Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft
File: CF4MUA89R900skS9OSnO_a3ZbD0.mft (raw, json)
Hash identifier: eHMNadEnpyk9VZfjsZ0veCutMAL6q+6HPpL+TMKb6jM=
Subject key identifier: 76:BE:CB:19:08:92:DB:E4:22:3E:D9:7A:5A:2D:B2:7C:EE:97:9E:65
Authority key identifier: 08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D
Certificate issuer: /CN=A919D118/serialNumber=085E0C500F3D47DD34B244BD3929CEFDADD96C3D
Certificate serial: 0A63
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft
Manifest number: 0A50
Signing time: Fri 28 Mar 2025 19:55:44 +0000
Manifest this update: Fri 28 Mar 2025 19:55:44 +0000
Manifest next update: Fri 04 Apr 2025 19:55:44 +0000
Files and hashes: 1: CF4MUA89R900skS9OSnO_a3ZbD0.crl (hash: vX3HNWPG5P69vPD07Kjlx0PWdsL0jPh18+GeNasd/eU=)
2: E56559AA7CAD11EEB3536044C4F9AE02.roa (hash: 0eEfoYZVPT+i1jAQtAFcxmDQsIWicbTtDWldCs89vv8=)
3: 5FFA4BEC3C0B11ED89AD755FC4F9AE02.roa (hash: +qdSnSMI4Cq6GPacx1y6troGvfBHeu8mDwsrgTG91us=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2659 (0xa63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919D118
Validity
Not Before: Mar 28 19:55:44 2025 GMT
Not After : Apr 4 19:55:44 2025 GMT
Subject: CN=67e6fec0-dec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:20:4e:93:99:88:ef:55:13:dd:4f:ec:ac:c0:
60:22:10:69:c8:0a:2e:58:60:92:2c:58:ec:66:8a:
12:db:5c:f9:30:d5:ff:f2:06:f2:8c:5f:a9:e8:1e:
8a:5f:1e:75:97:a9:24:3b:ee:5c:42:25:55:cb:36:
68:af:68:11:b9:cb:45:4c:aa:27:ca:ac:9a:92:10:
d9:b8:2c:33:27:77:54:3a:30:d2:17:d2:ec:ba:86:
7f:27:ae:70:a6:dc:35:b5:01:0f:af:29:2a:eb:46:
42:fa:65:9a:9a:03:6e:22:7f:24:f9:6b:11:da:55:
ad:e6:e7:ff:89:66:ca:33:d8:60:c4:cf:93:ac:1e:
e9:d6:82:d5:9e:47:86:88:6b:8c:ff:d3:12:b4:48:
2b:63:70:a3:c1:7d:96:28:c9:18:36:9a:83:95:91:
19:6c:16:c5:77:12:d8:51:77:77:5f:82:44:7c:3b:
53:2a:f3:fe:6f:e7:cb:c9:01:93:20:81:05:58:1d:
6c:34:e8:28:01:4a:fa:ed:2c:67:0c:2c:29:ca:87:
bb:10:3a:10:52:25:38:a9:2d:d2:17:da:e0:0f:de:
d7:bc:5b:08:fb:a7:c2:ca:73:04:ad:53:5f:e4:aa:
a7:73:5c:60:37:10:72:c7:da:d2:c0:d5:86:4c:d5:
a0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BE:CB:19:08:92:DB:E4:22:3E:D9:7A:5A:2D:B2:7C:EE:97:9E:65
X509v3 Authority Key Identifier:
keyid:08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
59:dd:0b:e0:fc:27:00:e7:43:9c:2a:d6:cc:81:10:c9:53:6b:
