Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft
File: x5XlnAMMfJKfy-R0Gfxexp4frP0.mft (raw, json)
Hash identifier: u+swYg90bm2qtopDN1+erBeSf8AXD8TWXtSWWIBVVXU=
Subject key identifier: 60:D3:51:57:79:F5:AC:BB:B0:6F:AA:CF:1A:9C:0A:5A:92:B3:FD:22
Authority key identifier: C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD
Certificate issuer: /CN=A91A3FEB/serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD
Certificate serial: 072D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft
Manifest number: 0728
Signing time: Fri 28 Mar 2025 22:03:08 +0000
Manifest this update: Fri 28 Mar 2025 22:03:08 +0000
Manifest next update: Fri 04 Apr 2025 22:03:08 +0000
Files and hashes: 1: x5XlnAMMfJKfy-R0Gfxexp4frP0.crl (hash: KLpPjJihs3D6aHfHYfcoB4zgwI1CPrczS1UZjNCSlj4=)
2: B722FC542A0411EB992DD32EC4F9AE02.roa (hash: T2Lsfba/5wcE3DtMzCheps9cMl47tWjTgMCBmWf+3eA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1837 (0x72d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A3FEB
Validity
Not Before: Mar 28 22:03:08 2025 GMT
Not After : Apr 4 22:03:08 2025 GMT
Subject: CN=67e71c9c-274a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c8:c2:fa:e3:5a:a6:f5:a2:6b:e0:22:cf:2c:
e1:3d:7e:67:4b:eb:11:a9:fc:72:cb:3d:cb:a3:c2:
b9:b0:3c:08:40:a3:b6:77:d5:ca:5b:9f:ad:ea:28:
bc:ad:48:bf:5b:72:fe:8e:ac:a8:e1:58:98:21:f0:
93:e3:c0:31:f8:9a:b7:43:ec:94:ab:30:4c:cb:f8:
40:fc:32:30:f4:e9:15:70:a4:31:0c:1a:86:f0:26:
e3:bf:be:ad:17:3e:bf:34:fd:5f:f3:21:14:e4:4f:
9e:1e:92:71:15:f8:0d:25:2b:10:34:9e:38:d7:15:
3b:5c:5a:f2:83:9d:64:bd:cb:a2:75:7e:0d:b9:7e:
be:22:91:80:32:c1:b5:a4:ae:f9:c3:6c:97:46:79:
42:7d:b5:83:25:03:95:1a:5f:66:08:1f:49:e0:54:
da:48:b4:24:9a:d6:08:a1:7d:d8:14:6c:7d:e3:d9:
2f:02:6b:c6:f3:33:6c:87:2e:12:65:49:99:d4:70:
f4:31:24:a7:5b:cd:30:88:ef:24:5a:3a:90:ea:79:
23:01:27:55:c0:cf:8c:d6:c6:75:08:46:d0:1b:62:
39:f8:eb:d8:c3:e8:c2:9e:bb:c9:ae:63:26:d5:44:
72:14:12:f5:d4:c6:36:02:9b:88:d0:f2:12:9e:71:
ed:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D3:51:57:79:F5:AC:BB:B0:6F:AA:CF:1A:9C:0A:5A:92:B3:FD:22
X509v3 Authority Key Identifier:
keyid:C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
60:8d:a7:22:5e:01:d7:e1:6c:e6:9b:84:8f:61:4b:77:63:d9:
f6:6e:39:9d:60:73:e9:82:65:ca:17:5a:89:8b:7c:18:29:d3:
86:0c:f4:dc:64:ab:11:67:63:e7:28:ff:66:84:5b:63:97:9a:
f4:8a:38:3c:e9:6d:be:34:db:af:6a:a3:2e:97:ac:d8:a9:4e:
d8:df:4a:9c:52:ee:9a:40:d2:1c:95:8c:40:f3:27:13:c8:e6:
39:d8:43:32:d6:a9:ed:5a:f7:3a:ce:c4:a2:9c:12:d3:eb:b1:
77:86:80:56:4f:9c:ee:be:10:09:04:78:6f:e3:af:d1:e2:10:
0a:2c:5f:44:5d:b2:0f:82:0e:75:09:ed:f4:cd:87:ad:05:dd:
d8:84:49:8a:09:55:b0:b7:2b:71:2b:c9:84:0c:d8:1a:14:c6:
21:26:f8:6b:52:70:3c:ca:bf:37:fd:56:d5:b1:64:a7:86:6c:
26:11:55:c2:e8:53:d7:75:ab:1b:d8:5f:f6:ed:5d:0e:a9:ff:
a9:92:15:c7:dc:61:61:9f:dc:8e:9d:59:c6:e4:f4:0d:41:a9:
89:ab:69:9c:07:05:1e:b6:6e:c9:b5:3c:fc:b8:12:37:b1:ba:
30:63:3e:fe:b4:69:b2:b6:b2:85:1f:e8:75:53:31:db:ea:c9:
51:62:5e:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:33:52 2025 by rpki-client