Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft
File: kFj-3Oxfh289_hYZQxnBRcnAzLU.mft (raw, json)
Hash identifier: QLED9lo6m0kGuybFqyBKyzSMUkuySVECMc+t6lZaoEA=
Subject key identifier: 22:0E:05:EB:67:2F:5B:49:EB:6B:1C:8A:FF:4E:FE:B7:81:4B:AF:83
Authority key identifier: 90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5
Certificate issuer: /CN=A9185B0F/serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5
Certificate serial: 063D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft
Manifest number: 0638
Signing time: Fri 28 Mar 2025 22:51:31 +0000
Manifest this update: Fri 28 Mar 2025 22:51:30 +0000
Manifest next update: Fri 04 Apr 2025 22:51:30 +0000
Files and hashes: 1: kFj-3Oxfh289_hYZQxnBRcnAzLU.crl (hash: j/F/FNKripv9LpAbH2CGYK+HLCyLcD/GLTrdOboZgLg=)
2: 25A7FE7E855211EB8DEDD812C4F9AE02.roa (hash: rH99d2UyS2BchbUPUbqFc9GOoYlWGp7hkjxEyr/ZGj0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1597 (0x63d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9185B0F
Validity
Not Before: Mar 28 22:51:30 2025 GMT
Not After : Apr 4 22:51:30 2025 GMT
Subject: CN=67e727f2-b465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:16:a7:52:97:44:09:c1:bc:19:f7:ec:b3:17:
8a:55:9e:61:bd:b8:9d:ea:96:ed:40:81:3a:aa:58:
b7:1e:8b:ab:34:50:85:33:c9:bd:78:f5:44:13:aa:
b9:27:22:b8:f4:11:2e:7b:29:5d:89:c4:a2:9b:52:
cc:ed:58:09:78:bf:40:9c:97:79:69:a1:1d:a1:68:
21:4f:f1:e3:88:2c:48:f3:b0:dd:89:97:0a:cf:90:
5d:34:a2:5e:a5:eb:f8:99:08:01:57:ca:43:b9:6d:
14:78:4a:93:c3:26:f9:b9:de:a1:67:ca:fd:ef:98:
8d:fa:4c:0c:b9:5f:a0:71:0c:88:2b:c1:bd:83:0e:
eb:ac:9a:1b:3b:e0:22:4d:57:12:9b:92:b1:ed:71:
22:5c:8d:c2:c1:c7:76:f9:ac:a2:21:ce:19:0a:b5:
b4:4b:f8:2f:41:6d:f0:e6:34:81:f9:82:bd:dc:0f:
80:31:d1:2d:49:e2:ba:5b:27:8d:3c:46:d9:2c:1f:
71:fa:91:8b:e7:9c:dc:0c:e6:5f:79:20:3c:e3:b2:
a7:4c:00:86:74:c5:6a:a9:fa:8f:c1:17:b2:15:43:
e0:28:2d:db:6f:d2:5b:fe:1c:74:32:1a:71:b9:8c:
4e:cf:d6:ce:60:08:9f:cd:c8:bf:52:60:40:51:89:
81:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:0E:05:EB:67:2F:5B:49:EB:6B:1C:8A:FF:4E:FE:B7:81:4B:AF:83
X509v3 Authority Key Identifier:
keyid:90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
06:77:af:60:15:fb:f7:ad:bd:ac:6b:d6:81:34:d6:2a:5b:3b:
68:65:a1:8f:de:a3:3a:4b:94:63:95:d1:fd:8a:c0:c6:bc:e5:
3d:ee:b3:e7:c2:57:f2:a6:6b:4f:69:10:dd:6c:31:70:01:e0:
92:8a:20:62:e2:86:54:12:3f:31:a5:f1:1a:4c:14:8a:56:78:
03:6e:43:21:83:bc:ec:ed:86:d9:35:5c:11:38:84:d9:b1:58:
25:a4:9f:7f:24:63:dd:2e:87:2c:a4:42:27:2e:8f:9c:18:25:
be:2c:fe:1d:82:3b:65:18:6a:36:a5:c5:06:3c:8a:21:d9:7b:
73:7d:50:4f:c1:ab:2b:13:12:03:ea:75:cc:5b:73:5d:b2:7b:
bd:e0:21:86:2a:13:1d:98:77:b6:89:75:44:16:d3:7a:55:e1:
90:b4:d7:1e:1f:cb:5f:68:4c:6b:a7:92:fa:1c:e4:a1:3c:5d:
29:08:87:8e:13:59:6e:93:02:28:4b:82:74:ce:54:03:c0:c1:
e9:4a:a6:06:10:b8:04:f9:17:3e:f3:44:d7:d9:16:e0:90:6c:
8d:12:f9:84:28:2d:75:f8:72:0b:ed:42:11:3d:7a:6e:01:f4:
25:0e:31:2e:d5:6c:70:11:72:8d:d5:66:ea:16:b9:56:08:ad:
4f:86:16:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:38:09 2025 by rpki-client