Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft
File: wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft (raw, json)
Hash identifier: z/+ReXbDcizCugTKPDHA78Z5rnfXHDD3iTBa/qqsu1E=
Subject key identifier: 48:83:27:6A:E4:85:1F:AC:60:72:8A:C7:57:4B:EA:DA:32:CC:5D:68
Authority key identifier: C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19
Certificate issuer: /CN=A91A445C/serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219
Certificate serial: 2FC2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft
Manifest number: 2FB9
Signing time: Fri 28 Mar 2025 15:34:08 +0000
Manifest this update: Fri 28 Mar 2025 15:34:07 +0000
Manifest next update: Fri 04 Apr 2025 15:34:07 +0000
Files and hashes: 1: wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl (hash: vkbRgC4xIK+Dl6EUAdRedfVs1/p7WaihBls8rkGUOKE=)
2: 47A21580B6CC11EC98672826C4F9AE02.roa (hash: qjc1TRQ4aj3UWDrfE4OMe7D9VpKX+4bRXdtLVlC/TX8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12226 (0x2fc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A445C
Validity
Not Before: Mar 28 15:34:07 2025 GMT
Not After : Apr 4 15:34:07 2025 GMT
Subject: CN=67e6c16f-1e6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2e:5a:4f:21:b6:e3:18:46:2c:f6:94:68:7b:
82:8f:ea:56:e3:b6:36:97:a1:3b:2b:8d:f7:2a:66:
ff:7d:a5:68:bf:97:e5:43:eb:97:eb:53:d0:fb:1e:
50:97:64:eb:92:19:ec:13:68:b6:bc:0c:3d:07:c2:
08:53:c5:a4:60:9f:21:e4:07:8d:80:dd:e9:d8:07:
b2:31:f8:da:a6:10:bb:ba:52:18:17:39:f0:8a:4c:
ab:80:ce:38:8d:fe:b5:8e:31:4b:00:4b:3a:cc:c7:
0b:0e:0d:74:67:00:12:8c:fe:be:de:16:f8:20:09:
0b:8e:99:9f:87:ae:45:73:a6:2d:55:39:17:13:1d:
ca:3d:85:08:b2:e4:34:e4:78:e7:d2:e2:1a:cf:62:
65:92:5c:4f:dd:91:f3:f9:ee:7b:e0:ba:f0:49:a0:
56:74:e8:ad:e7:9c:50:36:ad:03:2d:18:7a:60:58:
48:f1:ac:f7:1a:25:bf:47:fe:fc:a0:c0:86:5b:2d:
fd:94:b8:63:84:1d:0a:c0:d6:d3:ec:47:e7:20:3f:
cd:9f:33:ef:40:36:0c:88:85:74:31:5a:08:59:49:
2a:40:f0:37:df:03:8d:1d:79:c8:39:13:5c:88:47:
b3:66:ee:30:3b:16:03:74:fa:52:cd:25:4d:9d:0d:
a0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:83:27:6A:E4:85:1F:AC:60:72:8A:C7:57:4B:EA:DA:32:CC:5D:68
X509v3 Authority Key Identifier:
keyid:C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3a:b2:e6:a1:c0:a0:2f:c3:68:95:2b:e2:e7:58:ff:10:0e:63:
db:99:25:70:26:96:46:54:80:1b:be:a5:19:35:d2:e4:27:e1:
0b:d3:d7:66:37:b5:56:4f:3b:29:69:1d:5d:6f:cc:bf:f0:ee:
b8:7f:20:62:b8:90:cf:dc:e8:6b:7b:f0:b7:bc:e3:3a:bf:84:
ab:01:b1:ef:fc:10:6e:59:bf:37:4e:f4:96:a2:52:58:3b:39:
e3:7d:94:e2:8d:67:d4:87:5d:82:9f:38:09:b3:61:c4:1b:6f:
ee:08:ce:ab:47:50:44:8a:2d:81:2f:68:b1:98:55:9e:65:5c:
ab:c3:e3:c5:43:18:06:a5:e8:d2:74:29:ce:27:68:04:7b:b8:
f4:73:57:27:c0:ef:37:a2:f3:85:32:82:b2:1f:d7:c3:03:e4:
c5:f9:e8:44:b5:b3:84:35:e3:f5:b6:51:5e:e1:91:6e:61:2d:
8d:a4:49:70:96:0c:b8:40:99:26:76:4c:57:b7:f5:5d:d4:b8:
d4:4e:bb:5b:1d:cd:ad:3e:02:04:59:67:f0:bf:9b:be:25:45:
ce:88:f3:f2:6a:b6:fa:e3:8f:ab:ac:5a:c4:36:cd:6b:a5:96:
16:0b:ef:89:f1:b8:05:a3:66:76:a5:5a:ce:fd:26:9f:af:8c:
71:9f:14:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:51:44 2025 by rpki-client