Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft
File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json)
Hash identifier: y94euX2aqDO4jUO7u763mw3uxwFQ54YdfUc/kgNoMrY=
Subject key identifier: 59:93:6F:9C:7E:2A:4C:2C:3E:A7:13:2C:D8:B7:B7:A3:C3:64:5C:B1
Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69
Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569
Certificate serial: 0900
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft
Manifest number: 08DD
Signing time: Fri 28 Mar 2025 20:47:14 +0000
Manifest this update: Fri 28 Mar 2025 20:47:14 +0000
Manifest next update: Fri 04 Apr 2025 20:47:14 +0000
Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: DSAN/hho1i+fsOR4DkoAOa4UOj7TW9PLNU2cDtsYEIE=)
2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: oYydxPk4UhXwzQt6ATEzMXRyl5GNnPSrO9reRguBtdM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2304 (0x900)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919E1AE
Validity
Not Before: Mar 28 20:47:14 2025 GMT
Not After : Apr 4 20:47:14 2025 GMT
Subject: CN=67e70ad2-6fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ad:88:5c:cd:7b:7b:85:2f:18:43:46:cd:95:
af:bf:3e:f0:ec:37:6e:aa:6d:02:bd:11:bf:10:5e:
f5:55:7f:bd:9d:38:24:05:6b:7a:31:03:d9:a8:b3:
d3:71:81:8b:38:5b:ea:66:fd:a9:26:fb:7e:ce:e7:
59:c9:57:0c:5d:82:ab:2e:77:28:84:eb:b8:46:94:
72:d0:bd:6a:81:ed:d6:0c:8d:16:70:5a:e9:6d:55:
70:cf:75:23:0f:ed:ec:96:83:dd:fd:09:d6:03:b8:
9c:e0:ae:c6:0f:22:95:47:cd:0a:6f:43:b5:8b:91:
58:52:01:b4:b3:1a:26:0f:84:24:92:e6:d5:99:5b:
5a:c7:7d:59:a9:58:ea:d6:87:3e:a2:29:af:87:a3:
0d:d0:77:f9:16:fe:a0:05:05:c6:11:0e:cb:af:16:
a0:ba:b6:b4:23:6a:81:b5:a7:9b:3b:c4:f1:6a:ac:
b3:ca:d2:da:4f:e6:8e:51:4a:34:75:5f:ac:0f:23:
e9:da:0f:cc:74:18:3c:1b:8e:13:a0:f4:47:3c:4d:
3f:dd:ab:6d:25:d4:48:5e:3d:69:1b:28:83:54:df:
a6:1d:d9:15:36:a8:b8:f7:40:74:b1:1e:c1:1f:54:
c4:81:0b:d5:21:40:2c:eb:83:63:08:51:3c:63:ce:
2d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:93:6F:9C:7E:2A:4C:2C:3E:A7:13:2C:D8:B7:B7:A3:C3:64:5C:B1
X509v3 Authority Key Identifier:
keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
97:be:e9:04:67:3a:79:46:d9:fc:68:8c:8f:d8:fd:95:1b:6f:
7c:c6:2b:9f:0d:eb:ac:c3:28:e8:21:9a:61:ae:a1:7a:06:8d:
44:cb:f6:79:af:cc:95:ec:cd:df:47:04:f3:24:1c:69:1d:a4:
df:fa:bc:3b:c7:c2:a0:1d:46:69:4f:2d:a8:cf:29:41:0c:21:
6e:b5:af:e9:52:61:1d:10:68:5e:ef:2e:77:a0:1d:88:ad:bc:
22:0c:42:c6:76:c5:33:11:75:f4:6a:54:b8:7f:13:a8:5e:77:
eb:76:78:27:37:87:b0:0d:55:97:51:0e:e8:14:e8:2b:bb:19:
af:d8:4c:31:73:de:69:ad:bb:ad:35:ce:b0:0f:2a:ad:78:1e:
21:70:b4:fd:94:60:27:00:bf:6c:b8:8a:fd:08:ca:68:90:a6:
7a:b7:2d:f9:32:67:19:58:d4:69:0d:97:6d:6c:88:a2:f7:34:
e5:56:e0:37:31:f9:5a:43:78:2d:c8:4d:f4:a5:bd:f4:aa:1a:
e2:9f:c1:65:94:5b:00:33:55:23:44:79:91:1a:b5:59:f0:90:
01:9d:08:75:c2:d2:41:51:9f:84:4c:19:dd:16:9a:cf:50:43:
4d:2b:9d:e6:73:26:f8:16:15:77:b7:1d:42:8f:40:7e:d0:83:
73:93:9d:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:57:38 2025 by rpki-client