Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft
File: _wsVRthMDZNVkFtsopPiW0QJSMU.mft (raw, json)
Hash identifier: nEB9o2J9a4DEkI9IDk/HKULmvsNRCHqlX3I2mVUUtJU=
Subject key identifier: 79:93:A4:94:44:DC:37:5E:80:D3:56:78:22:16:68:34:CA:00:E9:88
Authority key identifier: FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5
Certificate issuer: /CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5
Certificate serial: 0AF7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft
Manifest number: 0AF0
Signing time: Fri 28 Mar 2025 19:30:34 +0000
Manifest this update: Fri 28 Mar 2025 19:30:33 +0000
Manifest next update: Fri 04 Apr 2025 19:30:33 +0000
Files and hashes: 1: _wsVRthMDZNVkFtsopPiW0QJSMU.crl (hash: su0rd3qSv72vM0Vg2W+aSrNh/A1SJLsN5lLDfzV4T5g=)
2: 0B1FBD4A40F611EAACD44866C4F9AE02.roa (hash: O+1TVwNVO9fy4asd+g6mFvUYSSGMZxyCsanhKoUd1UE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2807 (0xaf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9198F53
Validity
Not Before: Mar 28 19:30:33 2025 GMT
Not After : Apr 4 19:30:33 2025 GMT
Subject: CN=67e6f8d9-f845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:de:ab:28:b3:21:37:d8:3c:99:cf:d1:83:9b:
0e:40:7e:03:56:5c:c3:84:61:33:ff:ab:78:dd:a0:
f9:51:48:75:30:42:7a:bd:ea:03:af:ed:40:ff:e5:
1c:0a:56:26:62:81:a7:cf:ff:a8:4b:8b:db:ee:d2:
52:a4:80:05:99:9a:38:b1:87:bc:0a:cb:bb:f2:f2:
4f:c3:89:ab:6a:fb:f4:55:5c:b4:02:f1:f7:48:86:
4a:11:ec:92:dd:64:a6:9f:64:61:61:6e:3c:4d:a4:
4a:1f:e1:32:cc:11:38:c4:64:cf:d8:fe:19:97:99:
64:58:fd:c8:37:f3:ff:c7:b2:f4:1f:23:3e:8b:09:
25:ac:9d:c9:22:60:87:b2:5b:57:1c:5e:c3:14:fd:
f3:ca:6e:9b:1a:a0:9d:eb:a7:4b:38:94:d0:8b:46:
60:63:ed:eb:c1:0c:3d:cd:4b:62:47:14:e5:cc:6c:
62:e4:e6:11:6f:64:83:86:47:cf:64:92:99:a7:20:
4a:c1:74:fd:d9:c6:0a:71:55:ab:5a:21:cc:af:82:
df:f2:76:a5:ec:86:e9:04:e3:1a:e4:79:f1:6a:a4:
f8:ab:c7:4d:19:d3:6c:40:42:c5:c2:48:34:4e:87:
bf:fc:4a:98:5b:d0:ca:57:57:45:a2:3d:db:79:62:
81:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:93:A4:94:44:DC:37:5E:80:D3:56:78:22:16:68:34:CA:00:E9:88
X509v3 Authority Key Identifier:
keyid:FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7a:15:dd:1f:23:0d:e3:81:f0:8d:f6:ba:64:95:ff:2d:46:46:
7a:9f:1d:49:55:a4:94:a7:fe:e7:88:90:74:59:2a:83:e5:0a:
6b:69:fc:4f:db:54:a3:9e:a2:f5:cc:cd:22:af:fc:3d:d2:5d:
0f:fa:1a:5e:bc:29:89:be:53:65:a2:35:64:0d:49:2a:61:47:
65:0d:84:65:12:d7:49:36:f4:6d:4f:15:54:cb:6f:a7:b5:e0:
13:bf:78:f3:bb:93:55:77:0a:49:58:0b:d9:a5:f3:18:d5:eb:
14:5e:e3:77:22:12:0c:e2:92:90:fb:9c:64:e8:ef:fd:be:bc:
0a:52:83:65:bf:5d:24:2b:a1:be:df:fb:78:88:a1:45:e7:cb:
10:e5:76:44:63:62:2a:c6:cd:35:7d:88:ea:4a:25:8a:05:6e:
0a:a0:7d:31:a8:1b:f2:49:ab:75:97:d0:64:85:37:c7:74:c9:
ff:87:30:21:a6:00:79:c2:05:9d:b6:37:74:2b:74:a3:e4:ed:
f3:ba:32:37:01:18:c0:a0:f7:be:f8:18:bb:21:61:7c:98:5f:
17:e3:82:e7:cd:67:c1:15:5b:82:e0:a9:f2:8f:57:a7:e5:fc:
11:62:5a:1c:94:07:38:1e:1e:f5:f4:4c:1d:b4:9b:ba:46:db:
6c:4a:4e:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:54:21 2025 by rpki-client