Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft
File: clTejLmzOZRVQ9h-jrBW8VPVH1A.mft (raw, json)
Hash identifier: U1eFJqWwbP2pn7rqJyzbmQu3P0gGfu6bA3JmkEkC3+c=
Subject key identifier: C6:84:AE:D3:A6:B7:98:1C:CD:22:81:8F:14:C8:9C:FB:50:12:AF:7B
Authority key identifier: 72:54:DE:8C:B9:B3:39:94:55:43:D8:7E:8E:B0:56:F1:53:D5:1F:50
Certificate issuer: /CN=A9198166/serialNumber=7254DE8CB9B339945543D87E8EB056F153D51F50
Certificate serial: 01CF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft
Manifest number: 01CB
Signing time: Sat 29 Mar 2025 02:26:59 +0000
Manifest this update: Sat 29 Mar 2025 02:26:59 +0000
Manifest next update: Sat 05 Apr 2025 02:26:59 +0000
Files and hashes: 1: clTejLmzOZRVQ9h-jrBW8VPVH1A.crl (hash: qE36Ac6RUz7BkG7EvdIpAFFq5hCYb9f16A5L/WGkhc0=)
2: A968BCA24C8511ED94579477C4F9AE02.roa (hash: QhihCyN5bbG8v0q4aS9nZCy8ZGeOjrQ8K/ICbkjXPrw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 463 (0x1cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9198166
Validity
Not Before: Mar 29 02:26:59 2025 GMT
Not After : Apr 5 02:26:59 2025 GMT
Subject: CN=67e75a73-fbf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:de:f5:50:79:73:a5:97:ab:24:ab:38:67:9b:
cd:cd:ea:0f:ea:fb:f8:f6:6a:7b:97:71:b9:b1:31:
84:2b:7c:f7:33:d5:01:25:84:41:54:49:9a:1b:a7:
05:42:4e:2c:c6:e7:bd:63:ef:9f:b5:d1:59:1e:bc:
73:b6:d8:57:6f:9a:8f:b5:6a:a1:7b:86:e0:9f:fa:
40:8d:b6:a9:98:fa:e5:86:c6:f8:d4:82:49:77:90:
a7:15:ef:51:ee:3e:87:e0:87:f5:ed:4b:dd:fd:f9:
90:05:73:c3:8d:4e:2a:f1:f3:3a:b9:42:3c:ce:6f:
f8:81:b7:48:56:fa:48:d9:4c:7e:3b:67:55:e1:6b:
a0:3c:18:2a:29:f4:b4:37:83:7e:e7:17:e2:c2:dd:
4b:73:ef:c5:4b:d0:66:29:41:c5:d1:51:81:0b:c2:
22:f2:e9:84:4e:b4:fe:3d:6d:02:51:4f:07:24:26:
ab:ca:49:52:e9:b5:1a:7f:e7:c5:1d:3f:c1:fa:c2:
26:f0:bc:02:e3:6d:d1:de:5b:f9:78:e1:73:1c:6d:
dd:6f:ad:89:40:89:14:1d:c3:61:79:4c:b2:76:2f:
d2:e4:01:25:81:4a:3c:5d:4e:70:54:99:05:79:bb:
36:38:bd:58:ba:3f:c2:35:f6:b7:9e:f2:d5:2f:e6:
b9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:84:AE:D3:A6:B7:98:1C:CD:22:81:8F:14:C8:9C:FB:50:12:AF:7B
X509v3 Authority Key Identifier:
keyid:72:54:DE:8C:B9:B3:39:94:55:43:D8:7E:8E:B0:56:F1:53:D5:1F:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
64:65:5b:26:98:e0:dc:db:06:0e:ea:29:d2:d3:1a:f2:94:40:
d7:f9:28:38:55:b1:b6:e8:94:8f:0b:71:b5:3e:80:14:f9:6d:
76:a9:0a:e0:a8:12:5c:bb:56:69:62:fd:28:d6:02:db:80:01:
73:79:55:d9:7b:1d:64:26:d6:e9:6a:86:bd:64:de:54:7a:a2:
36:41:e9:52:59:40:18:74:3c:e5:60:c3:35:7a:39:39:01:3c:
27:0e:62:6d:60:41:ad:c9:da:66:6d:91:3d:44:8d:4a:39:57:
be:80:33:c4:e5:3d:ab:8c:6a:dd:f6:70:f6:9a:28:ae:b2:33:
b0:59:71:da:88:14:de:25:18:02:b6:80:8a:35:d7:c9:81:81:
56:3c:4d:f6:3a:b9:24:4d:1a:6a:3c:c1:42:f7:10:16:2b:a5:
30:40:dd:dd:33:ed:a3:72:7e:0c:5d:96:dd:7e:45:3e:b7:d3:
ac:ee:51:4d:1c:a8:e3:f9:ef:7a:24:ac:30:d1:2e:c3:ef:cb:
6e:bd:9f:30:c8:15:74:e6:6f:01:aa:f1:32:ae:14:a7:68:c3:
b9:a4:42:52:21:2f:ca:ef:4a:6d:8f:a4:72:fc:14:30:23:f1:
3a:4c:7d:8f:8f:ac:f8:51:92:ae:de:8c:a6:06:0a:94:2d:ab:
29:6b:ed:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:37:49 2025 by rpki-client