Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.mft
File: exrifTz1FJnFBW59qHNmXk5BUXk.mft (raw, json)
Hash identifier: /iXHPglOObF+bqo/Lgeoa7fhIcweX3IcHA+4fkNdi9E=
Subject key identifier: CA:97:8D:85:0C:3F:59:48:BB:86:13:3B:8A:A7:3F:73:ED:FC:D7:9C
Authority key identifier: 7B:1A:E2:7D:3C:F5:14:99:C5:05:6E:7D:A8:73:66:5E:4E:41:51:79
Certificate issuer: /CN=A91AB193/serialNumber=7B1AE27D3CF51499C5056E7DA873665E4E415179
Certificate serial: C2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exrifTz1FJnFBW59qHNmXk5BUXk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.mft
Manifest number: BB
Signing time: Sat 29 Mar 2025 05:20:52 +0000
Manifest this update: Sat 29 Mar 2025 05:20:51 +0000
Manifest next update: Sat 05 Apr 2025 05:20:51 +0000
Files and hashes: 1: exrifTz1FJnFBW59qHNmXk5BUXk.crl (hash: IvZhxY0PVqjRhTcETtkaxlo3xQALjSylWArdWfLV1jM=)
2: 0E3462143D2D11EFA4B90A1EC4F9AE02.roa (hash: WuVOWMIZsWaqgCf62FxXtIQArid3aP/swI50L4Fc9Qs=)
3: AC82414A392511EF88F70D39C4F9AE02.roa (hash: VLLI4apzU65MvbK7HK/CI33oFr6zuJC3PU4p9pha8w8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194 (0xc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AB193
Validity
Not Before: Mar 29 05:20:51 2025 GMT
Not After : Apr 5 05:20:51 2025 GMT
Subject: CN=67e78333-f6f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fc:c8:ca:ed:69:44:50:6e:8e:0f:53:83:1d:
cd:60:4d:e3:41:1e:39:9d:78:a8:57:64:cc:8b:99:
79:bf:21:a1:f1:3f:47:73:bc:98:e9:14:6f:34:bc:
c0:c1:83:c8:5f:7c:d0:77:74:dc:63:d4:cd:df:71:
a8:c8:9e:20:5c:9c:60:e7:dd:57:41:3b:23:ad:06:
ba:68:9a:55:19:dd:65:c0:dd:83:63:41:b5:ae:2e:
6e:28:11:0f:52:d6:3d:ee:5f:69:bd:82:04:a5:f1:
b1:49:41:9c:15:da:eb:7a:ab:4f:9a:b6:cc:0d:4d:
ba:b9:70:d0:10:3d:a0:86:1a:7f:06:61:df:f3:95:
2d:0c:bb:ad:7f:c5:40:8a:5d:f9:49:45:34:17:61:
fb:11:33:1b:dd:dc:62:b0:cf:c6:04:77:e3:11:44:
15:96:b3:08:c9:77:38:0e:e9:22:27:06:28:30:a5:
65:38:b7:71:52:19:0d:fc:1c:e6:ed:1a:16:ca:b7:
19:01:f8:15:c9:c3:be:a3:f5:3a:ba:e5:19:5b:d7:
9d:94:90:d7:b9:5c:f1:be:22:6b:7b:84:23:13:c6:
34:e7:b1:02:00:18:e7:20:e5:ed:f0:44:21:8a:05:
38:d0:3d:73:11:52:3b:e4:75:37:5d:69:91:b1:68:
77:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:97:8D:85:0C:3F:59:48:BB:86:13:3B:8A:A7:3F:73:ED:FC:D7:9C
X509v3 Authority Key Identifier:
keyid:7B:1A:E2:7D:3C:F5:14:99:C5:05:6E:7D:A8:73:66:5E:4E:41:51:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exrifTz1FJnFBW59qHNmXk5BUXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4a:af:4a:21:c0:34:e7:e9:9c:16:fd:6a:ec:c6:70:d0:1d:67:
