Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft
File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json)
Hash identifier: QXCDFWA9JFl3gT1SviuBgkjgJpHRbOJa7P6rR3WGhiY=
Subject key identifier: 6B:07:84:9F:73:C0:5D:7F:AC:B9:0A:52:7A:F6:27:5F:C4:64:AB:05
Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27
Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727
Certificate serial: 0963
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft
Manifest number: 094C
Signing time: Fri 28 Mar 2025 20:31:25 +0000
Manifest this update: Fri 28 Mar 2025 20:31:25 +0000
Manifest next update: Fri 04 Apr 2025 20:31:25 +0000
Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: sUUlCDLvxk05xphE7WMhE2myraUQ+hsgeQD2qB9G/nU=)
2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: 1xpqucRPj2sGGfUlw/hjqGcWw2RAvQEPEvj1/o7DLww=)
3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Qe2k4Rmt8cYvrQ25NjhCj6HgTDQ2LTBczeZdX5NMi1Q=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2403 (0x963)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917F8A9
Validity
Not Before: Mar 28 20:31:25 2025 GMT
Not After : Apr 4 20:31:25 2025 GMT
Subject: CN=67e7071d-5936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1c:99:a2:5d:60:48:d9:29:21:3f:6e:d8:26:
0c:ae:e8:d9:0b:0f:6b:7f:27:27:f5:f9:78:5f:36:
67:7e:5d:f2:e7:fb:ef:0f:5e:8f:31:0d:51:f8:2b:
1a:b2:72:12:09:5b:25:a3:29:d7:63:51:d5:52:95:
15:9d:9d:9e:b1:89:f7:78:dd:91:99:7e:77:a9:2b:
86:69:6a:cf:e4:fb:4e:59:8e:48:a3:7f:16:7f:24:
63:09:e4:34:42:cb:73:d8:75:2e:e1:65:a9:c7:05:
14:99:2b:26:82:81:33:1f:2c:03:1c:28:88:3b:63:
3d:f2:ee:49:47:22:88:e9:2c:55:c5:80:b3:9c:6a:
86:c0:e9:18:46:12:25:2b:b6:ff:fb:40:de:5e:3a:
58:4e:91:81:e9:87:b4:e8:08:c9:61:d9:24:39:78:
f1:07:b2:0b:87:31:02:ab:51:d0:02:b9:bc:4f:ba:
3a:36:04:f9:73:ea:35:98:d0:40:a6:f3:7c:2a:80:
ee:9d:2c:fe:dc:84:ea:01:5d:29:dc:3e:9a:3d:9f:
67:8d:a1:fb:b9:75:97:91:32:a9:5f:4a:fb:fb:2f:
67:a1:b5:7d:e1:3a:b9:15:05:ec:01:8c:5b:53:95:
2d:7b:c6:bd:2e:f2:77:2b:93:28:ae:33:7a:1c:cd:
8a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:07:84:9F:73:C0:5D:7F:AC:B9:0A:52:7A:F6:27:5F:C4:64:AB:05
X509v3 Authority Key Identifier:
keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
75:9e:52:eb:71:f8:fb:75:48:96:c2:88:04:62:17:62:b1:8a:
27:7c:70:fb:e5:2b:84:35:b5:c1:2e:71:ae:ed:c5:95:cb:bc:
70:d2:ee:38:55:ef:d4:98:d2:1a:11:b0:dd:35:7e:c7:d5:1e:
0a:e5:9b:22:35:2e:8f:5d:b6:0a:e8:d4:aa:19:76:be:4f:6c:
b7:85:28:ea:20:e2:82:df:e6:c3:52:1a:71:88:ff:1c:34:b9:
56:52:73:7a:29:d3:fe:c5:74:71:3b:7c:2e:43:cb:c6:9d:26:
9a:57:eb:5e:27:3d:18:92:ea:69:fa:17:58:d3:b5:1c:ab:cd:
61:27:6e:f2:b8:5c:b6:1d:e3:14:f0:91:46:42:c8:d7:47:5c:
5a:db:30:c8:be:36:69:8b:20:6e:08:4d:01:a3:89:06:63:36:
c6:90:74:ca:e6:98:c0:c1:f3:18:63:63:5e:4a:00:cb:b4:be:
1b:ea:d1:32:13:10:f7:75:ab:3c:8c:e8:c6:11:b3:ca:6f:ee:
bb:2d:ec:e9:fe:8e:33:5a:40:6b:4d:4e:c0:b4:07:c0:81:f3:
b8:da:87:f4:07:bf:c5:19:05:d7:af:a5:d0:b3:c2:cb:87:01:
4f:34:aa:51:e4:56:e1:a3:fc:7e:73:5b:76:d1:bd:d2:b4:d9:
87:39:0a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:35:17 2025 by rpki-client