Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft
File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json)
Hash identifier: grkZ/ci21obLlYgXzBLztiade2rdetWhMlA63E9bvX4=
Subject key identifier: 48:B3:03:40:21:54:11:FA:42:F5:B0:02:26:51:7C:DF:E4:3C:3F:F7
Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62
Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62
Certificate serial: 09A6
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft
Manifest number: 099A
Signing time: Fri 28 Mar 2025 20:19:25 +0000
Manifest this update: Fri 28 Mar 2025 20:19:24 +0000
Manifest next update: Fri 04 Apr 2025 20:19:24 +0000
Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: S62H+/C4Ru2LPfRnvBH4mUuw3Ulpmzmh+CGrqfldB7k=)
2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=)
3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2470 (0x9a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9195BA9
Validity
Not Before: Mar 28 20:19:24 2025 GMT
Not After : Apr 4 20:19:24 2025 GMT
Subject: CN=67e7044d-20f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ec:49:d4:cb:23:18:96:b9:18:87:9a:54:6c:
54:07:1d:17:86:19:0f:7a:bb:19:7f:92:f0:6a:b2:
bc:e0:11:68:9c:40:7e:3f:fd:f3:10:9f:79:70:e9:
50:5f:38:7a:52:97:fb:f7:96:25:c1:bc:a0:e7:ef:
be:93:78:18:70:09:24:8c:a0:e2:54:94:dc:09:97:
34:dd:57:4f:75:6d:7f:e9:5a:01:46:cc:e6:a1:ba:
11:21:3f:ea:ec:cd:d7:5f:1f:99:23:a0:54:3d:15:
7b:be:f5:4a:bc:fd:ff:02:0d:6c:76:03:a2:24:e0:
71:6f:bf:14:02:ee:5d:94:98:cc:6f:f4:6e:e8:c0:
3d:c9:88:52:41:d3:c5:54:7d:01:e0:fb:3d:3e:3d:
d8:a2:43:77:28:b4:85:9f:4f:4f:2a:6b:fa:b6:83:
7f:90:4c:36:18:c3:ca:da:dd:53:26:64:be:3b:2f:
2e:1f:28:7c:3a:b1:bb:98:5c:2d:e0:74:f8:4e:08:
b4:74:8e:26:6d:f5:78:1e:5f:1c:e0:c0:fb:11:32:
95:ec:85:06:0a:d2:3c:7b:3a:06:61:5e:ee:38:91:
44:3d:00:a9:09:1a:d1:73:bb:c0:a4:41:b2:f4:d5:
0f:2a:b5:58:75:d7:1a:9a:2b:4f:28:03:2f:d8:bf:
9f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B3:03:40:21:54:11:FA:42:F5:B0:02:26:51:7C:DF:E4:3C:3F:F7
X509v3 Authority Key Identifier:
keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
56:a5:91:42:10:a2:42:66:37:91:a2:8c:d7:07:82:bf:71:91:
57:dc:ac:c3:09:7a:de:3c:da:bc:57:99:b0:9a:cc:e8:09:f5:
e0:00:08:46:62:74:d7:89:55:b0:1d:1e:05:39:50:dc:6f:88:
2f:e7:58:85:5e:c7:3b:37:cb:07:e4:b5:5a:88:d6:d1:cd:c7:
2d:29:25:cd:31:5a:c0:51:b6:3d:dc:e9:62:f1:5e:f9:a9:16:
95:ca:ca:a5:d6:b8:5f:01:c8:0f:f6:84:ea:81:06:d5:68:3f:
a2:20:c6:6a:b5:26:76:42:d0:9d:04:ff:fc:1a:50:ae:3a:01:
bf:29:0b:5b:bc:f2:01:7b:f7:32:80:6e:de:05:2b:1f:d0:37:
6c:78:2b:e8:42:f2:b4:23:c3:27:56:f1:23:9f:3d:92:48:29:
97:07:a4:99:06:30:1b:50:33:00:f7:d2:57:13:1d:b1:2b:1a:
05:9f:6f:f2:b1:93:e7:84:94:b9:9c:41:a1:ea:6d:27:94:72:
a5:18:36:f1:f6:0f:bc:31:1c:81:92:be:af:32:63:c2:2e:d1:
99:0f:e4:b5:92:ab:41:cb:01:13:cc:16:90:19:0d:a1:66:90:
3f:2d:3f:c1:3c:93:bb:19:f2:b1:2f:9a:85:dd:a2:46:0c:f3:
a2:36:0b:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:36:50 2025 by rpki-client