58:bf:06:ba:97:5c:34:01:d5:66:4a:a6:bd:85:84:64:09:ad:
37:b0:d9:86:2b:bd:a8:79:9f:ab:91:db:86:a1:68:ce:35:f4:
ee:7c:d8:4e:ff:5a:3b:ae:55:00:90:79:42:00:36:2d:2d:52:
a7:a9:7a:96:3a:f5:ec:88:0f:08:38:e5:ca:3d:ad:b7:6c:ba:
f7:99:08:da:8c:8b:bb:0d:a9:e0:6e:09:ad:ef:22:21:6c:d9:
3e:2c:f2:7c:39:9d:93:bd:66:c7:33:74:88:42:f7:07:57:54:
02:b9:20:96:3e:e1:34:85:00:4f:44:91:89:fd:fa:84:59:57:
71:cb:ae:2f:51:25:98:32:96:23:d5:99:fc:05:fa:66:74:58:
1f:88:bf:64:08:45:d0:2f:f3:e5:da:db:29:c7:65:a9:92:d9:
02:19:4b:36:1a:0c:76:78:83:a0:66:1f:22:8e:e6:71:66:7e:
0d:3b:ba:f4:37:14:8c:13:81:6e:21:4c:28:2a:45:38:d1:a8:
82:79:55:a1:ea:74:ef:07:10:df:66:67:52:2b:ea:7d:15:f6:
80:1d:0a:1d:92:5f:de:a6:58:e1:9c:ba:fa:65:f4:7d:bc:37:
7f:c8:37:9f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OUQxMTgxMTAvBgNVBAUTKDA4NUUwQzUwMEYzRDQ3REQzNEIyNDRCRDM5MjlDRUZE
QUREOTZDM0QwHhcNMjUwMzI4MTk1NTQ0WhcNMjUwNDA0MTk1NTQ0WjAYMRYwFAYD
VQQDEw02N2U2ZmVjMC1kZWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0yBOk5mI71UT3U/srMBgIhBpyAouWGCSLFjsZooS21z5MNX/8gbyjF+p6B6K
Xx51l6kkO+5cQiVVyzZor2gRuctFTKonyqyakhDZuCwzJ3dUOjDSF9LsuoZ/J65w
ptw1tQEPrykq60ZC+mWamgNuIn8k+WsR2lWt5uf/iWbKM9hgxM+TrB7p1oLVnkeG
iGuM/9MStEgrY3CjwX2WKMkYNpqDlZEZbBbFdxLYUXd3X4JEfDtTKvP+b+fLyQGT
IIEFWB1sNOgoAUr67SxnDCwpyoe7EDoQUiU4qS3SF9rgD97XvFsI+6fCynMErVNf
5Kqnc1xgNxByx9rSwNWGTNWgnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHa+yxkI
ktvkIj7Zelotsnzul55lMB8GA1UdIwQYMBaAFAheDFAPPUfdNLJEvTkpzv2t2Ww9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDExOC9CQjgxQTUxNDYy
QkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5MDBza1M5T1NuT19hM1pi
RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0NGNE1VQTg5UjkwMHNrUzlPU25PX2EzWmJEMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
RDExOC9CQjgxQTUxNDYyQkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5
MDBza1M5T1NuT19hM1piRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBZ3Qvg/CcA50OcKtbMgRDJU2tYvwa6l1w0AdVmSqa9hYRkCa03sNmG
K72oeZ+rkduGoWjONfTufNhO/1o7rlUAkHlCADYtLVKnqXqWOvXsiA8IOOXKPa23
bLr3mQjajIu7Dangbgmt7yIhbNk+LPJ8OZ2TvWbHM3SIQvcHV1QCuSCWPuE0hQBP
RJGJ/fqEWVdxy64vUSWYMpYj1Zn8BfpmdFgfiL9kCEXQL/Pl2tspx2WpktkCGUs2
Ggx2eIOgZh8ijuZxZn4NO7r0NxSME4FuIUwoKkU40aiCeVWh6nTvBxDfZmdSK+p9
FfaAHQodkl/epljhnLr6ZfR9vDd/yDef
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:26:02 2025 by rpki-client