Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft
File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json)
Hash identifier: FDwUdfXtkeXt8IqTGoMviFJReZafgdXQDykmRhLCTUU=
Subject key identifier: 1C:F4:B9:22:BA:FA:C2:13:00:34:B3:15:7C:68:9F:58:C5:ED:3D:12
Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70
Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70
Certificate serial: D1
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft
Manifest number: CD
Signing time: Sat 29 Mar 2025 05:06:15 +0000
Manifest this update: Sat 29 Mar 2025 05:06:14 +0000
Manifest next update: Sat 05 Apr 2025 05:06:14 +0000
Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: A0hJF9yZQKDGOl685dkD++5N1UOPPRwBQ6sQyniNCGw=)
2: 675CAE1C097B11F089FAE77FC4F9AE02.roa (hash: kVfsFUwUwrb1+YlFZkxlvXafQa5nM+gSN0EAtRmVnos=)
3: C63D0814097B11F0B1329480C4F9AE02.roa (hash: VpvWI0nd92qtQK/BsL7Qtr/7IONXUo8ggsacYg9dezE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 209 (0xd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B758E
Validity
Not Before: Mar 29 05:06:14 2025 GMT
Not After : Apr 5 05:06:14 2025 GMT
Subject: CN=67e77fc6-b1eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:21:45:94:d8:26:92:c8:c6:87:f2:24:87:67:
9e:c2:2e:37:35:2f:ac:71:e1:25:ce:dc:d1:2e:5e:
22:14:79:9d:6d:63:9a:29:4f:7f:c4:56:1f:7f:34:
52:42:c5:3a:e6:44:38:1d:09:54:41:59:ee:a1:e8:
b2:19:36:99:c7:8c:40:76:aa:60:7f:b2:9a:eb:71:
dd:9f:ea:4e:14:ca:0f:79:d4:df:2d:55:39:7c:91:
cf:a9:30:1a:ce:17:ec:9a:85:65:d9:d5:48:5f:c0:
ca:6d:89:40:c3:96:60:e4:3e:ee:21:b9:23:1c:49:
60:82:24:da:ca:c0:21:fe:c0:53:01:56:48:38:21:
b8:40:6f:52:7f:4c:5d:84:3f:3d:41:c4:d6:b5:40:
fa:8e:e4:d6:e1:42:f8:12:bc:49:4c:62:43:2f:67:
2c:f5:c6:62:a6:ab:da:cd:5b:5d:55:14:ff:84:5e:
d7:bb:06:87:21:f6:1a:e6:87:ea:0d:85:e2:42:00:
75:1d:91:f0:58:8a:c1:17:49:e9:e1:9b:db:e5:e4:
72:e3:15:c4:56:8d:bf:1f:44:e9:50:22:49:ef:3e:
0e:a1:a2:55:22:ec:88:ae:8c:3b:74:e0:27:07:b8:
2f:fb:3f:ea:49:19:68:fa:f8:17:f5:b9:b1:8e:01:
7c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F4:B9:22:BA:FA:C2:13:00:34:B3:15:7C:68:9F:58:C5:ED:3D:12
X509v3 Authority Key Identifier:
keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3e:eb:e3:97:6f:12:d4:33:fd:c7:01:f8:22:17:87:c5:8a:cc:
3d:c6:77:91:61:b8:6a:2e:d3:0b:89:6f:70:a6:ce:e6:78:52:
a7:5f:34:eb:02:39:b2:83:6d:d3:67:67:3e:e8:f1:0b:6e:26:
5b:e0:52:6b:0f:56:f0:6c:5a:41:04:a8:ba:8f:f2:4b:38:b6:
e4:58:a6:17:48:5a:8a:0a:db:51:2f:09:37:f1:83:bd:2f:25:
03:02:9e:1f:93:bb:0b:e7:9b:42:e1:6d:d4:ef:60:e7:bd:0a:
0e:8d:22:a6:ed:bd:1b:13:4c:ca:ed:23:e6:b9:a3:3a:cf:35:
3d:aa:df:c6:41:87:1f:f1:db:b2:13:56:de:b2:75:46:9c:b5:
07:4f:0e:9b:6d:0c:5a:6f:eb:2f:88:5d:44:ea:11:91:cb:2d:
d3:1a:a3:a5:38:3a:45:98:1a:de:6f:a5:82:8c:d5:d9:68:1d:
04:93:1a:46:45:8f:9e:c1:1a:f8:1c:ca:58:8e:1f:dc:99:f4:
c0:5e:c3:84:63:78:b3:df:b5:85:4d:66:0f:c7:7e:bb:95:b5:
0f:e8:fe:3b:af:31:9f:56:10:12:84:58:1c:b5:2d:33:66:e4:
65:84:6a:22:39:92:4b:a9:bd:74:56:66:d6:9a:c9:a9:fe:61:
13:65:44:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:57:45 2025 by rpki-client