Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft
File: Q2NMcBuh8e_Oj1aqatHbKUWh258.mft (raw, json)
Hash identifier: wQS0H6Vg4vXMn8UWKFnf3IJyqHU+R/uet4/si709HHo=
Subject key identifier: 01:F0:0A:CD:08:44:01:92:94:3C:63:77:52:06:0D:27:F8:15:4A:67
Authority key identifier: 43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F
Certificate issuer: /CN=A918549C/serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F
Certificate serial: 84
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft
Manifest number: 82
Signing time: Sat 29 Mar 2025 05:58:42 +0000
Manifest this update: Sat 29 Mar 2025 05:58:41 +0000
Manifest next update: Sat 05 Apr 2025 05:58:41 +0000
Files and hashes: 1: Q2NMcBuh8e_Oj1aqatHbKUWh258.crl (hash: 9AnZn2uTNB9j0aGdK7MTxwjVKP221795wa7nrfIIA+c=)
2: 9C6F77784A3211EFBDBCEB2FC4F9AE02.roa (hash: VtLgFQFuvZQFqc3/1iLIm4m/GkaEOorvnwwczfuLsfc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132 (0x84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918549C
Validity
Not Before: Mar 29 05:58:41 2025 GMT
Not After : Apr 5 05:58:41 2025 GMT
Subject: CN=67e78c12-3967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a1:4a:d4:a2:93:0c:b1:99:8b:67:b3:03:15:
64:48:28:f3:a3:07:c3:4d:14:c5:ae:e1:d5:59:2c:
c3:2c:72:63:ee:e7:e6:6e:9c:30:b4:0c:71:22:89:
30:98:0e:c7:e8:72:e3:2d:40:bd:f5:0c:7e:c4:8a:
27:d4:ed:be:8f:f9:c3:0c:07:3b:1e:81:e7:03:d7:
63:82:a6:02:8d:08:50:73:b1:4d:3c:da:da:18:a2:
0a:2d:78:11:d5:3e:2b:34:e0:d3:99:b3:c1:a5:22:
12:0b:67:e8:b0:da:14:ac:3e:d2:60:28:91:57:89:
47:92:b4:56:e6:5e:ad:7c:ec:3c:2c:53:46:6d:08:
11:d0:7e:51:4f:44:df:4a:26:2f:12:15:11:42:2b:
3e:f1:a2:78:80:01:8f:fa:91:fc:cf:21:07:68:5b:
6f:a4:06:a4:52:ce:0c:3c:3d:c7:bc:8a:fb:07:0c:
0f:bf:98:56:14:1f:fd:72:bf:4b:1a:23:0b:50:98:
13:3f:74:17:fa:17:28:de:bf:d7:bd:49:f4:92:5c:
5e:36:c8:e0:b1:05:18:54:94:9e:48:f9:e6:ed:24:
bc:fd:01:2c:95:a4:b7:59:75:2f:dd:52:48:4f:66:
40:66:ab:a3:84:60:a2:5a:2b:2a:7b:da:b4:9c:e8:
a4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F0:0A:CD:08:44:01:92:94:3C:63:77:52:06:0D:27:F8:15:4A:67
X509v3 Authority Key Identifier:
keyid:43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
18:07:96:ef:72:c7:4d:7f:3d:63:d3:a5:97:a7:f0:75:1d:17:
f4:01:2e:42:ca:8b:74:7d:06:02:87:86:81:46:39:d5:e6:b9:
e7:e6:b6:2a:a1:ff:f1:25:c0:4b:47:47:e0:6f:b5:b8:8a:2a:
57:44:ea:c5:55:2a:fb:8c:d0:26:8d:0e:b6:f2:6e:2f:68:ba:
3a:23:88:5c:03:ad:04:7a:6c:16:81:61:5f:be:81:3f:3e:10:
af:40:9d:ec:85:e4:29:77:40:17:a8:95:1e:84:6c:c0:62:5e:
80:4f:c4:e8:59:22:9b:f2:54:ac:a2:ac:de:e0:74:78:23:88:
b1:7e:71:35:f9:ce:39:4b:ee:fd:b2:b0:fd:fb:bb:c6:11:ba:
3c:f1:0d:85:9a:2c:f3:d3:2a:85:47:6e:b0:e9:a8:34:ea:1f:
6b:76:7c:13:c1:e7:1c:b9:8e:78:1f:65:d7:0e:30:7c:0f:99:
e8:0c:1c:f9:cd:cf:83:15:6a:df:b0:af:9c:10:da:a8:83:2e:
9b:46:7e:6c:1b:5e:d3:14:8a:9f:5f:c2:0e:5f:21:ce:2d:c0:
3b:f5:dd:36:d7:c3:1e:0e:df:bb:2b:b3:2b:5f:9a:bd:3d:18:
0d:24:b4:5c:41:8f:fc:33:cf:42:2b:f2:75:e5:96:61:d1:82:
0d:ac:65:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:30:30 2025 by rpki-client