Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft
File: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft (raw, json)
Hash identifier: 4dFwlLfD9hFyUL215dMRJkn6j8VPdf6/3FF4VsPtFSY=
Subject key identifier: A6:68:1E:4D:89:12:EF:A0:0A:B2:C1:82:06:49:30:A9:55:B7:46:03
Authority key identifier: D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10
Certificate issuer: /CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10
Certificate serial: BB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft
Manifest number: B6
Signing time: Sat 29 Mar 2025 05:22:08 +0000
Manifest this update: Sat 29 Mar 2025 05:22:08 +0000
Manifest next update: Sat 05 Apr 2025 05:22:08 +0000
Files and hashes: 1: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl (hash: HNGlaAoElvCzr1UeZYkhFlPqi7GVKeyzIPGFJrEJV5k=)
2: F220949E1C3411EFAF8F6A5BC4F9AE02.roa (hash: FuzVkN28KBSRdE3py4BBCf6dkz1hoCYnNgurT7k+8YU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187 (0xbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A822F
Validity
Not Before: Mar 29 05:22:08 2025 GMT
Not After : Apr 5 05:22:08 2025 GMT
Subject: CN=67e78380-db44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:fc:6b:68:46:f5:32:1d:f9:38:12:b1:85:ce:
a6:99:ce:68:fd:5d:ab:cf:d6:8d:65:8f:95:b8:b2:
be:c4:ce:e7:a5:cb:1b:1c:31:e4:42:1d:19:8f:a2:
cb:75:2b:ac:6f:86:cd:67:4f:6a:38:58:7c:ec:f9:
ac:87:93:9f:10:e0:4c:5a:7c:8f:80:a5:b6:cf:23:
d8:09:e5:b6:c8:35:bd:19:b6:68:69:8c:0d:78:d5:
bd:4e:49:53:3f:76:0a:ae:8f:10:f5:b9:86:92:62:
00:54:f5:a9:bd:4f:7c:50:18:8e:01:35:b4:c8:d8:
05:b6:88:64:78:a0:9f:76:23:d8:ed:47:f6:2d:3c:
34:0d:9f:1c:a2:48:25:49:48:59:17:d0:0b:7b:e0:
55:ed:2a:75:ee:e0:85:66:0c:e1:6e:f5:6e:ae:98:
46:98:6f:e8:e2:9a:4d:51:d4:58:d7:07:91:34:0d:
10:8d:25:b9:c9:63:be:dc:92:19:0f:ef:0a:49:1c:
4e:fd:b8:f2:a3:87:50:4e:7c:71:78:d1:f8:f6:bd:
b4:36:bb:88:54:a1:95:4d:25:63:59:db:47:1b:cb:
8b:07:c7:4b:4e:55:ba:74:2b:9e:45:79:ae:f9:d0:
f7:68:49:9a:dc:ef:b7:fd:6e:04:ee:71:3b:b8:39:
71:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:68:1E:4D:89:12:EF:A0:0A:B2:C1:82:06:49:30:A9:55:B7:46:03
X509v3 Authority Key Identifier:
keyid:D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3e:11:93:ec:88:cf:b5:74:69:68:ee:5b:2c:e6:54:0c:79:30:
1d:d6:84:0e:f7:71:6d:9f:4e:48:bf:14:14:09:70:71:07:7a:
eb:84:08:b3:44:f9:a8:f1:f3:b4:f8:bb:10:30:30:3e:b5:36:
38:89:07:a3:ca:98:8f:63:e9:bd:c4:af:d4:6c:8b:b1:e8:2b:
b4:43:6e:0d:14:64:01:8e:08:e6:2f:bd:ef:74:7f:a9:94:cb:
79:4b:e9:51:e3:95:13:d5:05:22:1f:e2:31:77:b8:f3:ed:61:
2f:91:20:60:37:e1:aa:24:29:98:e9:3e:e2:6c:cd:d1:6d:90:
f4:a8:77:bf:09:08:04:e9:d2:90:b8:b7:ee:83:15:09:e5:be:
b7:f0:24:1d:35:e5:61:a0:04:73:5d:ee:c8:c2:91:12:31:92:
9c:7f:c0:f7:ee:cd:d8:f7:a1:22:79:ec:4e:5c:dd:30:f8:49:
65:f6:cd:94:90:1b:8e:81:55:af:23:3b:be:9f:79:87:09:d7:
6a:6b:c9:8d:e7:6f:a8:28:ba:00:e2:1c:51:7f:c6:77:15:a9:
80:4c:c6:01:67:e6:89:2f:d0:68:cc:36:74:ea:99:d9:17:19:
b8:0b:1b:aa:bb:a8:bf:e3:68:24:24:f1:2b:3a:82:e9:38:7c:
85:7d:b5:d7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTgyMkYxMTAvBgNVBAUTKEQ5ODcyQzE5M0UxOERDMTUxRkUzRUY5RTI5QUZFODMx
MjFCMjREMTAwHhcNMjUwMzI5MDUyMjA4WhcNMjUwNDA1MDUyMjA4WjAYMRYwFAYD
VQQDEw02N2U3ODM4MC1kYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA8/xraEb1Mh35OBKxhc6mmc5o/V2rz9aNZY+VuLK+xM7npcsbHDHkQh0Zj6LL
dSusb4bNZ09qOFh87Pmsh5OfEOBMWnyPgKW2zyPYCeW2yDW9GbZoaYwNeNW9TklT
P3YKro8Q9bmGkmIAVPWpvU98UBiOATW0yNgFtohkeKCfdiPY7Uf2LTw0DZ8cokgl
SUhZF9ALe+BV7Sp17uCFZgzhbvVurphGmG/o4ppNUdRY1weRNA0QjSW5yWO+3JIZ
D+8KSRxO/bjyo4dQTnxxeNH49r20NruIVKGVTSVjWdtHG8uLB8dLTlW6dCueRXmu
+dD3aEma3O+3/W4E7nE7uDlxkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZoHk2J
Eu+gCrLBggZJMKlVt0YDMB8GA1UdIwQYMBaAFNmHLBk+GNwVH+Pvnimv6DEhsk0Q
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIyRi81ODQyRDMwNEY3
RjAxMUVFOThDOEM5MkJDNEY5QUUwMi8yWWNzR1Q0WTNCVWY0LS1lS2Ffb01TR3lU
UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJZY3NHVDRZM0JVZjQtLWVLYV9vTVNHeVRSQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
ODIyRi81ODQyRDMwNEY3RjAxMUVFOThDOEM5MkJDNEY5QUUwMi8yWWNzR1Q0WTNC
VWY0LS1lS2Ffb01TR3lUUkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQA+EZPsiM+1dGlo7lss5lQMeTAd1oQO93Ftn05IvxQUCXBxB3rrhAiz
RPmo8fO0+LsQMDA+tTY4iQejypiPY+m9xK/UbIux6Cu0Q24NFGQBjgjmL73vdH+p
lMt5S+lR45UT1QUiH+Ixd7jz7WEvkSBgN+GqJCmY6T7ibM3RbZD0qHe/CQgE6dKQ
uLfugxUJ5b638CQdNeVhoARzXe7IwpESMZKcf8D37s3Y96EieexOXN0w+Ell9s2U
kBuOgVWvIzu+n3mHCddqa8mN52+oKLoA4hxRf8Z3FamATMYBZ+aJL9BozDZ06pnZ
Fxm4Cxuqu6i/42gkJPErOoLpOHyFfbXX
-----END CERTIFICATE-----
Generated at Sat Apr 5 19:04:22 2025 by rpki-client