Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft
File: zXuGlWvtndYhW-SF8McVuSDJp3A.mft (raw, json)
Hash identifier: c0WLjDw5gehPM+/z6oJTLg2suM6RtcIqlTjwl81M/q4=
Subject key identifier: 96:84:40:33:27:B6:00:4A:31:64:DF:68:12:DE:0C:81:6F:14:72:B2
Authority key identifier: CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70
Certificate issuer: /CN=A918B61E/serialNumber=CD7B86956BED9DD6215BE485F0C715B920C9A770
Certificate serial: CF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft
Manifest number: CB
Signing time: Sat 29 Mar 2025 05:06:38 +0000
Manifest this update: Sat 29 Mar 2025 05:06:38 +0000
Manifest next update: Sat 05 Apr 2025 05:06:38 +0000
Files and hashes: 1: zXuGlWvtndYhW-SF8McVuSDJp3A.crl (hash: dNfb1o4Oni4dWNXdokAw93Y6484snp9z7BlNEj/heHM=)
2: 60DF983AD54F11EE93ED1E3BC4F9AE02.roa (hash: KzdO+S8UaZA+5dqwU3YevT9OI76OGpIsZ7GNNEbB7Sc=)
3: 601B8CF6D54F11EE93ED1E3BC4F9AE02.roa (hash: 9rjLofEU8o84/eDpG2+v1chrVfPs+sqWqIrHcUhxjLs=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 207 (0xcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918B61E
Validity
Not Before: Mar 29 05:06:38 2025 GMT
Not After : Apr 5 05:06:38 2025 GMT
Subject: CN=67e77fde-e9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:01:55:95:81:21:f6:4d:dc:d9:3e:35:d8:48:
c3:fc:c0:9e:83:70:93:aa:ce:58:b4:8e:01:a6:ea:
96:04:03:5a:8e:df:f9:50:52:95:17:7b:50:19:07:
0a:49:46:23:45:7f:29:da:7d:8a:09:5c:87:bc:69:
e6:e7:c4:60:79:a0:a4:ec:92:20:3d:b1:79:fa:02:
fc:08:64:42:68:8b:3a:19:79:43:3f:9f:ad:25:10:
55:2c:42:ef:66:19:63:ce:32:42:95:56:2d:18:85:
50:39:f9:2e:65:e0:c8:d9:15:0c:75:b6:2e:e7:51:
6f:53:29:6a:99:b6:96:d3:f0:55:37:e2:18:ff:19:
61:2e:e9:60:b0:6f:0f:a5:5b:db:c7:5d:32:65:81:
0c:73:b7:c2:23:aa:c0:dc:13:d4:09:c7:25:2a:76:
0c:36:91:c9:c3:08:5b:92:7e:5b:81:ce:d5:48:a7:
73:d1:04:e1:fc:80:4b:fc:b6:62:30:56:e8:7b:25:
fa:e0:72:84:8a:4e:6f:77:d8:a5:38:59:ca:5b:e2:
e4:ba:43:69:78:59:4e:54:78:62:e8:bf:be:a7:c5:
76:47:79:6f:7f:51:2a:1e:2c:1b:de:0e:bb:62:0a:
e9:b9:df:b4:6c:78:05:9c:ef:47:7b:a7:92:20:58:
8e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:84:40:33:27:B6:00:4A:31:64:DF:68:12:DE:0C:81:6F:14:72:B2
X509v3 Authority Key Identifier:
keyid:CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9e:8f:6d:d2:10:92:50:49:f2:d7:46:96:40:1c:fd:9f:7b:37:
41:fa:95:50:89:27:96:ae:bf:4d:19:96:be:19:80:06:5a:9c:
3d:d5:e6:ed:07:5c:86:8e:81:81:f1:28:f4:e7:83:60:57:6a:
96:e4:56:69:e9:7f:54:65:d0:e1:4e:f2:5a:3a:75:7a:85:99:
63:2f:cf:64:2f:72:55:cd:ea:e0:0f:21:43:87:01:ad:ac:ab:
56:5d:54:01:9b:9e:2c:9d:a2:f1:35:4b:42:2e:a8:dd:2b:6f:
12:f8:54:f9:f2:f0:9c:5d:47:71:90:06:15:ec:5e:e4:fe:13:
f0:12:be:8c:1d:8b:33:27:a6:3b:e3:a1:3e:15:4a:a3:67:d0:
7c:ff:fc:e8:38:76:e4:e7:c6:e3:d7:a3:e3:85:3a:f2:8e:30:
0b:f8:e6:44:98:97:17:9e:fa:e8:3d:c8:68:eb:f7:de:08:41:
0d:eb:2f:e3:ac:26:80:cc:aa:49:7e:be:6f:39:a4:d8:84:93:
9d:b9:89:dc:75:83:b2:ff:cc:ed:34:59:eb:ae:bb:62:e6:3c:
ae:87:b4:9b:d8:43:8e:d4:a1:c2:d2:d6:7f:77:0f:5d:2d:e5:
cf:41:62:9f:fe:dd:8a:47:df:e3:60:52:ce:3e:b8:41:d6:b0:
cb:27:86:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:03:30 2025 by rpki-client