Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft
File: yod6eu8duwRWSH9h_uaZNjdUHl0.mft (raw, json)
Hash identifier: ADKbTOG1ttKDL1bf62mlQYUS4pUm+CZbHDbxQ4K+iRw=
Subject key identifier: F4:75:A0:1B:B2:D9:23:8D:3E:33:6D:23:30:D9:E8:95:97:D1:75:7B
Authority key identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D
Certificate issuer: /CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D
Certificate serial: 85
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft
Manifest number: 85
Signing time: Fri 28 Mar 2025 22:10:18 +0000
Manifest this update: Fri 28 Mar 2025 22:10:18 +0000
Manifest next update: Fri 04 Apr 2025 22:10:18 +0000
Files and hashes: 1: yod6eu8duwRWSH9h_uaZNjdUHl0.crl (hash: bs8mSzZ6kpsBq0GtP3Ks8oDqlMERX9PetaiCAkckfPY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133 (0x85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AA053
Validity
Not Before: Mar 28 22:10:18 2025 GMT
Not After : Apr 4 22:10:18 2025 GMT
Subject: CN=67e71e4a-ee96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:31:ea:d7:11:0a:13:5a:e9:bb:0f:11:97:e4:
56:82:dd:88:6f:20:9f:7c:e7:65:64:ac:13:22:4b:
22:61:a0:c2:06:b4:b1:9f:ee:7e:8e:b8:0e:3d:97:
07:6d:9d:aa:d0:4d:a6:92:11:58:89:d1:eb:45:8d:
cf:d6:b9:52:9e:1d:69:bb:94:18:6a:4a:9c:69:07:
78:17:30:56:e1:88:2e:1c:cf:85:69:a2:24:ca:4c:
86:50:d4:d4:b5:4e:c0:36:0b:07:ae:b6:74:5f:f8:
63:21:90:12:30:46:37:3f:01:33:e5:ce:27:36:8e:
8a:c3:fd:1a:bb:77:5b:13:bf:17:d5:85:3d:35:b1:
18:60:12:2a:f7:a6:37:a2:e0:5b:48:75:84:14:8b:
c6:91:c5:75:98:1b:27:bb:e8:37:54:0c:bd:17:5c:
0f:9c:55:fa:bc:96:40:c0:fe:19:c4:a9:f9:c4:87:
2d:6b:ed:87:95:a5:dc:3c:66:8b:e8:6c:75:f3:79:
29:24:2f:22:35:e5:ff:a7:9b:8a:8d:bb:89:ad:90:
0d:e6:4c:52:f7:97:d5:d2:39:fb:c3:09:ed:a0:42:
c1:f0:d3:0b:cd:f5:2f:fa:47:eb:ad:c5:ea:ba:b5:
d4:ac:00:d9:2f:f4:bb:e8:ea:5b:a2:94:eb:c6:3d:
15:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:75:A0:1B:B2:D9:23:8D:3E:33:6D:23:30:D9:E8:95:97:D1:75:7B
X509v3 Authority Key Identifier:
keyid:CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9d:2c:08:da:26:41:ea:36:84:63:9a:c6:c4:e9:ea:48:c6:3f:
24:60:ce:01:3c:6d:f1:be:d5:02:c5:e0:e5:b2:99:77:e1:7c:
82:de:8f:a2:ee:c2:13:f9:16:af:a5:e0:4a:6f:a9:13:21:25:
8b:6f:88:9b:8d:8d:ba:d4:de:10:19:02:c0:7d:62:d0:e4:f8:
37:31:e1:2a:ec:cd:87:97:da:a4:66:02:f5:93:9d:9e:82:dd:
3b:31:a3:ea:5e:e9:b9:4e:84:70:fe:26:8e:b9:3e:52:a2:4b:
48:6a:3c:c7:af:1f:fd:fe:e7:64:9e:f8:1c:8b:38:04:4d:db:
23:a3:1f:cb:64:32:a8:20:2f:e7:d3:a6:51:f7:7a:ca:ac:ea:
44:8a:f1:39:02:a3:1f:a6:d4:dd:07:5f:78:0d:68:cd:54:df:
78:aa:53:ba:1f:f2:81:01:a5:82:36:fc:94:da:e9:4a:ef:74:
1e:11:3d:aa:7f:f4:06:5d:06:0c:ae:d3:2e:62:12:b2:d8:c3:
96:c1:64:79:26:73:2c:6a:ac:72:15:47:3c:ad:cd:0d:34:84:
f9:b8:e3:64:ed:06:df:14:2f:a8:d1:48:d5:28:56:cc:92:35:
78:00:72:e1:d4:5b:35:6a:45:24:10:55:11:77:46:6f:f9:e7:
08:49:a9:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:30:10 2025 by rpki-client