Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft
File: 28IYSbtMFwTSMZPEG3DGaxqWVi8.mft (raw, json)
Hash identifier: v2COQF3+xN7VCaz4YzVFKAxPLDei5U/ctpWbl1GErwk=
Subject key identifier: EB:66:09:1B:DF:54:72:60:7A:22:3C:D2:53:82:66:6C:F5:42:08:1F
Authority key identifier: DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F
Certificate issuer: /CN=A919C233/serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F
Certificate serial: 1519
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft
Manifest number: 1510
Signing time: Fri 28 Mar 2025 16:55:22 +0000
Manifest this update: Fri 28 Mar 2025 16:55:22 +0000
Manifest next update: Fri 04 Apr 2025 16:55:22 +0000
Files and hashes: 1: 28IYSbtMFwTSMZPEG3DGaxqWVi8.crl (hash: ZiVz0eb9YoLWHVTnZEQOQFjZy11joK+i0ul7Ewtow9o=)
2: C355C10243E611E8843B4E66C4F9AE02.roa (hash: H1/wMzuuXXUoNuPK1c3O8xbMg0+A7svPlNNuYm9uqvk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5401 (0x1519)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919C233
Validity
Not Before: Mar 28 16:55:22 2025 GMT
Not After : Apr 4 16:55:22 2025 GMT
Subject: CN=67e6d47a-ee56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d6:e5:7a:fa:46:be:61:73:04:a8:cb:ed:64:
d9:f3:91:fa:a1:5b:7e:10:1f:28:34:4b:76:95:da:
2f:0d:b4:5f:f3:92:fb:20:6b:19:f3:12:0d:5a:09:
18:49:34:e0:bc:52:e2:19:c6:2f:58:33:ec:7b:20:
c8:81:e5:67:fe:9d:21:96:b3:bd:92:13:16:eb:ff:
24:27:41:fb:7b:19:f9:2a:ee:38:41:0b:85:1a:e4:
3c:78:8a:f5:cf:4e:89:b0:4c:1b:b6:37:db:69:e6:
54:a4:ce:66:75:3a:7f:8f:d0:61:dc:0b:ff:4b:40:
b1:1a:80:12:28:13:d0:2a:5e:f1:d0:2f:cd:45:7c:
9b:11:33:c5:f9:d8:fc:7a:fc:10:d4:d6:bd:a4:c8:
e1:40:97:5d:40:1f:96:f0:2c:9f:c7:12:5e:b1:1b:
3a:ce:d4:46:21:4d:17:86:bc:a5:cf:2c:9d:ce:e4:
8e:cc:38:b6:25:ee:6b:8b:f2:49:4e:8d:e1:b5:df:
cc:d8:2b:16:09:6c:77:3d:a7:d4:86:d0:86:ff:b8:
eb:cb:93:55:93:59:05:89:bd:85:dc:bf:3b:39:38:
7d:d6:b6:39:03:f8:02:1b:54:fd:a5:e2:3f:54:7d:
ea:36:ec:2c:1d:0e:44:9f:87:09:8f:68:52:8d:a6:
8c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:66:09:1B:DF:54:72:60:7A:22:3C:D2:53:82:66:6C:F5:42:08:1F
X509v3 Authority Key Identifier:
keyid:DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9f:f9:8c:b1:13:1c:06:fa:f2:6e:2a:81:7d:d7:06:a3:83:d9:
5e:5d:cc:e9:b8:c7:14:47:f1:83:e0:53:23:9c:cd:42:18:d2:
55:56:68:5a:70:be:84:b9:4e:e2:68:17:1c:de:2e:f7:3b:01:
49:c3:35:e1:73:f7:9f:3f:58:f2:b6:ac:fd:79:1a:9e:6c:6c:
e1:1a:f3:5f:f3:dc:52:3f:a0:ac:42:35:33:0f:55:fe:b8:9d:
fa:a7:ee:d6:b0:d0:da:53:b4:c8:bb:dd:ad:05:db:73:74:dd:
84:a0:1f:8e:59:99:83:be:32:26:cb:1c:60:eb:9f:0b:a7:92:
58:9a:cb:81:ca:6b:cb:aa:d6:e5:72:40:ae:ea:6b:86:a6:91:
35:a9:50:59:94:69:f3:20:80:2d:32:1f:78:72:37:85:d0:dd:
58:b7:ce:fc:4b:b2:88:6e:f1:5c:b3:90:f8:dd:13:ff:e9:cd:
2b:59:cc:f7:3e:98:2e:76:e2:fd:51:70:9b:32:fb:60:46:73:
ea:62:3e:d5:7e:ff:7e:56:7f:81:1c:b9:3b:6a:e7:95:19:11:
aa:20:ee:ab:40:d3:f0:98:ba:06:c8:69:23:ef:f4:06:37:c6:
17:fd:d1:7d:a7:4f:ad:8d:5d:ff:35:aa:b7:04:23:09:b7:18:
d4:2a:18:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:26:31 2025 by rpki-client