Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft
File: Zhxk4pO4f0c69h2J3kj8RThXAVc.mft (raw, json)
Hash identifier: 7GjrzfSt99GC2U5jh3N+alEDIFrFRfLv/FYTQkWLlmk=
Subject key identifier: BC:02:0D:E4:58:D4:82:00:C4:46:D3:B7:70:35:AA:D1:F7:2D:0A:40
Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57
Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157
Certificate serial: 022A
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft
Manifest number: 01EB
Signing time: Sat 29 Mar 2025 02:25:29 +0000
Manifest this update: Sat 29 Mar 2025 02:25:28 +0000
Manifest next update: Sat 05 Apr 2025 02:25:28 +0000
Files and hashes: 1: Zhxk4pO4f0c69h2J3kj8RThXAVc.crl (hash: 7NXgLMQBME4mCVXorMi7Vs/5rOh6kzVkTwM6yeepdJs=)
2: 2DDA16845B7C11EDAAFAB831C4F9AE02.roa (hash: 67MHt4RTKJrm3qXsA0/hGFn1yvR2ZQ0F5Rk0pb6AxKk=)
3: 2E926DC45B7C11EDAAFAB831C4F9AE02.roa (hash: jKagKxD8aAFkMnX/1aG2ovGNEd5TEHvNJf/ULN+ATp8=)
4: 77E7AC0E492611EDAF439D83C4F9AE02.roa (hash: TsGvB3XS2Vh4dLTmPMnLM5jlZpG6ZHWJ7EVrOVQXeXQ=)
5: 2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa (hash: UxiicU2h5dWPbxz1Hwaw/qiIwRb7ncMqe/y33XSpQlE=)
6: 2F4FE7325B7C11EDAAFAB831C4F9AE02.roa (hash: A8RpOPUOy6pVnGU/Rwb9NLhVEDOQ0f51qrEn5c8ANp4=)
7: 3066E80A5B7C11EDAAFAB831C4F9AE02.roa (hash: 1gCDrnXb9JQfVu9EzR/FcxVdUknOH65kMDmVwZ+IoNA=)
8: F84FF96A493911ED805EB686C4F9AE02.roa (hash: ijCXtRUsXwFEJof/VE44Th7KCx0oFtyuFBMw15cQyvw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 554 (0x22a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ADB98
Validity
Not Before: Mar 29 02:25:28 2025 GMT
Not After : Apr 5 02:25:28 2025 GMT
Subject: CN=67e75a19-52a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:26:51:fb:0e:4b:ac:3d:31:e2:1d:ca:7f:76:
0a:65:b0:80:12:1c:3a:4a:ae:42:db:65:5b:9e:0d:
a9:33:c4:b5:eb:3d:29:52:00:21:e6:27:21:f4:60:
ce:74:d7:a8:5f:2a:b3:a9:78:07:6f:c9:d8:2f:a5:
d6:08:ff:0d:f6:21:20:79:a1:88:02:31:4c:26:41:
17:18:51:a9:5a:36:94:26:6c:e7:2d:a1:b9:ed:32:
61:45:fe:58:ff:47:14:79:22:c9:b6:ae:b0:68:3b:
60:db:d4:93:4b:57:42:f0:4e:69:59:21:1d:de:89:
77:1a:7c:4d:69:95:cd:56:8e:5f:c3:5c:a9:14:73:
02:bc:4f:66:df:f6:a8:97:d8:69:ce:96:5d:b6:ec:
c2:5e:f4:04:98:53:f9:4e:92:da:5a:37:08:d4:8a:
37:0e:94:c8:63:be:aa:75:b6:e8:0e:ee:78:d2:b7:
b0:ab:b9:65:f4:ec:f7:9a:0d:8f:22:c4:42:46:f0:
34:73:fd:73:31:d2:09:7c:ae:3f:cd:a5:41:17:40:
2c:30:08:28:8c:5d:01:1a:7d:3c:70:0f:ee:b5:9d:
e1:d7:22:ac:7c:66:24:06:22:a9:4d:35:4f:39:ec:
1f:d9:46:c0:55:14:8e:0f:27:69:c7:61:2c:5c:98:
36:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:02:0D:E4:58:D4:82:00:C4:46:D3:B7:70:35:AA:D1:F7:2D:0A:40
X509v3 Authority Key Identifier:
keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
bb:cd:6b:7f:d1:7c:da:6a:96:1f:e3:5b:4a:1d:d6:33:2b:99:
d5:e8:b5:6f:f0:c6:56:d1:89:a7:49:53:e5:e3:20:00:04:56:
c4:53:51:33:c4:a1:95:3e:95:01:15:cd:f8:0f:9c:bd:b1:ab:
35:df:35:6f:98:7c:71:42:e2:02:1f:d2:09:6f:a0:15:9d:33:
ba:66:0f:b1:f6:33:9f:d5:e1:7f:cb:34:2d:85:c5:0b:a2:d4:
c1:3e:52:c5:d2:07:78:e8:dd:b3:40:cc:90:6b:20:2d:68:dd:
86:db:cd:91:79:c6:83:7f:fe:55:f2:41:87:f3:3c:0c:a8:82:
97:44:d8:95:20:36:f8:00:fb:fb:58:a1:3f:c1:3a:41:68:71:
62:8e:34:80:f4:f3:4b:0e:00:05:81:91:12:4b:d7:42:c4:42:
1d:1c:a7:2c:1a:5e:31:11:bd:c2:ab:75:47:e8:16:27:08:85:
0f:bb:9b:ec:92:01:49:7f:47:d5:75:bd:3d:f6:94:36:98:3b:
3a:1f:be:1e:ef:97:f2:70:38:1b:12:07:fc:93:c6:15:db:b2:
8a:d6:0d:b0:42:6a:41:3a:b7:e4:cf:83:57:cc:b0:3e:c1:e4:
8a:37:6b:56:7f:f7:5b:fe:02:a2:53:d5:a3:a3:c6:85:53:83:
4c:53:55:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 05:39:04 2025 by rpki-client