13:4f:1f:9e:fa:fc:cf:4e:7a:64:
29:7e:59:96:e7:48:4b:7d:e9:74:2f:5f:60:95:65:
c2:6c:c1:3c:77:8c:18:ea:a3:81:9f:4d:54:44:9c:
e2:d2:9e:7d:25:73:86:fa:4c:db:61:eb:11:40:e9:
ff:96:49:bf:07:cf:6c:ac:39:3d:03:9a:9a:d2:a5:
53:d3:50:78:aa:16:90:b5:99:e6:1b:40:ab:35:10:
91:f4:af:87:53:79:dd:a2:37:02:32:5b:e3:be:73:
68:01:bd:80:30:46:c4:67:e6:c8:28:15:0d:1f:c3:
2b:d7:9a:5d:41:24:83:28:20:c3:31:1e:6c:fa:63:
cb:65:a8:97:ef:99:5b:49:d2:9e:2e:16:e3:36:ec:
0c:c0:3d:59:c8:23:eb:c6:40:62:15:8c:37:93:32:
33:90:55:85:86:45:e7:eb:53:95:4a:bc:86:16:d5:
d2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:82:BE:EC:A5:B6:3A:5E:0A:87:11:44:A8:8F:C8:92:30:4B:DA:BE
X509v3 Authority Key Identifier:
keyid:36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0a:77:19:48:ba:2f:66:28:79:3c:4c:45:9f:f1:be:c7:20:6b:
f1:b6:77:6f:39:14:29:38:6a:a1:72:e1:ff:74:9e:a2:19:8d:
0b:b9:f6:76:18:27:38:21:81:c4:af:91:b4:a5:8b:25:4f:16:
a9:a9:d4:e2:c4:b0:73:d3:75:31:5a:f4:c5:36:90:8e:e3:f8:
14:64:97:3a:65:77:d6:93:ae:f9:28:c0:7f:0c:fa:ce:97:6f:
08:c1:4f:c0:fd:39:06:d3:ba:cd:7d:02:f4:bc:92:6f:ae:af:
d1:26:fd:df:e5:a5:7f:5e:b8:ae:cd:72:4d:90:e5:2e:8d:02:
1a:f7:fb:d7:5b:54:e8:c5:c8:fa:e5:55:d4:9b:f2:83:6e:91:
e1:d3:dd:8d:a7:1b:c2:d2:4e:37:ab:5b:f5:35:f6:a7:f5:40:
22:0f:df:da:2f:f0:11:30:11:e7:bd:5e:90:fa:6f:54:21:48:
e9:f7:a1:04:39:9c:0d:9a:4d:37:6f:10:58:d5:0d:a1:ae:45:
f7:fb:0d:e3:60:be:3d:48:e5:63:f7:56:73:27:ab:dd:ee:6d:
47:9f:a0:21:e1:37:4b:51:63:35:b9:34:f8:62:29:ca:57:8c:
3e:3f:26:40:21:bf:f9:42:e3:e3:e5:8d:27:7e:2f:09:d1:5c:
04:9e:79:52
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0VDQTIxMTAvBgNVBAUTKDM2Q0Y1Q0MwQTYwRTBCN0Q1NDYxMkExMkVCNUI5ODky
ODQ2ODZEQjAwHhcNMjUwMzI5MDMyMzAyWhcNMjUwNDA1MDMyMzAyWjAYMRYwFAYD
VQQDEw02N2U3Njc5Ny04ZjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwbK+1aIz39DPvppRvUopdiLfjttEQ8AGpaIKie6ADcRxWT7v2kKlhyIDChqt
hSiLNFo/xDWrttXGL7/6peSY+MACfXLLk/5ya4w83/i90RNPH576/M9OemQpflmW
50hLfel0L19glWXCbME8d4wY6qOBn01URJzi0p59JXOG+kzbYesRQOn/lkm/B89s
rDk9A5qa0qVT01B4qhaQtZnmG0CrNRCR9K+HU3ndojcCMlvjvnNoAb2AMEbEZ+bI
KBUNH8Mr15pdQSSDKCDDMR5s+mPLZaiX75lbSdKeLhbjNuwMwD1ZyCPrxkBiFYw3
kzIzkFWFhkXn61OVSryGFtXSTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKCvuyl
tjpeCocRRKiPyJIwS9q+MB8GA1UdIwQYMBaAFDbPXMCmDgt9VGEqEutbmJKEaG2w
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUNBMi8wMjgyN0NGOEU0
MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0MzMVVZU29TNjF1WWtvUm9i
YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL05zOWN3S1lPQzMxVVlTb1M2MXVZa29Sb2JiQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
RUNBMi8wMjgyN0NGOEU0MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0Mz
MVVZU29TNjF1WWtvUm9iYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAKdxlIui9mKHk8TEWf8b7HIGvxtndvORQpOGqhcuH/dJ6iGY0LufZ2
GCc4IYHEr5G0pYslTxapqdTixLBz03UxWvTFNpCO4/gUZJc6ZXfWk675KMB/DPrO
l28IwU/A/TkG07rNfQL0vJJvrq/RJv3f5aV/XriuzXJNkOUujQIa9/vXW1Toxcj6
5VXUm/KDbpHh092NpxvC0k43q1v1Nfan9UAiD9/aL/ARMBHnvV6Q+m9UIUjp96EE
OZwNmk03bxBY1Q2hrkX3+w3jYL49SOVj91ZzJ6vd7m1Hn6Ah4TdLUWM1uTT4YinK
V4w+PyZAIb/5QuPj5Y0nfi8J0VwEnnlS
-----END CERTIFICATE-----
Generated at Thu Apr 10 16:26:16 2025 by rpki-client