Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
File: o1EXGLQporBD5kW_sWUO5nd-QXI.mft (raw, json)
Hash identifier: tz203AB9RjF9KMVoU1JTJBI7RZPPJrowV5JT0u7W57A=
Subject key identifier: 32:29:84:B1:88:63:1B:E2:90:46:3F:85:C3:74:3D:E1:6E:96:C8:64
Authority key identifier: A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72
Certificate issuer: /CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172
Certificate serial: 07EE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
Manifest number: 07E7
Signing time: Fri 28 Mar 2025 21:11:07 +0000
Manifest this update: Fri 28 Mar 2025 21:11:07 +0000
Manifest next update: Fri 04 Apr 2025 21:11:07 +0000
Files and hashes: 1: o1EXGLQporBD5kW_sWUO5nd-QXI.crl (hash: qH7Z1Yr6PLv0DQbr5b+5t3M+cjdZuudZZOowoP3EvYo=)
2: F48207E6DB8711EAA446B360C4F9AE02.roa (hash: wGBFb60F2aF0B9pOX18btxm9jl1WJHVfOK5kaTJxavY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2030 (0x7ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919ACF6
Validity
Not Before: Mar 28 21:11:07 2025 GMT
Not After : Apr 4 21:11:07 2025 GMT
Subject: CN=67e7106b-d4f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:91:5e:52:3f:f9:ff:4c:c5:98:1f:16:43:30:
cf:1d:02:e0:f9:0e:17:09:7a:6e:0b:d4:f9:53:d2:
13:68:f6:fe:0e:53:2c:43:e2:22:74:e6:32:76:97:
73:de:49:9a:c0:4f:44:18:c9:4f:ba:22:9b:32:8e:
09:d1:84:15:b3:b5:21:cb:fb:62:d0:1a:53:29:c8:
0a:30:dd:b5:92:2a:a6:c1:15:d5:f5:94:7e:df:71:
7b:4a:68:f0:e4:7b:ed:8e:a9:83:cd:e8:ab:3b:24:
62:77:22:2c:c3:fe:c8:07:c6:32:2e:be:c0:33:61:
04:a2:3b:32:ed:fe:20:16:0f:1f:ed:e6:76:7f:c6:
d1:a0:41:a3:08:15:73:b8:97:17:c3:0d:55:d2:8f:
c4:ee:28:5a:ee:ba:ae:b9:63:f9:47:34:da:34:d0:
22:5b:53:76:f5:39:d2:c9:84:91:93:1a:f0:9b:bb:
84:8b:4c:b3:7e:58:17:e0:2f:df:75:10:40:3d:86:
25:ac:19:4a:42:ba:13:2a:2a:ec:4c:71:2e:c9:ae:
34:df:8d:b7:ae:db:03:f4:7d:ae:3b:17:6b:32:f5:
bf:55:b0:24:a6:87:ce:98:dc:44:d2:d4:32:9e:98:
c3:bc:05:7d:5f:c6:0e:f0:49:51:d5:64:9d:cc:5e:
fb:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:29:84:B1:88:63:1B:E2:90:46:3F:85:C3:74:3D:E1:6E:96:C8:64
X509v3 Authority Key Identifier:
keyid:A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
92:7f:00:ca:80:fa:87:d8:34:5d:62:3f:23:f4:94:f0:1d:b4:
c2:92:69:df:15:f6:b6:81:45:dc:9e:aa:86:54:ec:7d:4d:29:
6b:3e:c2:1e:64:33:0a:ba:17:aa:d7:a8:15:ae:a9:29:ba:9c:
18:2f:1b:e7:e3:93:fb:5c:44:55:46:26:f5:a3:ff:c0:ff:11:
b8:1a:23:df:8e:1d:5f:37:ad:19:1a:fa:39:a5:c7:b3:d6:7b:
c7:4b:cf:d2:92:1c:80:26:cd:74:16:16:d3:0e:4f:ee:5b:10:
b8:f3:f0:e3:84:fc:ea:f9:a5:ea:33:7a:f1:0b:d9:b3:a2:23:
c8:fc:3a:a8:b9:63:b2:53:8b:90:be:8c:79:57:67:24:0b:72:
20:f5:ad:57:2e:11:08:ff:8c:03:a2:2a:f4:f9:6c:8b:de:5a:
d0:9f:cb:6a:92:95:0f:e1:0c:c8:36:aa:ca:ba:4e:83:5c:5b:
9c:ae:c1:0e:4e:be:a0:8a:57:73:45:37:72:c5:20:1d:8a:59:
51:85:78:2d:b7:59:3f:fb:16:e8:15:af:b7:a2:ff:e1:7f:32:
2b:29:dd:fc:f7:dc:82:7a:cb:4f:5e:52:6d:8b:5f:07:52:36:
40:a6:4b:e7:df:a8:15:16:60:ec:45:d4:08:ff:27:3a:7a:5a:
86:72:9c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:56:55 2025 by rpki-client