Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft
File: xPuRgT57oJnZHpxIFyCUuZBcDxE.mft (raw, json)
Hash identifier: sphNG9TMP+0QG48Ognw51VaCjqDNGqWTOSRi/jbVBAM=
Subject key identifier: 39:A3:BC:66:DC:42:DB:A1:1A:4E:2C:24:68:90:72:15:0D:92:E7:29
Authority key identifier: C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11
Certificate issuer: /CN=A919B3BC/serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11
Certificate serial: 1E04
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft
Manifest number: 1DE9
Signing time: Fri 28 Mar 2025 16:13:01 +0000
Manifest this update: Fri 28 Mar 2025 16:13:00 +0000
Manifest next update: Fri 04 Apr 2025 16:13:00 +0000
Files and hashes: 1: xPuRgT57oJnZHpxIFyCUuZBcDxE.crl (hash: 8jjC/9nvQuaZrR7LkJifG4KIzPqPAOyqzA0ExIr2FxU=)
2: FE01F520B20011EFB577317FC4F9AE02.roa (hash: KqY08d2zca48/rOCNSVyTHuUmPAeetDStFcxR2juINQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7684 (0x1e04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919B3BC
Validity
Not Before: Mar 28 16:13:00 2025 GMT
Not After : Apr 4 16:13:00 2025 GMT
Subject: CN=67e6ca8d-348e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e3:64:81:1f:db:f0:46:2c:ee:73:b9:9e:93:
91:93:ae:0f:31:50:b9:9c:28:1d:7c:8d:eb:ba:81:
0f:2d:56:bb:35:77:b1:9a:7a:3f:1f:49:71:c1:01:
4f:d6:c3:bb:39:c8:77:13:94:67:d1:76:63:72:10:
1e:a0:b6:26:5b:35:85:af:a0:bf:59:af:c6:d6:0b:
97:4d:e6:c5:cb:85:e4:9c:b0:fa:0f:1d:bf:75:59:
26:ad:4d:3a:61:e8:72:8b:49:5f:6a:62:97:88:4c:
4b:ed:05:a7:9a:0a:d7:c1:67:df:35:cd:ad:54:99:
01:53:a4:66:f4:d6:53:ea:1a:64:0b:bc:47:82:7a:
a1:51:24:6f:ee:66:2f:79:70:10:2b:2a:cc:fd:5d:
74:b2:e1:14:81:ea:1f:c2:17:18:5c:02:c1:4b:97:
58:cc:24:ce:76:06:85:c0:d5:3f:b9:5f:cf:09:2f:
8e:4b:d8:d1:a6:4f:c5:a5:e7:0c:d5:02:c2:33:5a:
81:29:6a:56:e9:8d:cb:fa:d9:ca:e2:ba:25:84:e1:
db:9d:26:f7:a6:bd:53:22:9b:1f:48:60:4b:0e:5b:
62:1b:db:cc:69:7a:df:61:99:f1:0e:8a:71:5b:24:
6c:21:a5:e7:94:b4:2f:e1:fd:5b:2d:ac:2f:d0:2d:
8d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:A3:BC:66:DC:42:DB:A1:1A:4E:2C:24:68:90:72:15:0D:92:E7:29
X509v3 Authority Key Identifier:
keyid:C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
07:fb:c1:fe:e5:35:8d:11:42:3f:05:45:fc:92:37:27:82:92:
d6:f4:e2:14:c5:4c:ea:10:ab:f9:fd:1e:c4:92:b5:75:06:8a:
e8:09:08:8b:01:5c:2f:0b:ec:a7:f3:ad:55:a6:01:f8:31:19:
b8:ad:8a:7c:31:53:ca:31:92:6d:ec:1b:93:fd:bb:1f:1d:c6:
f8:a6:48:af:5b:ac:0f:a0:50:48:98:b4:3a:7f:ed:54:4d:42:
cd:f0:6f:31:6c:af:6b:7c:df:ce:65:88:f3:19:b8:28:54:23:
b0:c0:29:f2:35:5c:45:f9:5d:bd:70:72:01:e0:b5:cd:65:02:
7b:b4:0d:1e:f3:da:a3:4c:57:fc:0e:59:1f:d1:e0:94:5b:95:
f5:53:03:93:46:d1:12:b0:c3:fc:70:aa:7b:c7:d9:c9:5a:c7:
0a:63:a7:aa:9a:bf:1f:eb:5e:a7:4f:7d:ff:d9:ec:45:39:f9:
1d:06:7e:86:8d:1a:c2:cd:99:2d:3f:c3:3b:00:6c:42:2f:5c:
8f:b9:a4:1f:4d:bf:ca:59:71:e5:ef:85:34:fd:d8:a7:07:42:
96:99:bb:7e:42:89:0c:3f:06:5e:d1:c4:43:ea:82:55:07:be:
d9:6e:78:31:53:8c:3d:5f:56:74:46:6e:f0:40:2a:23:f5:1e:
9f:e5:45:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:29:58 2025 by rpki-client