Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft
File: KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json)
Hash identifier: kVjVC2PcEpueucGcYaHWL/HhaTNbP9em8ofoMIh5tkU=
Subject key identifier: CA:DD:AA:29:A9:BE:88:86:D0:89:1C:B5:B9:22:13:F5:24:C5:4B:70
Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8
Certificate issuer: /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8
Certificate serial: 0A5E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft
Manifest number: 0A44
Signing time: Fri 28 Mar 2025 19:57:34 +0000
Manifest this update: Fri 28 Mar 2025 19:57:33 +0000
Manifest next update: Fri 04 Apr 2025 19:57:33 +0000
Files and hashes: 1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: vrHWs3Mou/rx0MORcpNO/VCL7e/oLc16M9fc/DjdW1E=)
2: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: DeSX5mR90qF9IRdX2EyXW+cFduwBwR++LaECrmC9RqI=)
3: DE137C362C7811EC97C8D979C4F9AE02.roa (hash: 1JrXRKrsJBaJ+/4+ml3Sz+iqG9fcskoIvUEpTyCTJxA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2654 (0xa5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918748C
Validity
Not Before: Mar 28 19:57:33 2025 GMT
Not After : Apr 4 19:57:33 2025 GMT
Subject: CN=67e6ff2d-0702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c8:25:9c:7d:42:f2:4e:a8:96:ee:d3:8b:b8:
e8:52:6b:68:9b:c3:2f:98:5f:a7:a2:ca:1c:b8:0d:
6b:f0:fc:2b:5a:e2:09:16:ea:2b:a9:e6:9d:4c:5a:
1f:61:9f:ec:6a:89:32:28:7b:2b:e0:2d:0e:70:f5:
07:97:37:b0:61:a8:ad:eb:1f:cf:f7:58:f8:fa:cb:
10:5a:fc:90:c2:f4:e7:e0:11:75:08:71:c8:bb:da:
06:d1:cf:7f:42:f1:5f:a1:e4:53:1f:f2:d3:02:3c:
eb:82:34:c9:49:76:f8:c9:09:4a:c6:7d:3a:e0:c5:
36:d7:52:1c:e2:ee:c3:51:3d:4c:67:62:72:f1:3a:
40:73:c1:a3:f9:58:95:47:e2:87:44:59:71:62:8a:
d5:2f:81:96:da:0c:4a:b4:c6:89:06:8f:5f:92:2b:
b6:84:91:02:26:8c:26:ed:c8:01:50:fe:a0:69:bb:
a9:b6:9e:f2:0f:4a:09:67:85:69:9b:aa:57:02:c0:
dd:de:77:a1:b2:01:19:f1:9b:44:53:88:ee:70:a9:
c4:06:4a:2b:19:26:54:54:ef:0e:2e:9f:c1:d2:39:
6c:81:75:0e:89:71:fe:e2:6a:6f:fa:4b:9f:5d:a0:
97:5c:77:8c:1a:be:be:ae:b3:7f:96:70:c2:07:90:
9b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:DD:AA:29:A9:BE:88:86:D0:89:1C:B5:B9:22:13:F5:24:C5:4B:70
X509v3 Authority Key Identifier:
keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b2:7a:29:dc:fd:b5:d8:3d:f3:a7:28:91:e1:f6:ba:0b:e7:e1:
ec:d0:1f:dc:6f:af:84:ef:d9:c0:34:08:bd:21:5e:4f:8f:36:
90:19:a2:89:09:af:88:a1:76:fe:c8:78:b9:05:0f:c8:75:df:
4b:a1:8d:b2:d0:fe:fb:29:26:3a:30:c4:1c:44:73:73:50:e6:
43:d1:ae:39:a6:ff:4b:f5:83:af:a2:eb:f8:98:1a:fe:27:30:
33:95:ea:6d:45:65:5b:c8:b7:af:8a:3b:22:aa:b0:ff:f4:a5:
40:ff:12:86:b7:d0:34:18:a9:bc:c6:b4:26:bd:f0:d6:63:ae:
71:93:aa:ac:56:5f:b6:1d:b8:52:cc:04:b5:74:36:9a:18:35:
16:d9:9d:dc:f7:4c:9a:1b:47:89:26:04:03:24:f6:f4:67:9d:
2d:bd:91:06:35:b3:9a:c4:65:ea:de:b3:42:1f:f0:79:a0:30:
2b:02:e8:75:4b:14:e0:f2:85:6d:9e:7c:ea:5a:b8:b2:97:79:
1c:89:96:37:b8:d7:d4:60:55:25:06:bb:71:be:08:2f:a8:82:
8b:3f:58:5e:a4:b5:be:6e:35:60:83:c3:08:49:26:04:16:c3:
84:d5:ba:cf:85:0b:75:42:a0:72:1d:d3:cb:e7:5c:4b:b9:8c:
20:2f:4d:dc
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODc0OEMxMTAvBgNVBAUTKDI4OTYyNEIyRTAwQjc3NEQzRDM5MEY1QTBBRDEwQjVC
QzM1RjU2RDgwHhcNMjUwMzI4MTk1NzMzWhcNMjUwNDA0MTk1NzMzWjAYMRYwFAYD
VQQDEw02N2U2ZmYyZC0wNzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtcglnH1C8k6olu7Ti7joUmtom8MvmF+nosocuA1r8PwrWuIJFuorqeadTFof
YZ/saokyKHsr4C0OcPUHlzewYait6x/P91j4+ssQWvyQwvTn4BF1CHHIu9oG0c9/
QvFfoeRTH/LTAjzrgjTJSXb4yQlKxn064MU211Ic4u7DUT1MZ2Jy8TpAc8Gj+ViV
R+KHRFlxYorVL4GW2gxKtMaJBo9fkiu2hJECJowm7cgBUP6gabuptp7yD0oJZ4Vp
m6pXAsDd3nehsgEZ8ZtEU4jucKnEBkorGSZUVO8OLp/B0jlsgXUOiXH+4mpv+kuf
XaCXXHeMGr6+rrN/lnDCB5CbxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMrdqimp
voiG0IkctbkiE/UkxUtwMB8GA1UdIwQYMBaAFCiWJLLgC3dNPTkPWgrRC1vDX1bY
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ4Qy9BNzREQTc3MjY0
QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQwMDlPUTlhQ3RFTFc4TmZW
dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tKWWtzdUFMZDAwOU9ROWFDdEVMVzhOZlZ0Zy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
NzQ4Qy9BNzREQTc3MjY0QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQw
MDlPUTlhQ3RFTFc4TmZWdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCyeinc/bXYPfOnKJHh9roL5+Hs0B/cb6+E79nANAi9IV5PjzaQGaKJ
Ca+IoXb+yHi5BQ/Idd9LoY2y0P77KSY6MMQcRHNzUOZD0a45pv9L9YOvouv4mBr+
JzAzleptRWVbyLevijsiqrD/9KVA/xKGt9A0GKm8xrQmvfDWY65xk6qsVl+2HbhS
zAS1dDaaGDUW2Z3c90yaG0eJJgQDJPb0Z50tvZEGNbOaxGXq3rNCH/B5oDArAuh1
SxTg8oVtnnzqWriyl3kciZY3uNfUYFUlBrtxvggvqIKLP1hepLW+bjVgg8MISSYE
FsOE1brPhQt1QqByHdPL51xLuYwgL03c
-----END CERTIFICATE-----
Generated at Mon Apr 7 10:12:37 2025 by rpki-client