Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft
File: e3dUqC3QY6R-jsNdFj72skSNEts.mft (raw, json)
Hash identifier: 6sYKmJbAOS88WRq7yJkv4c7KCnZ6ZV+xzcs+bYw/Zrg=
Subject key identifier: 1B:A4:95:93:4E:12:FB:05:94:D1:A7:EC:DC:16:9C:84:5C:9B:96:E7
Authority key identifier: 7B:77:54:A8:2D:D0:63:A4:7E:8E:C3:5D:16:3E:F6:B2:44:8D:12:DB
Certificate issuer: /CN=A9189311/serialNumber=7B7754A82DD063A47E8EC35D163EF6B2448D12DB
Certificate serial: 276C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft
Manifest number: 2759
Signing time: Fri 28 Mar 2025 15:44:15 +0000
Manifest this update: Fri 28 Mar 2025 15:44:15 +0000
Manifest next update: Fri 04 Apr 2025 15:44:15 +0000
Files and hashes: 1: e3dUqC3QY6R-jsNdFj72skSNEts.crl (hash: nww3uLJZlhl70W56P7ZK4YRABZkiDUHQXQMqzmNLXGY=)
2: F5BBEA5AF6A611E7B40C7427C4F9AE02.roa (hash: EeUXim59YsvGI7qIffiR5WtPWhD5kVEeYtKpW1EoALs=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10092 (0x276c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9189311
Validity
Not Before: Mar 28 15:44:15 2025 GMT
Not After : Apr 4 15:44:15 2025 GMT
Subject: CN=67e6c3cf-e89e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ca:e7:f2:0f:04:09:70:bf:2f:2c:ce:b9:e8:
6c:44:81:0b:ae:25:25:fd:bf:84:0e:18:2a:de:67:
2d:ad:e5:3c:8a:50:30:09:bb:b7:a0:ff:8e:f5:53:
a3:e7:f5:ac:c9:04:57:04:9d:93:33:8a:93:e0:b8:
bc:50:11:a2:2a:d8:de:e3:1f:3b:f8:09:6e:80:c8:
49:07:35:50:5d:56:2c:4e:4c:d5:86:bd:06:88:4d:
15:fa:60:27:28:35:99:c8:56:b8:62:f1:bf:d1:ad:
f6:d0:83:13:a1:e6:73:e1:bf:85:9a:8b:d6:42:c1:
f4:47:67:ef:08:7a:2a:0a:62:20:8b:7d:d4:51:ef:
72:df:1c:83:b0:b9:96:5b:b4:06:d0:eb:ce:c9:00:
61:76:a7:e1:cf:a2:34:65:03:63:96:fd:47:2c:84:
e0:98:26:70:72:7c:fa:d7:f0:d8:6f:ff:e2:34:5d:
63:c3:07:32:ca:47:ec:55:51:d2:bf:8c:2f:e3:1b:
27:f1:1f:5a:e2:ce:4d:57:55:78:2f:cc:6a:ad:60:
ae:18:3c:31:0a:18:20:d1:80:39:a1:0c:ba:a3:f7:
2c:53:44:37:11:a5:bd:26:4d:e0:88:31:a1:fa:49:
c3:5b:fc:e2:82:81:65:57:e2:e6:5f:32:eb:09:4f:
f9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:A4:95:93:4E:12:FB:05:94:D1:A7:EC:DC:16:9C:84:5C:9B:96:E7
X509v3 Authority Key Identifier:
keyid:7B:77:54:A8:2D:D0:63:A4:7E:8E:C3:5D:16:3E:F6:B2:44:8D:12:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ad:3f:e4:f2:09:5c:c7:38:20:62:6f:2d:3a:eb:e3:8c:0c:8d:
3a:5d:18:de:ab:c1:f6:d9:3f:d6:2d:c7:92:1f:14:dc:c4:28:
82:bd:91:2c:0d:83:aa:48:e4:75:0c:8f:35:c0:42:f0:76:b5:
ca:6f:27:91:b0:99:dd:0b:a9:08:29:3f:9b:a3:38:af:da:f7:
51:a8:8f:be:55:90:d7:0a:4b:bb:6d:3d:15:28:61:09:19:6e:
3d:7b:33:83:39:49:6a:d9:69:40:60:ff:11:2a:7a:d7:7f:42:
31:c5:31:ad:78:e1:cd:d3:d7:43:9e:86:6c:35:ba:cc:70:23:
d5:a0:9a:aa:a5:43:ca:6c:d2:0e:e9:f0:0b:1c:4e:5f:9f:89:
d3:11:ef:7c:1d:3a:cf:1a:38:d8:19:cc:26:b3:84:0f:1c:59:
5c:9f:3e:c5:69:ee:97:62:30:e5:7d:13:a3:4d:c1:f2:e0:9f:
26:c9:80:ed:52:2a:4e:9c:ec:0b:ce:1f:8b:12:cf:60:f2:ac:
7c:0c:6b:59:f1:f2:2c:5e:87:3b:aa:75:e4:a3:0b:6b:a0:e8:
63:33:fa:7d:cc:de:67:b7:0b:20:38:30:4c:28:b0:56:45:2b:
f8:35:96:b3:9b:38:95:82:79:44:b0:14:69:4c:a8:41:fa:2c:
a7:08:cf:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:37:04 2025 by rpki-client