Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft
File: I8MbHNaMzE0c6105mlAbYFD9HUY.mft (raw, json)
Hash identifier: 2yZ9dCRBiHwMuFfQ4q1apYluhsWVSEn0VCYR4d1Ns7c=
Subject key identifier: AD:E1:68:EC:17:2C:A5:95:95:1B:C7:61:9E:12:6F:05:8E:15:54:FB
Authority key identifier: 23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46
Certificate issuer: /CN=A91A0FC0/serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46
Certificate serial: 0391
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft
Manifest number: 0432
Signing time: Sat 29 Mar 2025 01:03:59 +0000
Manifest this update: Sat 29 Mar 2025 01:03:58 +0000
Manifest next update: Sat 05 Apr 2025 01:03:58 +0000
Files and hashes: 1: I8MbHNaMzE0c6105mlAbYFD9HUY.crl (hash: owKVFYm/LTI0PHIp6lacWU8SjXTwZmwZhwZA+Ergt4A=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 913 (0x391)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A0FC0
Validity
Not Before: Mar 29 01:03:58 2025 GMT
Not After : Apr 5 01:03:58 2025 GMT
Subject: CN=67e746ff-9044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:d8:ec:63:22:b4:4a:1d:dc:e5:6e:2a:4b:6d:
80:6f:0e:e5:8e:84:1a:60:2a:b5:cd:aa:e6:12:29:
cf:3e:06:09:59:91:41:a1:33:15:f0:e9:c6:04:3c:
68:ef:78:60:b4:cb:6a:ef:aa:50:82:20:42:c9:21:
00:05:dc:8e:ab:22:e0:3d:78:ba:26:d6:e8:40:4a:
fa:bc:7e:c2:f0:84:62:9d:95:51:29:07:0a:58:78:
e5:b9:77:52:65:fc:39:be:96:61:e5:f2:f5:94:20:
15:3e:78:8c:81:33:27:a6:dd:6e:e6:f8:94:f0:4e:
d6:37:27:cb:a7:ea:d7:bd:a2:ab:6f:75:9b:d4:3a:
86:da:1e:30:f6:19:8d:eb:be:dd:31:43:8b:af:34:
eb:49:89:a4:0d:56:bc:71:11:b7:b9:38:7d:d9:68:
82:e0:5b:4a:3d:23:ae:5f:dd:90:ad:27:a8:eb:8c:
18:e5:de:65:50:15:b1:22:cf:0f:f7:30:22:de:da:
16:ce:34:f5:b4:be:b8:82:27:d8:39:e4:94:7e:ff:
16:2e:3e:7f:e1:1d:d3:2f:0e:ca:3b:0b:3f:38:25:
74:ae:86:61:39:81:2f:a6:1d:1f:a1:b7:f9:4a:8d:
d6:82:b8:3a:be:46:eb:13:f8:af:71:7f:81:49:d9:
9b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:E1:68:EC:17:2C:A5:95:95:1B:C7:61:9E:12:6F:05:8E:15:54:FB
X509v3 Authority Key Identifier:
keyid:23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
75:80:2a:03:ab:28:59:3e:b5:87:0b:ca:03:d6:e4:46:0c:c7:
f8:70:4a:c1:c9:79:03:e5:70:43:59:fe:9c:0a:ea:a1:ae:1c:
b8:d9:72:d1:34:b0:6f:f5:c6:cc:e9:2b:1c:e9:ee:78:68:fc:
30:ca:ff:a8:68:79:2e:a6:e4:a0:e6:64:61:81:fc:39:70:23:
af:fe:2b:2a:3c:9b:75:23:f6:81:9a:24:35:6b:cf:b5:42:52:
b2:1c:02:0a:db:64:d2:7d:9d:eb:84:86:67:52:b1:16:96:50:
67:56:d6:51:9b:11:77:83:88:c9:c7:19:80:52:05:4c:b0:c8:
0a:aa:0f:54:8d:59:0f:e4:74:e7:2b:8e:65:bb:21:2d:5a:bb:
78:b7:32:08:80:0c:aa:c7:ca:d3:c7:d3:4a:15:f1:39:74:b6:
c1:e1:2f:de:03:6d:27:93:aa:d1:02:82:51:70:34:7f:e1:53:
fa:67:25:b6:bb:bc:a4:b4:85:0a:36:c3:16:4e:ac:61:8a:3d:
9d:a9:c6:88:9d:7a:c2:58:1a:49:ed:0d:9f:ec:c5:75:65:cb:
a1:12:aa:04:94:2e:a9:86:e1:9a:fc:96:16:51:06:f7:76:ee:
ad:59:40:8f:14:ba:91:ee:ba:dd:40:b1:da:9b:fb:ad:e6:14:
37:1b:e8:37
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICA5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTBGQzAxMTAvBgNVBAUTKDIzQzMxQjFDRDY4Q0NDNEQxQ0VCNUQzOTlBNTAxQjYw
NTBGRDFENDYwHhcNMjUwMzI5MDEwMzU4WhcNMjUwNDA1MDEwMzU4WjAYMRYwFAYD
VQQDEw02N2U3NDZmZi05MDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA8NjsYyK0Sh3c5W4qS22Abw7ljoQaYCq1zarmEinPPgYJWZFBoTMV8OnGBDxo
73hgtMtq76pQgiBCySEABdyOqyLgPXi6JtboQEr6vH7C8IRinZVRKQcKWHjluXdS
Zfw5vpZh5fL1lCAVPniMgTMnpt1u5viU8E7WNyfLp+rXvaKrb3Wb1DqG2h4w9hmN
677dMUOLrzTrSYmkDVa8cRG3uTh92WiC4FtKPSOuX92QrSeo64wY5d5lUBWxIs8P
9zAi3toWzjT1tL64gifYOeSUfv8WLj5/4R3TLw7KOws/OCV0roZhOYEvph0fobf5
So3Wgrg6vkbrE/ivcX+BSdmbKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3haOwX
LKWVlRvHYZ4SbwWOFVT7MB8GA1UdIwQYMBaAFCPDGxzWjMxNHOtdOZpQG2BQ/R1G
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEZDMC9DREUwOTg3Njk1
NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpFMGM2MTA1bWxBYllGRDlI
VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0k4TWJITmFNekUwYzYxMDVtbEFiWUZEOUhVWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
MEZDMC9DREUwOTg3Njk1NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpF
MGM2MTA1bWxBYllGRDlIVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQB1gCoDqyhZPrWHC8oD1uRGDMf4cErByXkD5XBDWf6cCuqhrhy42XLR
NLBv9cbM6Ssc6e54aPwwyv+oaHkupuSg5mRhgfw5cCOv/isqPJt1I/aBmiQ1a8+1
QlKyHAIK22TSfZ3rhIZnUrEWllBnVtZRmxF3g4jJxxmAUgVMsMgKqg9UjVkP5HTn
K45luyEtWrt4tzIIgAyqx8rTx9NKFfE5dLbB4S/eA20nk6rRAoJRcDR/4VP6ZyW2
u7yktIUKNsMWTqxhij2dqcaInXrCWBpJ7Q2f7MV1ZcuhEqoElC6phuGa/JYWUQb3
du6tWUCPFLqR7rrdQLHam/ut5hQ3G+g3
-----END CERTIFICATE-----
Generated at Fri Apr 11 01:51:24 2025 by rpki-client