Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft
File: tYgfusqd6_Rspghj0pd8U_3WwZA.mft (raw, json)
Hash identifier: QX3rLevl+fxP5noWkws0bFrFNyCtHec81Z83c9L/6FU=
Subject key identifier: 09:FF:37:53:73:38:17:70:8E:56:F9:1C:D7:98:11:E1:15:83:5A:E3
Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90
Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190
Certificate serial: 01A1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft
Manifest number: 019D
Signing time: Sat 29 Mar 2025 02:53:46 +0000
Manifest this update: Sat 29 Mar 2025 02:53:45 +0000
Manifest next update: Sat 05 Apr 2025 02:53:45 +0000
Files and hashes: 1: tYgfusqd6_Rspghj0pd8U_3WwZA.crl (hash: 6at+pq2PmmzZ1DV5rAv9Dw1ZtKlEfTDOCGtJBqt3aKQ=)
2: D9D943568FFC11ED9776CB38C4F9AE02.roa (hash: m8z9odaUiOzo2Q6HnCo0kOXTVmgFRhiSBzilAVOt71c=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 417 (0x1a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9188D2D
Validity
Not Before: Mar 29 02:53:45 2025 GMT
Not After : Apr 5 02:53:45 2025 GMT
Subject: CN=67e760ba-53e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:5c:15:ab:e1:f2:59:f8:a1:58:1a:8b:05:71:
87:60:96:87:64:16:44:d3:c8:e7:1b:e0:9e:eb:b4:
f8:92:8d:5a:16:ca:d3:d4:4e:88:be:93:84:74:0a:
06:cb:a7:30:0c:3d:bf:54:74:04:44:36:47:16:c6:
e6:02:13:77:34:01:17:eb:4d:ab:58:be:e4:83:04:
8c:34:cd:32:39:dc:b7:b7:f3:12:3f:65:45:0e:d6:
5b:d7:13:65:41:bf:90:70:34:f4:17:d4:61:f6:82:
bd:2b:70:06:7f:0a:1e:31:42:a1:eb:e4:30:5a:85:
84:df:5d:09:66:5e:e8:6d:3d:bd:6f:92:ec:d3:e3:
5d:0e:30:df:e9:71:70:de:33:19:1b:11:07:22:b6:
18:0f:e4:52:27:5c:76:13:bf:f4:ab:c1:f0:c7:d5:
18:9a:f9:10:0a:6d:5f:0a:3b:9f:00:50:d6:d3:03:
72:ce:ea:b1:4a:67:c1:1c:d3:d6:5e:67:8e:d5:dc:
92:af:55:8b:9b:f8:64:38:76:36:e5:0f:08:d0:31:
b1:86:64:25:88:8a:de:72:91:f3:7f:71:75:43:78:
36:f3:87:0c:83:ba:41:5d:6f:87:5b:03:aa:43:a5:
77:6c:8f:01:be:4f:0e:84:49:fc:8d:1f:3a:2e:0b:
41:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:FF:37:53:73:38:17:70:8E:56:F9:1C:D7:98:11:E1:15:83:5A:E3
X509v3 Authority Key Identifier:
keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7e:46:2a:eb:e2:fd:b3:a9:e5:41:8d:6d:6b:34:1a:34:9f:d9:
cc:da:56:12:85:40:54:6d:15:09:f1:b8:c7:ac:46:fc:0e:ee:
5c:29:c2:20:82:1c:28:89:5f:5b:6a:60:84:a1:d9:82:b3:1c:
34:30:88:08:1c:cb:bd:f1:51:46:31:85:b5:ee:e3:bd:fa:32:
75:70:31:f6:46:38:ef:1d:34:15:38:50:85:98:2c:34:ce:33:
2c:ba:19:2f:fa:27:7c:3e:25:5d:c7:fb:41:ed:7b:64:e0:a5:
48:d2:18:b3:b1:ab:60:03:e0:3d:65:bf:06:50:80:57:bd:1d:
fb:15:3a:f3:82:28:bb:ad:83:6b:9c:17:bb:a6:39:89:a7:9b:
d8:81:d4:a5:83:ca:76:04:79:d9:ca:dc:68:b8:dd:cc:c2:13:
b5:e1:6e:ec:de:2b:fc:b4:5b:39:02:ec:30:fd:b0:a9:31:4e:
91:17:04:0c:b3:be:51:4d:ef:94:51:e7:92:40:ec:e7:b7:4b:
db:68:4b:51:1b:8d:b9:35:6e:b2:3c:c5:2d:7c:f9:d0:f0:d7:
0b:f1:3c:f5:c8:3d:a2:29:b6:28:98:92:52:99:17:0c:13:0b:
df:f9:ae:33:22:e7:d0:46:54:75:e3:55:83:02:2c:bc:2f:5e:
6a:e8:c2:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:31:39 2025 by rpki-client