Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft
File: UTbgDQPR84UAq2cpty7T1yzWoQU.mft (raw, json)
Hash identifier: MmsAXU135Rum+iEHu+SE7zyb7GwAQ+ZyHv8jZm7VkpM=
Subject key identifier: 29:34:88:DD:D7:E8:7B:A3:D6:64:0B:44:8A:39:CD:4B:1B:B1:1A:6A
Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05
Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105
Certificate serial: 1DEA
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft
Manifest number: 1DD7
Signing time: Fri 28 Mar 2025 16:12:59 +0000
Manifest this update: Fri 28 Mar 2025 16:12:58 +0000
Manifest next update: Fri 04 Apr 2025 16:12:58 +0000
Files and hashes: 1: UTbgDQPR84UAq2cpty7T1yzWoQU.crl (hash: rqLZ5NrhDd9ooh2esl1uDKhVRFuqXRxnT77HsbPRSiM=)
2: 1558B1D0CE4611EF99178F2EC4F9AE02.roa (hash: VQQOfe7+RP/ivZPkjk5N5ReTjzFGVxITONYLJrIA49E=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7658 (0x1dea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919B3BC
Validity
Not Before: Mar 28 16:12:58 2025 GMT
Not After : Apr 4 16:12:58 2025 GMT
Subject: CN=67e6ca8b-6017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:b8:9f:f2:24:53:8d:4f:6a:7c:46:08:62:a3:
7f:31:92:1d:65:d9:63:52:cb:2b:d1:e9:6a:27:85:
25:f2:1e:bd:4f:ed:d3:67:e7:97:63:bd:ab:51:aa:
34:e8:58:e2:cf:8c:87:be:8f:ad:e5:02:91:bf:db:
9c:d1:60:15:32:0f:d3:cc:d6:82:f3:65:1b:dd:ab:
71:3a:c9:f8:2a:42:2d:a2:d0:e3:82:30:37:ef:de:
fd:62:99:bc:2d:74:9b:4a:ab:ad:25:f1:b2:b6:9b:
d9:a8:72:a6:c4:eb:71:00:66:70:20:41:f1:de:d8:
15:e5:c9:19:ac:f9:62:ef:16:cf:14:18:06:ee:c8:
62:6b:7f:35:57:3d:c5:24:04:98:65:16:8d:77:b6:
4f:fa:cc:66:86:13:3b:62:2f:d4:d1:62:6f:85:9e:
11:d1:09:4d:0d:52:fc:7b:8a:8e:06:18:71:79:33:
fb:bd:fa:3d:1f:0a:f1:3e:f3:79:5a:b5:c9:61:fb:
e3:24:b8:4a:47:d7:dd:a5:6f:3b:0a:7d:03:21:69:
7a:85:d3:37:41:2e:f9:c2:75:06:d4:48:2f:03:41:
fa:05:fa:0f:5f:0b:ef:63:ef:97:58:05:e2:04:da:
ea:ac:6c:ee:49:4b:7d:2e:e0:ea:bc:ad:39:15:39:
d6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:34:88:DD:D7:E8:7B:A3:D6:64:0B:44:8A:39:CD:4B:1B:B1:1A:6A
X509v3 Authority Key Identifier:
keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
95:81:08:2c:28:d1:01:85:01:67:18:8f:df:42:17:f9:b3:1d:
41:2d:66:d8:b6:8b:1a:37:3c:e1:59:94:84:42:14:da:21:e9:
88:0d:b5:6b:4c:25:47:4a:52:55:9b:66:f2:9e:11:d6:a8:f2:
66:a7:32:41:8f:b7:ad:58:93:05:d1:a7:65:6d:c2:0f:41:8e:
c4:d1:8a:ee:b4:38:c6:59:be:8c:78:96:0c:7b:1d:ff:05:4c:
79:f0:74:30:b8:d9:7c:fe:ba:ae:d0:dc:47:a9:ed:69:6d:06:
26:18:97:1b:48:55:f8:9c:0b:af:8f:4c:bb:70:dd:34:36:6e:
98:0d:3f:92:b5:c6:ae:b3:77:67:9a:9d:5b:92:6a:01:17:ed:
66:04:e6:9c:ca:39:68:9c:e6:1f:78:a8:96:d4:4a:2b:73:4b:
19:29:4b:be:48:a8:3e:b1:5f:3b:f6:ed:8f:7a:95:e0:8b:ba:
6b:28:65:6c:24:11:6f:97:4e:79:04:97:d2:79:39:1e:28:85:
c8:cf:7c:00:5c:4d:40:d8:dc:f8:79:d4:c5:14:44:0d:90:21:
bc:25:85:45:22:fc:cd:01:7a:1a:03:76:16:63:9f:02:79:37:
69:e6:c6:f3:b9:75:01:70:c4:85:64:fa:1e:25:3d:57:cd:7e:
44:16:8c:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:11:03 2025 by rpki-client