Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft
File: jGb5wOZorJCB33ENYELfR0kLCrk.mft (raw, json)
Hash identifier: vStNcu6W3SbwPKH/I9J9nlT/WcuZpx24As9dBrs8UPE=
Subject key identifier: 9C:DD:6D:C2:A1:51:05:19:8B:5B:2C:45:5F:F2:B7:57:CF:16:DD:94
Authority key identifier: 8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9
Certificate issuer: /CN=A91A97F0/serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9
Certificate serial: 0C14
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft
Manifest number: 0BFF
Signing time: Fri 28 Mar 2025 18:58:09 +0000
Manifest this update: Fri 28 Mar 2025 18:58:09 +0000
Manifest next update: Fri 04 Apr 2025 18:58:09 +0000
Files and hashes: 1: jGb5wOZorJCB33ENYELfR0kLCrk.crl (hash: ugeyLclXUcQDrB5PNF+Z9w5OdmJES6EW0ILFeXhmKI4=)
2: 90576660E19711EFA11C2227C4F9AE02.roa (hash: 4znOjftmOLUP9F0sqZtn3shUbp4rIvm9xbYnsSSpuqA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3092 (0xc14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A97F0
Validity
Not Before: Mar 28 18:58:09 2025 GMT
Not After : Apr 4 18:58:09 2025 GMT
Subject: CN=67e6f141-a7f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:30:1e:d0:81:e8:04:1d:67:b6:1a:aa:0e:45:
b0:3e:0e:53:ae:0e:5e:83:8c:c6:a2:ed:b2:42:58:
5d:13:8a:50:49:db:d1:49:47:cd:d6:dc:16:e2:57:
e8:a4:6d:98:10:0d:e3:b4:b6:a3:8a:9f:6c:ae:c6:
e5:35:c6:3a:ea:eb:48:50:2e:99:5b:36:1a:fa:f1:
70:a7:a9:24:6d:5f:35:9a:55:25:30:26:df:a8:00:
0a:67:30:b9:95:a7:03:1d:24:61:68:e8:b3:50:54:
03:a8:d5:02:16:66:b7:e9:09:25:49:7e:d7:7b:6a:
31:88:dc:1a:aa:49:37:88:11:f3:57:33:7c:ff:d1:
c0:54:7e:83:82:79:fd:b2:14:57:41:4e:1e:0e:e5:
48:56:5b:72:89:83:69:c5:0a:11:68:88:f7:68:79:
20:33:9a:03:69:36:5c:f8:d5:66:e0:0d:5f:fc:ed:
de:7d:3e:5b:a9:d9:a9:e8:51:da:a0:05:ea:f6:f1:
df:75:06:c3:28:9d:d1:e3:2b:76:5c:c3:4d:cc:64:
e4:68:6e:69:d1:0b:dc:9a:ca:c7:2d:c4:a9:99:b4:
dc:dc:64:c6:bb:fd:16:9b:d3:31:30:b9:fe:e1:af:
b6:67:aa:f1:5f:03:12:64:f7:b4:d0:3c:ea:7a:52:
9a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:DD:6D:C2:A1:51:05:19:8B:5B:2C:45:5F:F2:B7:57:CF:16:DD:94
X509v3 Authority Key Identifier:
keyid:8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a6:c5:7c:1f:97:27:14:d2:fa:26:50:14:f3:ac:ef:72:51:cb:
5c:2b:90:03:93:5c:a6:6c:d3:30:83:93:e3:1a:7f:99:68:f0:
ab:2a:66:57:38:ad:6b:e5:66:3c:79:ca:1d:ce:e9:d7:8c:79:
78:2d:0f:8f:a5:e7:dd:89:11:fb:d9:12:f1:5e:c5:91:ff:40:
7c:d2:7c:89:2c:ea:21:1d:5a:ac:36:4b:d7:89:28:00:5f:0a:
fb:99:85:60:8a:6b:84:b6:54:aa:8d:ef:55:ff:33:97:3d:6d:
a6:d2:61:bc:9b:7d:d5:26:a9:88:51:98:60:e2:d8:56:cb:ad:
d4:11:7e:54:93:8d:12:d0:8e:54:d6:ed:2c:0b:a4:fe:b8:2d:
d1:7f:02:26:e3:2f:25:3e:2b:0f:f1:a3:89:db:ca:7d:da:15:
72:40:76:3f:39:32:41:2e:68:d1:8b:5d:ec:f3:d1:a3:12:ff:
a6:4e:3a:8e:46:cb:da:6d:ce:4f:2e:31:1f:be:27:a8:05:1f:
94:13:48:0b:8c:65:d2:ca:22:91:f6:0b:04:e3:df:32:c7:b6:
1b:03:92:37:f9:7b:e2:b0:0b:54:e7:df:b1:e7:1a:97:53:f2:
95:c9:ac:dd:3e:97:2d:4f:4a:08:b6:ca:a6:ed:e3:e0:21:a4:
bc:f1:f6:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:35:47 2025 by rpki-client