Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft
File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json)
Hash identifier: n7HdW2tzpw9LzjsC1sXvo/n5xKAqjG3n+FsllRexlys=
Subject key identifier: 7B:34:C7:F2:E3:B5:D5:83:B9:CA:E1:F6:BA:27:7D:71:54:BB:9B:46
Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06
Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206
Certificate serial: 3466
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft
Manifest number: 5221
Signing time: Fri 28 Mar 2025 15:09:59 +0000
Manifest this update: Fri 28 Mar 2025 15:09:59 +0000
Manifest next update: Fri 04 Apr 2025 15:09:59 +0000
Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: NI0+HRkYwpcVShJo++V8LhY5I3jlKw5alMwwXSY95FA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13414 (0x3466)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B42CA
Validity
Not Before: Mar 28 15:09:59 2025 GMT
Not After : Apr 4 15:09:59 2025 GMT
Subject: CN=67e6bbc7-37c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2c:69:e3:a5:c8:b9:ed:bb:d1:9d:19:5e:3b:
b7:5d:54:ef:23:9d:34:e1:2f:71:7b:33:52:06:07:
4f:86:ec:78:e7:34:94:69:d0:63:fc:f2:15:8f:66:
5f:94:47:e9:7a:b0:b0:54:2e:7a:3b:6b:b5:50:37:
25:2a:dd:84:53:53:7a:2c:2d:52:ab:37:19:4a:5d:
02:56:62:7a:89:38:a7:53:d0:61:68:5e:82:7a:e3:
8b:fa:77:de:7e:a1:e4:5f:b2:4f:c2:6d:da:e3:a0:
35:93:e6:30:df:e2:ff:a1:11:3d:cb:3a:47:eb:c2:
69:58:84:98:3b:d4:90:05:e7:56:80:32:eb:b5:a7:
1b:8d:96:a9:d1:9c:ff:08:66:ad:46:8e:f3:dc:6e:
42:d2:48:7f:c8:37:11:cc:d4:18:7c:b6:05:90:fa:
79:54:fa:25:67:ce:da:41:2b:fd:5f:df:dc:65:36:
38:2c:9a:02:f7:7e:10:54:f1:8a:1a:f1:0f:93:5d:
fe:30:46:0e:f5:2d:1c:b0:c6:13:3a:8c:83:e1:e2:
ec:01:69:42:17:6b:49:6b:4a:35:c4:91:c3:a4:e8:
07:c9:55:77:d0:eb:82:a0:66:a4:07:bf:82:b6:05:
f1:25:0b:46:f6:be:a5:35:5b:6d:86:f5:ec:5d:ff:
cf:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:34:C7:F2:E3:B5:D5:83:B9:CA:E1:F6:BA:27:7D:71:54:BB:9B:46
X509v3 Authority Key Identifier:
keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
64:bb:3f:ff:ff:29:06:15:93:1c:9b:79:25:41:cb:64:0b:b0:
c5:2c:5a:91:ec:04:8b:6a:10:8b:c2:13:b8:ef:2b:03:c7:aa:
35:1e:d4:fa:13:9b:d4:dc:68:5c:e0:68:16:b9:1e:6b:d3:42:
67:af:1f:76:e5:8d:fb:d5:4c:59:d2:af:9e:ee:07:97:1c:29:
f6:65:c8:07:b7:88:1c:93:b3:5c:d1:ec:ed:0a:53:3a:f3:fd:
b8:32:ea:b5:04:bb:60:d8:e0:63:29:f5:b3:38:c9:8e:1b:84:
ea:eb:6d:51:fa:d8:7d:76:04:f6:d0:2b:ea:df:b4:53:82:99:
8e:78:e8:5e:96:de:1d:db:d2:69:a9:ea:2b:d4:79:60:5e:49:
98:c6:e7:33:f6:94:79:5b:e8:91:49:e8:79:85:71:8c:e0:51:
12:45:70:b4:39:ad:82:91:77:79:c7:f4:e2:d9:eb:e9:0d:dd:
38:a9:8a:67:88:4e:98:11:9a:11:58:ae:4c:15:1b:71:32:a0:
22:b2:13:d1:18:98:2c:c3:95:07:16:e4:d7:1b:b9:b6:f0:28:
41:20:4e:78:d8:7b:ff:69:0f:71:b8:4e:5b:04:05:2e:00:9f:
63:e4:e0:d4:1e:b0:fe:ad:af:d5:7b:69:80:89:33:b2:0d:ac:
dd:60:47:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:50:56 2025 by rpki-client