Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft
File: oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft (raw, json)
Hash identifier: Wa/2287+vJglmGvrC6bf8olSt0YkE8+mftyabXIjuOg=
Subject key identifier: 2E:A4:44:2B:EE:1D:33:BF:AF:9E:99:AC:0C:41:EE:44:D6:24:6F:B0
Authority key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91
Certificate issuer: /CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991
Certificate serial: 0128
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft
Manifest number: 0126
Signing time: Sat 29 Mar 2025 04:02:35 +0000
Manifest this update: Sat 29 Mar 2025 04:02:34 +0000
Manifest next update: Sat 05 Apr 2025 04:02:34 +0000
Files and hashes: 1: oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl (hash: WsqSHDyYrCtnM2q06sCE2obBF0fWbcZox+vLXBczt8E=)
2: E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa (hash: P1qwhAicU6zPENCwTGFasnrb3+NFivcUL5Wq4dABBCM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 296 (0x128)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918AAA1
Validity
Not Before: Mar 29 04:02:34 2025 GMT
Not After : Apr 5 04:02:34 2025 GMT
Subject: CN=67e770db-b628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9e:45:4f:70:5b:fa:c8:5d:af:4a:06:26:28:
1a:4a:6a:a9:98:d9:f7:d0:45:82:4d:54:92:3e:e8:
84:43:4f:2e:b0:b5:72:f2:34:8c:60:9d:c9:70:10:
b0:ec:f3:07:1c:19:a9:5a:b0:75:aa:46:ed:20:48:
fb:b6:f2:df:52:f1:fc:e1:44:5a:98:cc:b4:86:a0:
53:cf:30:bd:39:b7:53:50:17:cc:d8:8c:7b:6b:e6:
41:64:4b:54:9e:c2:8f:83:0e:39:5a:78:f1:d9:9e:
93:98:98:83:36:70:ec:22:8a:87:01:39:06:0e:c3:
55:3f:e8:43:55:e5:ff:07:33:76:93:43:df:0c:7b:
32:b1:67:cf:24:3a:5c:50:11:83:ad:32:57:13:14:
ed:90:23:56:da:b5:ab:57:c7:68:08:93:f0:31:d9:
71:5d:e3:97:bf:66:0d:9d:a0:0f:c8:e8:8d:19:a5:
17:f9:9c:7f:77:f5:c0:e1:ba:0e:df:6b:af:3a:23:
b5:c6:c4:85:73:d8:15:02:17:0e:e7:a7:f8:2d:aa:
c8:7b:3d:05:e9:7b:56:e2:5e:0a:6f:69:96:74:54:
1a:bb:77:ac:eb:db:de:b7:a8:e9:e0:16:89:9d:c2:
1e:66:05:b0:9d:ab:3f:5d:b7:0c:e1:b9:1a:cd:c3:
80:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:A4:44:2B:EE:1D:33:BF:AF:9E:99:AC:0C:41:EE:44:D6:24:6F:B0
X509v3 Authority Key Identifier:
keyid:A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
96:ee:bc:02:03:32:b8:a8:54:9d:e1:3a:9f:5e:75:c7:16:05:
48:14:3a:48:4a:95:82:cc:43:a5:0e:9f:17:55:8c:d8:99:02:
3d:1a:47:88:7c:c3:2d:07:7d:7a:c0:9d:b0:df:ed:d5:d5:d2:
2b:9d:ea:f4:f5:55:e7:e9:d7:00:62:06:18:ab:3e:a5:78:44:
91:f4:fe:1e:8b:55:fc:0f:df:be:24:05:a1:4e:f6:9e:5a:01:
83:77:bc:f1:78:a4:f3:9a:d4:03:e6:27:08:ee:b2:ed:40:ec:
fd:ca:fe:d3:04:c0:1d:d0:23:d1:b5:0d:d7:5f:5e:0a:01:9a:
d5:29:e4:3c:97:51:a2:19:d2:00:4c:3c:d9:61:ed:fc:3e:0a:
66:d8:8e:87:73:37:6b:78:08:ac:8f:b0:71:0b:34:44:02:6e:
88:be:41:ea:3c:5e:06:b0:0d:ff:69:07:df:35:25:53:de:86:
2f:31:b0:30:73:f2:89:45:ec:4b:64:39:b0:a0:9f:e4:ef:78:
50:31:85:2b:9a:5f:47:82:69:44:42:a8:0c:21:1a:14:f1:48:
b9:f7:49:e4:d3:a5:bb:98:e0:e8:22:3a:10:c9:11:9f:f5:1a:
d8:d8:55:03:24:a3:5f:d2:cd:14:53:bf:aa:03:af:27:5b:58:
65:86:59:49
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEFBQTExMTAvBgNVBAUTKEEyREEzNjM3RDMyNTNGODk5N0Q4OEQwQkQ4REE5NTk4
Rjc4M0Y5OTEwHhcNMjUwMzI5MDQwMjM0WhcNMjUwNDA1MDQwMjM0WjAYMRYwFAYD
VQQDEw02N2U3NzBkYi1iNjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqJ5FT3Bb+shdr0oGJigaSmqpmNn30EWCTVSSPuiEQ08usLVy8jSMYJ3JcBCw
7PMHHBmpWrB1qkbtIEj7tvLfUvH84URamMy0hqBTzzC9ObdTUBfM2Ix7a+ZBZEtU
nsKPgw45Wnjx2Z6TmJiDNnDsIoqHATkGDsNVP+hDVeX/BzN2k0PfDHsysWfPJDpc
UBGDrTJXExTtkCNW2rWrV8doCJPwMdlxXeOXv2YNnaAPyOiNGaUX+Zx/d/XA4boO
32uvOiO1xsSFc9gVAhcO56f4LarIez0F6XtW4l4Kb2mWdFQau3es69vet6jp4BaJ
ncIeZgWwnas/XbcM4bkazcOADwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6kRCvu
HTO/r56ZrAxB7kTWJG+wMB8GA1UdIwQYMBaAFKLaNjfTJT+Jl9iNC9jalZj3g/mR
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFBMS84MTE0Qzc5QzQ4
NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0bVgySTBMMk5xVm1QZUQt
WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL290bzJOOU1sUDRtWDJJMEwyTnFWbVBlRC1aRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
QUFBMS84MTE0Qzc5QzQ4NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0
bVgySTBMMk5xVm1QZUQtWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCW7rwCAzK4qFSd4TqfXnXHFgVIFDpISpWCzEOlDp8XVYzYmQI9GkeI
fMMtB316wJ2w3+3V1dIrner09VXn6dcAYgYYqz6leESR9P4ei1X8D9++JAWhTvae
WgGDd7zxeKTzmtQD5icI7rLtQOz9yv7TBMAd0CPRtQ3XX14KAZrVKeQ8l1GiGdIA
TDzZYe38Pgpm2I6HczdreAisj7BxCzREAm6IvkHqPF4GsA3/aQffNSVT3oYvMbAw
c/KJRexLZDmwoJ/k73hQMYUrml9HgmlEQqgMIRoU8Ui590nk06W7mODoIjoQyRGf
9RrY2FUDJKNf0s0UU7+qA68nW1hlhllJ
-----END CERTIFICATE-----
Generated at Sun Apr 6 21:10:07 2025 by rpki-client