Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft
File: 1f9FyAWBJcJy3wRtwLjgb6owT88.mft (raw, json)
Hash identifier: xFLT7UInauqNMLqT55gzzPXsN7wAkfWk+VOgASDi9DM=
Subject key identifier: F6:A9:37:B8:5E:87:86:16:65:F3:D4:C7:F1:DD:61:63:64:99:A3:F7
Authority key identifier: D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF
Certificate issuer: /CN=A91A7E29/serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF
Certificate serial: 03BF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft
Manifest number: 03B7
Signing time: Sat 29 Mar 2025 00:57:34 +0000
Manifest this update: Sat 29 Mar 2025 00:57:33 +0000
Manifest next update: Sat 05 Apr 2025 00:57:33 +0000
Files and hashes: 1: 1f9FyAWBJcJy3wRtwLjgb6owT88.crl (hash: zg1Ugzk44rfxbtkhKoo9Do9SMWRA78ir+PtAB3BYjr8=)
2: 99F51284A1E911EDAD7CE929C4F9AE02.roa (hash: DgFh0007lZzBIY6/Uazy8v7Lvih8jtP3rAyQ1LouyMA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 959 (0x3bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A7E29
Validity
Not Before: Mar 29 00:57:33 2025 GMT
Not After : Apr 5 00:57:33 2025 GMT
Subject: CN=67e7457d-3bcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:19:a5:83:e8:70:7b:3a:1a:45:f8:16:fc:41:
e1:13:30:c4:bb:d3:94:c6:5e:65:ec:a6:e6:cd:2d:
e8:ae:a0:06:39:62:ad:fb:26:98:68:af:24:e5:8c:
99:bb:c4:d0:5d:12:2f:66:db:92:16:a9:e7:4f:f2:
b6:44:05:7f:8b:f5:40:ad:4a:57:77:c7:87:a8:15:
3a:46:dd:2c:32:57:48:48:5c:2c:57:b0:38:f7:1a:
31:b2:96:53:47:bd:c8:f7:7f:59:71:54:7f:76:c1:
37:01:e6:3d:1b:5e:d0:b4:d1:33:d2:5c:8d:67:27:
6a:ad:03:be:35:58:26:89:3c:e7:fe:75:ba:8a:3a:
28:a5:96:8f:b8:e7:b2:d5:13:a8:ec:14:4d:35:c7:
70:7d:24:50:3b:ae:c6:a9:ab:8d:2d:79:b4:78:9e:
9d:6b:d7:59:0b:af:f1:4d:72:63:4a:cd:72:39:7c:
02:c1:dc:43:99:51:4d:4f:a2:bc:4c:cf:01:43:f4:
50:1e:e3:59:56:fa:b1:4c:db:27:a9:01:a2:48:8d:
25:01:f2:06:ac:84:10:7c:f6:8f:ef:c2:28:0b:c3:
ea:a1:bc:61:bb:40:a2:82:e6:61:c8:db:af:33:33:
81:b5:13:d0:48:32:2e:20:92:90:eb:4c:e8:d7:85:
14:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:A9:37:B8:5E:87:86:16:65:F3:D4:C7:F1:DD:61:63:64:99:A3:F7
X509v3 Authority Key Identifier:
keyid:D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
33:1a:9a:7f:27:7d:49:1c:d5:d1:be:6d:a5:ee:14:5c:6c:eb:
d7:90:a6:7f:d4:51:45:52:49:3e:89:33:2a:e6:9e:09:7d:9f:
ba:ab:46:de:52:2c:03:91:5a:cc:d4:e4:6b:e5:24:e0:53:d4:
81:b8:f2:98:50:44:e9:58:f9:92:b8:fd:9c:3d:f9:24:af:ad:
69:62:be:3b:99:d8:e2:a7:94:ca:33:52:4b:30:af:64:e2:13:
8c:64:af:06:58:98:92:68:d6:a7:4d:00:bd:32:2c:3d:36:0a:
e9:81:1e:73:2e:88:2e:0d:b1:81:96:db:a6:d5:88:c1:cb:d6:
33:c6:d3:b1:33:3e:bd:98:9f:7f:95:96:17:a2:f9:f1:00:d7:
7f:1b:9e:ed:aa:34:ab:11:9b:36:64:ce:8a:b1:fe:d6:03:5d:
58:4f:73:7d:5b:e9:73:af:31:d0:76:df:f0:b3:ae:eb:04:34:
7e:af:e0:f8:41:8e:6d:fe:d0:28:6c:32:14:86:4f:88:50:af:
dc:d0:ef:67:23:57:08:45:5a:73:ab:a3:03:1b:cd:fd:30:4f:
00:9b:7c:3a:c0:96:44:cc:5f:bb:50:bf:9a:5b:81:0f:f8:bc:
27:7f:8d:08:16:eb:29:9b:6b:c9:29:b7:aa:57:fc:f1:b5:bc:
e4:98:b8:98
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICA78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTdFMjkxMTAvBgNVBAUTKEQ1RkY0NUM4MDU4MTI1QzI3MkRGMDQ2REMwQjhFMDZG
QUEzMDRGQ0YwHhcNMjUwMzI5MDA1NzMzWhcNMjUwNDA1MDA1NzMzWjAYMRYwFAYD
VQQDEw02N2U3NDU3ZC0zYmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnhmlg+hwezoaRfgW/EHhEzDEu9OUxl5l7KbmzS3orqAGOWKt+yaYaK8k5YyZ
u8TQXRIvZtuSFqnnT/K2RAV/i/VArUpXd8eHqBU6Rt0sMldISFwsV7A49xoxspZT
R73I939ZcVR/dsE3AeY9G17QtNEz0lyNZydqrQO+NVgmiTzn/nW6ijoopZaPuOey
1ROo7BRNNcdwfSRQO67GqauNLXm0eJ6da9dZC6/xTXJjSs1yOXwCwdxDmVFNT6K8
TM8BQ/RQHuNZVvqxTNsnqQGiSI0lAfIGrIQQfPaP78IoC8Pqobxhu0CiguZhyNuv
MzOBtRPQSDIuIJKQ60zo14UUpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPapN7he
h4YWZfPUx/HdYWNkmaP3MB8GA1UdIwQYMBaAFNX/RcgFgSXCct8EbcC44G+qME/P
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0UyOS81NkYxQzUzMjg3
OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpjSnkzd1J0d0xqZ2I2b3dU
ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzFmOUZ5QVdCSmNKeTN3UnR3TGpnYjZvd1Q4OC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
N0UyOS81NkYxQzUzMjg3OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpj
Snkzd1J0d0xqZ2I2b3dUODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAzGpp/J31JHNXRvm2l7hRcbOvXkKZ/1FFFUkk+iTMq5p4JfZ+6q0be
UiwDkVrM1ORr5STgU9SBuPKYUETpWPmSuP2cPfkkr61pYr47mdjip5TKM1JLMK9k
4hOMZK8GWJiSaNanTQC9Miw9NgrpgR5zLoguDbGBltum1YjBy9YzxtOxMz69mJ9/
lZYXovnxANd/G57tqjSrEZs2ZM6Ksf7WA11YT3N9W+lzrzHQdt/ws67rBDR+r+D4
QY5t/tAobDIUhk+IUK/c0O9nI1cIRVpzq6MDG839ME8Am3w6wJZEzF+7UL+aW4EP
+Lwnf40IFuspm2vJKbeqV/zxtbzkmLiY
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:44:34 2025 by rpki-client