Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft
File: XRhbcS2TBWvydLi3qJjGklTruYM.mft (raw, json)
Hash identifier: oQeITRJovqfmmhwlTj6ZJD2eeIkpQKnlcz4+J93xpXA=
Subject key identifier: 40:32:D8:8B:0B:21:8F:E1:E5:45:2E:1A:BA:4D:21:FB:2F:34:DF:47
Authority key identifier: 5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83
Certificate issuer: /CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983
Certificate serial: FF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft
Manifest number: F7
Signing time: Sat 29 Mar 2025 04:43:49 +0000
Manifest this update: Sat 29 Mar 2025 04:43:49 +0000
Manifest next update: Sat 05 Apr 2025 04:43:49 +0000
Files and hashes: 1: XRhbcS2TBWvydLi3qJjGklTruYM.crl (hash: lyagRPY8lxf/CeU9SjGe7gILFaK7V/iL9U35tcEG2dk=)
2: 79124A64AD5F11EE8824985BC4F9AE02.roa (hash: wMz4YHecnoUe6lNOvLCIKTrJsjYktuBbQQe4ax28M00=)
3: DCCEA912A3EB11EE8049E335C4F9AE02.roa (hash: FIv9Q2CGo09cXVQt1+GL/sX7lFUzEShgd+XdbWhi1sg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 255 (0xff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AE972
Validity
Not Before: Mar 29 04:43:49 2025 GMT
Not After : Apr 5 04:43:49 2025 GMT
Subject: CN=67e77a85-ce9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:52:0d:19:c3:33:4d:e2:70:5f:e7:ed:df:7d:
9a:70:89:5b:ad:b3:36:ca:d1:3c:53:e6:3e:cb:72:
3c:de:fb:f3:b6:30:9f:e9:6e:fb:ed:c0:4f:40:94:
7a:98:b0:b1:ee:cf:f1:38:f4:59:a6:ab:fd:96:c7:
50:e0:1e:a4:4e:6a:e6:61:4f:a8:04:19:a4:cf:e6:
af:54:27:51:db:36:f2:2d:13:85:23:08:9d:3b:b8:
8b:f3:48:e1:1e:82:f8:0b:35:b2:9a:7e:2d:22:ca:
a3:7b:a1:68:04:89:e2:95:d3:8d:d9:70:89:f1:17:
a3:31:da:88:90:0b:93:36:9c:8b:18:78:0d:29:98:
35:a1:66:9e:29:36:9c:dd:e0:c2:78:7c:a4:85:99:
88:11:ff:b1:d1:c4:31:8a:09:d9:45:b9:16:c4:ce:
31:bc:7b:f8:f9:48:fa:53:47:ca:1d:b9:2e:4e:39:
ae:6c:b4:30:ce:ff:3e:b1:c0:37:32:5f:07:0e:1b:
17:5b:0f:f3:60:10:13:6c:9d:c9:97:16:a3:69:34:
4b:bb:f9:90:a7:0a:b6:6b:86:7d:06:06:5a:ec:16:
54:1c:34:90:95:ab:25:36:e0:19:09:08:b3:88:cb:
2a:c2:b1:be:fc:3a:cf:ba:8a:42:f2:68:79:34:01:
a2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:32:D8:8B:0B:21:8F:E1:E5:45:2E:1A:BA:4D:21:FB:2F:34:DF:47
X509v3 Authority Key Identifier:
keyid:5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
27:f1:3d:31:2a:f0:b2:39:0e:64:8a:28:c7:19:07:e9:a3:e9:
4e:28:a6:56:68:5e:b1:f2:15:77:b9:31:c1:0c:70:ed:5a:e1:
a4:6c:af:57:9c:1e:da:dd:ed:8c:fc:d2:d0:d5:7a:88:d8:fd:
2b:e9:7d:3c:c1:3d:46:cc:1c:68:1b:b5:7d:3e:44:cb:00:45:
8d:0d:66:37:34:de:a9:43:c2:13:c5:aa:a9:6a:9d:0d:2f:7c:
8a:ee:ef:6d:4f:44:96:a1:16:2b:02:9c:a1:c6:d2:85:51:20:
5f:d3:15:66:02:40:52:b6:cf:63:f7:5b:f0:66:cd:34:0d:3e:
56:b5:80:99:90:18:90:ff:3c:0f:96:f5:3e:3e:df:08:bd:1a:
59:97:df:1c:56:05:f1:1a:d6:00:11:47:1c:65:08:05:53:a5:
f0:8e:96:fb:d6:e2:fe:29:40:37:38:21:dc:fd:eb:3d:2f:af:
27:1d:c5:e2:35:e0:4e:22:0b:46:8c:c9:ba:71:86:d5:35:74:
1f:b6:59:e9:81:ec:f4:44:4b:99:35:59:d1:de:bf:5a:0f:55:
c7:8f:18:43:b0:5b:d8:e9:a5:25:35:57:15:c1:8f:4f:f9:39:
ff:46:3d:79:03:fc:e1:0c:b5:a8:33:b5:64:2f:91:8f:93:e8:
d7:40:44:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:28:52 2025 by rpki-client