Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft
File: QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft (raw, json)
Hash identifier: v86G3UpPRMiTYwafxGPSVkeipiSVza3G06yNxRery38=
Subject key identifier: 45:6B:2B:76:55:EB:FE:2C:5C:1D:A3:DA:FD:43:1F:91:69:0B:E4:59
Authority key identifier: 40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE
Certificate issuer: /CN=A91ADD64/serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE
Certificate serial: A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft
Manifest number: A4
Signing time: Sat 29 Mar 2025 05:32:20 +0000
Manifest this update: Sat 29 Mar 2025 05:32:20 +0000
Manifest next update: Sat 05 Apr 2025 05:32:20 +0000
Files and hashes: 1: QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl (hash: KpyuRKuEHAZfq4Jz3hC6Aw1XILJuurhZfXbfBm2TTJo=)
2: 691C2F48169211EFBBB5BD6CC4F9AE02.roa (hash: JFnoGlMQvx0rfghWguqYEQOafVm5KcUTywblwtb1T0Y=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165 (0xa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ADD64
Validity
Not Before: Mar 29 05:32:20 2025 GMT
Not After : Apr 5 05:32:20 2025 GMT
Subject: CN=67e785e4-05d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b1:bc:26:d0:39:20:91:68:53:6e:9d:60:0d:
d0:8e:f5:f0:43:34:ef:71:fc:d3:71:44:96:fa:17:
b0:ce:ed:bd:63:69:10:be:05:3a:49:7a:fa:40:57:
97:30:99:57:71:e3:76:f6:a5:03:f4:c5:75:1b:8d:
44:86:06:5e:79:ec:4a:fb:fc:7a:39:0a:c5:df:3a:
8c:19:5e:50:73:62:a1:32:e6:68:b5:a9:2b:93:ab:
8f:02:eb:94:08:71:d1:ae:6b:df:e3:45:11:61:c4:
88:5d:be:2e:96:a5:c2:94:35:03:19:79:37:0f:4d:
a4:51:39:f1:ee:1d:a8:52:c2:cc:1c:91:26:c9:73:
29:ed:d6:e2:5a:27:d9:c8:59:a5:69:ff:09:b0:9d:
99:06:73:48:c7:4b:da:25:88:0f:75:27:32:68:8d:
57:86:b1:ed:69:d2:da:4c:39:93:90:00:7e:dc:bc:
d7:95:fb:bc:67:72:9a:0c:34:91:e8:52:4c:21:95:
68:f2:b0:32:94:e3:43:69:5c:03:b6:fe:88:4d:41:
0a:58:12:50:de:48:03:3a:4f:8f:7f:33:79:39:8c:
80:21:a1:a4:d7:e2:56:5b:ef:ca:d6:fd:25:d2:da:
cb:c3:ef:69:59:f0:cd:e3:ea:97:17:8a:8d:c0:52:
34:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:6B:2B:76:55:EB:FE:2C:5C:1D:A3:DA:FD:43:1F:91:69:0B:E4:59
X509v3 Authority Key Identifier:
keyid:40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
10:71:ec:2c:ca:74:93:a4:bf:fc:a9:30:ef:db:44:7e:e3:4c:
8d:b8:98:92:a7:a7:25:b7:48:e9:1d:ca:8f:d9:31:55:e8:84:
cc:d8:fa:87:27:e9:97:78:f0:d8:0d:01:38:1a:b3:c1:ad:c6:
f9:a5:c0:7d:2d:2d:36:22:22:6c:1e:7b:50:cb:05:98:6a:46:
75:fa:e1:f5:d4:76:c2:7a:c9:f8:d0:62:5f:6c:25:c9:af:11:
4d:72:13:eb:30:2e:b9:2d:bf:10:7c:64:8e:aa:56:08:d6:1f:
b2:60:fa:4f:b9:15:29:94:b4:fd:52:d0:a2:e6:fe:e0:cc:47:
eb:45:27:97:36:f2:00:7d:af:73:18:3d:65:57:1c:7b:6f:30:
df:42:29:13:cf:94:8e:3e:a4:42:bf:4d:86:d1:d6:20:f9:eb:
f4:f6:c9:13:01:1e:4a:0f:3b:16:d6:63:c9:25:1a:0c:37:2b:
7e:1e:92:9a:2e:1b:99:cb:1d:9c:d7:3c:f1:13:74:9d:31:40:
1d:8c:ba:d2:e1:5f:4c:dd:ab:b6:0d:51:a2:a1:0f:0b:3e:ee:
0e:81:c9:7f:81:72:e3:92:bd:f0:66:11:30:37:8a:55:5d:33:
ab:dd:69:36:74:e2:6e:db:19:04:2e:1e:13:9d:db:df:9f:d0:
ca:86:f3:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:33:30 2025 by rpki-client