Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft
File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json)
Hash identifier: E4yT/rrE+kGSSEcGkel8S0kiKujukYgA/YNXnBpb1VI=
Subject key identifier: FC:7E:F4:9A:58:26:B4:7E:53:72:9C:39:C8:59:B2:0C:B7:BD:61:A0
Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD
Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD
Certificate serial: 0FE5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft
Manifest number: 0FD4
Signing time: Fri 28 Mar 2025 17:35:38 +0000
Manifest this update: Fri 28 Mar 2025 17:35:37 +0000
Manifest next update: Fri 04 Apr 2025 17:35:37 +0000
Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: ImLXZk68QsWhlHMNMtyOfpCfw3NyP01xi6Ir0kIHthw=)
2: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: fPoBgkYnMh4IMhrB/TA39+M1O1OAHZFrtUEJDkMooUg=)
3: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: ucL3j8TnFmy+7V5qbIqZDaLy79WcFoXLeH1a5In6i8E=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4069 (0xfe5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ACC22
Validity
Not Before: Mar 28 17:35:37 2025 GMT
Not After : Apr 4 17:35:37 2025 GMT
Subject: CN=67e6ddea-d8ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4a:30:60:f7:e8:47:76:ae:92:e1:a0:3f:07:
ee:60:16:59:df:24:82:5e:ee:bf:ba:7b:12:49:82:
26:e5:8b:bc:18:6a:06:e4:47:57:eb:ed:47:a3:76:
2a:d3:60:86:8f:78:3c:c2:39:46:8b:9e:00:ce:7d:
ae:e2:3f:0d:9c:76:a8:4b:74:f8:fc:f1:95:f8:71:
ca:8b:6b:29:15:88:2e:dc:8f:ab:51:c4:7b:6e:0d:
c1:56:bc:4e:ec:69:ee:d6:e3:8c:ba:3e:67:7a:2d:
2d:90:86:39:6a:b1:9f:98:a8:db:77:c8:df:0d:c4:
87:99:98:bd:e0:e4:06:f9:6a:49:f1:9a:d1:48:e9:
a4:ec:37:84:5d:b8:34:0c:c1:a2:6b:28:dd:64:89:
46:7b:f8:2c:67:97:5e:cb:c7:2f:95:9b:af:03:f4:
e3:a0:e3:ef:3e:8d:9d:6b:4a:02:2e:ed:3c:79:86:
85:d2:70:6b:d6:82:12:bd:ad:de:37:ba:5f:0a:a2:
6f:92:34:d0:cd:9b:4b:5e:26:b6:1b:80:13:c9:d4:
4f:75:29:12:99:b3:f0:bb:bb:fa:e5:df:d7:be:86:
59:70:89:67:44:6e:d0:d2:0c:7b:f7:b5:11:41:1d:
a1:db:c7:30:13:75:92:f3:b2:e1:e3:26:e0:1c:ce:
a8:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:7E:F4:9A:58:26:B4:7E:53:72:9C:39:C8:59:B2:0C:B7:BD:61:A0
X509v3 Authority Key Identifier:
keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
48:17:d5:1f:ae:21:8b:22:97:f4:4a:24:4a:87:36:d5:73:3f:
8b:0a:b5:5e:05:9d:af:b3:e7:1f:0c:9e:97:b8:ec:19:34:b4:
7e:27:e5:d8:69:3f:5b:82:11:01:7e:da:da:ae:f9:0d:c3:ed:
b4:5e:da:a3:1e:b1:15:b9:ab:b4:42:e6:87:43:54:c3:38:41:
28:8e:be:c5:7b:b9:85:5d:99:94:4a:1b:7c:1c:3c:33:c3:15:
f6:8a:77:c1:a8:cd:21:a5:ed:41:7c:d7:0f:a5:49:34:dc:94:
90:8f:73:ec:7b:a9:16:eb:52:b7:c8:2d:a4:b7:a0:50:25:06:
db:75:f3:ff:7c:08:42:36:06:05:a6:21:3c:d9:4d:94:54:c7:
fd:c7:52:7f:73:35:28:11:60:46:e8:e9:60:11:56:9e:45:f8:
f5:1d:6f:7d:7d:ef:ba:7c:f8:0d:bd:42:ea:76:f5:99:a5:f0:
68:72:62:61:39:0b:29:6d:0a:a0:52:33:f0:fc:38:88:63:72:
12:ab:30:be:14:99:6c:85:32:78:4a:0c:00:03:70:37:8e:60:
96:ab:b9:76:ca:8d:7d:8c:58:2a:c2:f2:ed:2c:9c:c2:89:6d:
ed:c5:60:a0:dd:30:f2:84:81:80:89:51:0e:d1:c4:e4:bf:59:
fe:a2:df:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:18:09 2025 by rpki-client