Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft
File: lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft (raw, json)
Hash identifier: XvhZlA2qXouGDcvwSBcfHkmwg+Di4nNsuaV347grn18=
Subject key identifier: D9:16:B5:71:5A:3A:73:89:7C:8D:86:84:65:91:77:2D:6A:12:13:D8
Authority key identifier: 97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17
Certificate issuer: /CN=A91A1C06/serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17
Certificate serial: 3484
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft
Manifest number: 3479
Signing time: Fri 28 Mar 2025 15:04:39 +0000
Manifest this update: Fri 28 Mar 2025 15:04:38 +0000
Manifest next update: Fri 04 Apr 2025 15:04:38 +0000
Files and hashes: 1: lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl (hash: o3QwiQBya+esPYuhiyYhwdxTaavz1yFw3vlIkQASaXI=)
2: C64C7958422411EA9CA5F423C4F9AE02.roa (hash: 3fSEvKM13CebYGAsrgkzFIerRrbjNtx416zFYNRYGP0=)
3: FB50A65027B311EFBA31BB40C4F9AE02.roa (hash: aVfEOKnVDm2poRF4e8I0r6U1onr3PWkW1eUF2/DigYY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13444 (0x3484)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A1C06
Validity
Not Before: Mar 28 15:04:38 2025 GMT
Not After : Apr 4 15:04:38 2025 GMT
Subject: CN=67e6ba87-ab42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0d:56:46:68:48:bf:7d:37:77:4c:5c:d8:f0:
b3:a2:fb:83:64:ab:da:65:e0:58:c9:1d:eb:10:e2:
eb:38:15:f3:f7:e4:ce:4d:3d:69:96:8d:f3:5f:a2:
ec:29:e0:d2:8a:0a:34:f5:63:ee:ce:13:bd:35:6e:
35:fb:6f:80:3f:06:06:bb:7e:7b:44:ea:b7:c0:49:
14:1d:d1:68:8f:72:17:25:87:cd:1f:6b:2a:0f:c2:
96:cb:94:92:56:a5:1e:ca:ef:ae:90:41:2e:58:fa:
ab:db:e2:99:2b:65:3b:6e:0c:5a:0e:68:fa:fb:25:
f8:65:32:6b:5c:61:32:8e:7c:ae:7b:07:b5:2f:91:
57:41:0e:a7:d1:cb:fd:8e:bf:6f:8f:8f:5d:03:45:
c8:b7:e0:e4:98:ea:35:b7:9a:39:4e:c6:09:27:f0:
f9:9c:0e:59:a8:75:0f:2d:14:41:69:00:51:89:35:
85:11:93:7a:c0:6c:a1:48:a6:51:f0:e7:51:5a:0e:
e0:65:52:1d:9f:59:aa:ed:99:b5:ea:c6:59:e4:aa:
04:8e:4d:d1:0f:62:96:a6:b6:63:30:ef:5b:b6:1f:
f2:22:b6:eb:bd:58:eb:23:20:58:16:14:fb:c4:b5:
1e:f2:30:be:d6:ba:ca:49:22:6d:79:43:f2:2c:a1:
b7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:16:B5:71:5A:3A:73:89:7C:8D:86:84:65:91:77:2D:6A:12:13:D8
X509v3 Authority Key Identifier:
keyid:97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
19:98:91:8a:6e:56:bb:51:85:50:c6:16:e0:8d:f0:2a:98:10:
9f:00:06:70:7b:2a:80:18:6f:63:41:4e:d1:12:8f:0f:48:7f:
7b:05:5d:dd:2e:aa:8f:c2:3c:71:05:99:22:dc:81:eb:70:ac:
7f:ff:04:43:ac:cb:22:b2:1c:b8:d8:2b:18:94:b9:ec:5d:03:
70:05:8d:19:da:41:7c:ab:c2:1d:f4:40:3e:ec:24:6e:f8:17:
19:c2:4e:60:31:cf:5e:9b:70:7f:ba:9c:8c:b3:17:eb:8a:b3:
e0:77:45:c6:bb:2e:7e:28:1c:b7:f7:34:e2:23:13:33:0a:77:
4b:68:27:e5:ff:72:4b:01:bd:90:aa:37:08:d7:60:e7:54:f9:
d4:7c:49:d4:55:40:50:d3:77:de:64:37:a5:82:aa:ff:1b:86:
0c:a9:ab:a2:3a:db:7e:72:48:31:1b:5a:08:cd:56:ea:36:3a:
f4:c1:7d:05:e9:fd:4f:e0:35:6e:eb:cf:60:81:40:ab:a4:bc:
4e:66:ab:91:81:81:95:fa:9d:77:9b:b6:6f:6c:1c:02:54:42:
99:f9:c9:8e:a6:82:28:f3:62:f4:1d:83:2e:a0:c0:87:63:87:
8a:16:a9:ee:cb:7b:99:2b:1f:d4:34:41:82:3e:2b:dc:02:0c:
1e:0a:2b:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:23:02 2025 by rpki-client