Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json)
Hash identifier: gkEizKu3Tm+4N8LI/NrUi4wwLvrvx+KO3nXsjIho4RQ=
Subject key identifier: 07:38:E7:AE:9A:E4:56:EC:09:9D:DA:E5:88:CA:14:DD:E2:07:5B:0F
Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60
Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460
Certificate serial: 0473
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
Manifest number: 0471
Signing time: Sat 29 Mar 2025 00:21:11 +0000
Manifest this update: Sat 29 Mar 2025 00:21:10 +0000
Manifest next update: Sat 05 Apr 2025 00:21:10 +0000
Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: sPAlwqmipbva892do8wigbvwJv6rWk1G8VUKyxfDELI=)
2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: kkkJWZ9fDn1htzEtE1zpX7lAAG0cOZUfH1foPNvS114=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1139 (0x473)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A7C77
Validity
Not Before: Mar 29 00:21:10 2025 GMT
Not After : Apr 5 00:21:10 2025 GMT
Subject: CN=67e73cf7-b8a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d0:7d:ec:6e:d6:d4:83:90:a9:e1:06:5b:d6:
36:db:b1:05:2e:0d:b5:05:0e:4e:e4:07:bc:b9:ec:
6e:82:34:f0:e3:1a:e8:4e:c5:2c:26:2f:a0:bc:ae:
8b:07:0e:01:33:ae:ce:36:1a:d7:59:0f:4e:03:b8:
d9:07:e6:f7:d9:94:37:a6:b9:e1:a5:cc:68:f2:a8:
4b:ac:a7:b3:cd:96:3c:93:ed:f4:9c:af:b9:8d:74:
05:ff:e6:38:57:ce:73:40:03:03:53:19:29:b6:09:
26:06:b6:a1:af:81:5a:48:2a:ac:f1:91:44:ad:e0:
2c:75:52:2b:7d:01:bc:b1:13:ee:a3:09:38:70:df:
b1:1d:8e:a2:ba:15:06:f1:d7:29:03:3b:d0:81:0e:
f3:ec:a3:61:5d:42:bb:ce:e3:fc:5e:2a:0b:4b:b5:
08:04:ad:26:a2:0b:a5:53:b5:a1:78:75:c8:25:8c:
f5:a3:eb:de:5d:2b:c3:b6:af:89:8a:99:a2:7c:3e:
48:47:fa:e9:17:43:4f:43:e1:85:8c:ec:86:22:dc:
ff:4c:86:8c:f0:cb:28:5c:6e:07:8e:c3:02:60:8e:
04:c8:54:3c:e8:52:7d:60:66:be:b3:65:58:1a:09:
79:70:fb:4f:5b:1d:7a:69:19:79:36:15:2d:c6:b9:
31:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:38:E7:AE:9A:E4:56:EC:09:9D:DA:E5:88:CA:14:DD:E2:07:5B:0F
X509v3 Authority Key Identifier:
keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1f:ed:1e:9e:a6:d0:ad:17:33:33:25:f5:89:5d:f0:f6:6a:7d:
30:02:46:74:e4:79:89:28:e9:d1:cc:48:38:87:7c:3b:cc:81:
63:15:97:02:f5:5a:17:f0:bf:0e:7a:00:6c:21:b3:9b:ad:91:
e5:6d:f8:1c:e4:04:75:20:a4:d5:06:66:bb:4f:99:03:19:ad:
d7:b3:49:46:b8:2b:65:7a:a4:b5:11:4d:c1:53:99:37:25:25:
20:ac:79:b0:05:4e:db:06:05:88:70:01:b1:dc:1b:27:3d:ec:
3f:58:8c:69:8b:50:72:62:fb:4a:cc:6e:28:ab:1e:4a:a3:a4:
e7:01:bc:5f:a7:4c:2a:f1:24:98:07:55:00:7b:eb:98:2a:c6:
09:ef:c0:0f:90:c6:d3:d4:73:93:03:a8:00:19:9a:bd:58:6a:
1e:80:1a:c5:8f:03:ef:90:cf:be:03:cd:d8:14:ce:95:5e:69:
87:4b:9f:86:64:9d:9c:9a:8d:5e:50:5f:4f:97:c6:b1:42:b5:
6b:28:b0:4b:82:1a:82:be:e6:75:0a:3a:cd:42:16:e6:1f:5c:
de:56:0d:ee:fa:f6:2e:4d:7b:65:8b:f2:56:29:86:3c:12:c0:
f7:ce:89:d9:5c:fb:87:49:02:fd:64:ca:f7:df:92:1b:3f:9a:
0f:86:ba:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 04:06:34 2025 by rpki-client