8b:ab:e8:97:77:c8:d3:6d:d1:52:7b:66:50:12:93:00:47:37:
c7:65:ca:93:3f:40:72:2e:78:fe:f2:9c:60:31:d8:97:60:bd:
69:0e:b5:b6:eb:2f:83:1e:50:07:62:39:74:83:cd:87:d5:9e:
2b:07:b9:2f:d7:a0:1d:2d:83:3f:cf:aa:ad:30:3f:74:66:e7:
3d:cc:b4:80:9f:fe:6f:5a:33:0e:c9:60:ac:11:22:05:ab:8e:
b0:64:0b:15:25:03:af:80:71:24:e9:38:28:10:c2:bc:07:c2:
1a:92:5f:61:f3:da:83:db:31:19:c2:0e:23:3c:50:9a:a4:e9:
e3:39:35:ae:cf:a0:54:47:d9:f2:b7:0f:72:30:16:bf:81:64:
0d:1f:69:6e:a8:f8:77:28:30:4b:99:07:19:8b:f0:34:fe:b0:
c7:d7:e0:97:3d:c4:e1:be:68:0a:97:da:9b:78:dd:cb:2b:85:
82:32:c6:75:8e:a9:18:79:d9:1a:ed:5a:44:de:eb:93:da:8a:
c0:94:0a:b4:ce:03:4f:93:a2:4e:18:b9:a7:07:ee:1e:07:ee:
eb:4a:a0:2a:eb:07:a7:5e:2e:8d:ae:84:73:51:4f:76:00:55:
5a:c3:a7:cc
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QUIxOTMxMTAvBgNVBAUTKDdCMUFFMjdEM0NGNTE0OTlDNTA1NkU3REE4NzM2NjVF
NEU0MTUxNzkwHhcNMjUwMzI5MDUyMDUxWhcNMjUwNDA1MDUyMDUxWjAYMRYwFAYD
VQQDEw02N2U3ODMzMy1mNmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuvzIyu1pRFBujg9Tgx3NYE3jQR45nXioV2TMi5l5vyGh8T9Hc7yY6RRvNLzA
wYPIX3zQd3TcY9TN33GoyJ4gXJxg591XQTsjrQa6aJpVGd1lwN2DY0G1ri5uKBEP
UtY97l9pvYIEpfGxSUGcFdrreqtPmrbMDU26uXDQED2ghhp/BmHf85UtDLutf8VA
il35SUU0F2H7ETMb3dxisM/GBHfjEUQVlrMIyXc4DukiJwYoMKVlOLdxUhkN/Bzm
7RoWyrcZAfgVycO+o/U6uuUZW9edlJDXuVzxviJre4QjE8Y057ECABjnIOXt8EQh
igU40D1zEVI75HU3XWmRsWh3JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqXjYUM
P1lIu4YTO4qnP3Pt/NecMB8GA1UdIwQYMBaAFHsa4n089RSZxQVufahzZl5OQVF5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjE5My85M0Q0RTQ5MEY2
MzExMUVFOUFDQkUyMjFDNEY5QUUwMi9leHJpZlR6MUZKbkZCVzU5cUhObVhrNUJV
WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2V4cmlmVHoxRkpuRkJXNTlxSE5tWGs1QlVYay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
QjE5My85M0Q0RTQ5MEY2MzExMUVFOUFDQkUyMjFDNEY5QUUwMi9leHJpZlR6MUZK
bkZCVzU5cUhObVhrNUJVWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBKr0ohwDTn6ZwW/WrsxnDQHWeLq+iXd8jTbdFSe2ZQEpMARzfHZcqT
P0ByLnj+8pxgMdiXYL1pDrW26y+DHlAHYjl0g82H1Z4rB7kv16AdLYM/z6qtMD90
Zuc9zLSAn/5vWjMOyWCsESIFq46wZAsVJQOvgHEk6TgoEMK8B8Iakl9h89qD2zEZ
wg4jPFCapOnjOTWuz6BUR9nytw9yMBa/gWQNH2luqPh3KDBLmQcZi/A0/rDH1+CX
PcThvmgKl9qbeN3LK4WCMsZ1jqkYedka7VpE3uuT2orAlAq0zgNPk6JOGLmnB+4e
B+7rSqAq6wenXi6NroRzUU92AFVaw6fM
-----END CERTIFICATE-----
Generated at Mon Apr 7 13:45:28 2025 by rpki-client