Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft
File: ofrVQukeAX0lfVGxT_XDW4lCnvU.mft (raw, json)
Hash identifier: DpVBSG4FljQ38t5G1t9tS3EKuE7GlLk446T5oORlrko=
Subject key identifier: 61:5C:EA:91:37:18:E6:83:6E:E6:3A:9F:89:AF:D7:29:C6:C4:3B:06
Authority key identifier: A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5
Certificate issuer: /CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5
Certificate serial: E0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft
Manifest number: E0
Signing time: Sat 29 Mar 2025 04:50:23 +0000
Manifest this update: Sat 29 Mar 2025 04:50:23 +0000
Manifest next update: Sat 05 Apr 2025 04:50:23 +0000
Files and hashes: 1: ofrVQukeAX0lfVGxT_XDW4lCnvU.crl (hash: cTQCvuxdw0ZICsFw6t8mhBcS3FhYx2eEoD6F0UmMGL4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 224 (0xe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918377D
Validity
Not Before: Mar 29 04:50:23 2025 GMT
Not After : Apr 5 04:50:23 2025 GMT
Subject: CN=67e77c0f-cb35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2d:4c:1e:e7:63:68:49:57:d5:26:c2:11:ca:
06:f5:f4:70:c6:e8:4d:db:9c:10:0f:36:c8:5e:b8:
2a:e6:b6:cd:87:b2:44:0f:7a:a6:c9:b3:9d:e9:a7:
c1:2f:31:6c:54:ea:64:26:65:c6:b9:cc:fc:15:50:
5d:39:67:96:77:eb:58:c9:a8:89:97:61:a7:0d:64:
a7:0c:4c:fc:30:c0:c6:98:ef:ed:c7:48:61:33:1c:
a6:57:62:40:9e:11:cc:d8:d1:98:3b:ca:37:35:1b:
87:a0:62:93:40:60:32:31:3a:af:85:db:f5:c9:01:
8b:37:ea:10:ec:1e:97:f0:c5:d3:49:31:df:38:41:
d6:27:5e:fc:8f:2d:ce:3e:64:be:77:db:1a:a9:1a:
7c:23:1f:cf:a7:16:ac:c4:6b:62:48:f6:56:f6:aa:
f2:94:27:f3:95:50:a4:2d:37:5c:74:40:6d:05:69:
95:8e:69:2a:6f:d8:10:db:c4:23:06:07:69:fe:b6:
c2:6a:f4:32:83:ad:19:db:37:68:d8:d9:97:a3:1e:
f6:59:66:51:ac:51:ac:e7:ec:68:fe:7f:c4:d1:4c:
a9:0f:5d:9b:64:ab:0f:df:d9:80:95:82:65:1c:0b:
00:bb:d5:9d:68:03:fb:6a:e6:e4:17:23:b5:67:19:
92:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:5C:EA:91:37:18:E6:83:6E:E6:3A:9F:89:AF:D7:29:C6:C4:3B:06
X509v3 Authority Key Identifier:
keyid:A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5a:08:32:5d:b6:16:92:e8:26:92:67:5b:94:98:bb:2c:2a:8b:
ce:3b:2b:60:1d:2e:81:00:8a:fc:e7:ad:47:84:ba:79:f3:4f:
2c:89:78:57:57:dd:49:69:9f:94:ad:f4:fd:6e:c1:fd:b8:58:
01:5c:0f:2a:0f:ce:70:5e:55:6c:31:12:85:ed:c7:14:bf:ec:
fb:bc:1b:18:5b:d7:cb:66:7a:97:f2:d0:42:a1:70:c4:e0:eb:
ba:b3:6c:67:49:4d:97:cc:5c:5d:0f:fa:7a:18:8c:5d:a5:d8:
8d:28:3b:e3:ab:27:ba:0c:f1:1e:d9:4f:ed:87:7f:d5:8f:9f:
2e:25:6f:5d:ee:2a:d8:65:b9:3b:0e:6a:d3:f4:a8:29:29:b9:
04:3a:cb:7e:77:fa:20:bb:b7:81:82:31:7e:6d:d1:0d:1c:d4:
72:6d:45:31:17:58:a8:ff:99:45:17:65:9f:c9:a0:9c:40:35:
94:6d:f6:a6:78:26:04:b9:bf:45:6d:5a:3e:1d:e5:40:7b:db:
f4:64:82:fb:86:16:b6:0b:eb:47:07:bf:75:9e:54:99:05:d1:
61:73:e0:3a:37:38:78:77:43:6f:a8:27:af:56:c9:b0:23:8f:
76:db:52:4e:1f:b5:d0:73:4c:e0:2b:51:f3:c7:55:2a:d7:84:
35:bb:03:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:28:57 2025 by rpki-client