Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft
File: 1RZ7lweHQQlX4l2fh1CFYPAFd24.mft (raw, json)
Hash identifier: KFO1mIIBf4U8jYZAFJ6f5beNQ0iDMXkW7Xc1AKgW1p8=
Subject key identifier: EC:DE:8D:3D:95:9F:7B:9B:89:18:C5:78:3B:49:C0:10:14:EF:B9:9D
Authority key identifier: D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E
Certificate issuer: /CN=A91B9011/serialNumber=D5167B970787410957E25D9F87508560F005776E
Certificate serial: 0598
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft
Manifest number: 0594
Signing time: Fri 28 Mar 2025 23:29:20 +0000
Manifest this update: Fri 28 Mar 2025 23:29:19 +0000
Manifest next update: Fri 04 Apr 2025 23:29:19 +0000
Files and hashes: 1: 1RZ7lweHQQlX4l2fh1CFYPAFd24.crl (hash: 3jYH6Qtx7w714YwYrj9gw4fURx7Hd+Kd7wKkdq6RPNc=)
2: 438893AC55BE11EDBDE51983C4F9AE02.roa (hash: BLZihm/TeabqF4tkohMfsqoOF09WEG/Ggs7uUhIWlKs=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1432 (0x598)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B9011
Validity
Not Before: Mar 28 23:29:19 2025 GMT
Not After : Apr 4 23:29:19 2025 GMT
Subject: CN=67e730d0-e485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e4:5c:36:3f:ba:a6:68:77:86:90:34:30:0e:
74:3f:9e:59:04:3e:85:d6:4d:84:6e:e1:61:09:cf:
5e:00:81:04:85:a7:ca:8c:d7:09:ec:c9:88:e3:c5:
4d:ac:7b:59:17:4e:f7:f7:62:cf:eb:9d:04:e7:f8:
4b:3f:f7:68:40:91:c2:31:54:b1:13:15:96:64:55:
bd:58:45:4b:29:01:dc:9b:dc:9d:38:b3:1f:27:4b:
72:df:1e:35:05:69:a6:04:d3:5d:cf:c5:48:9a:fd:
b2:db:1a:da:0b:33:35:73:29:66:e2:d5:4c:28:6e:
e7:0e:8a:7a:12:6f:ac:30:3f:2e:c8:36:a0:c3:5e:
85:aa:f7:b5:01:59:e5:f5:9c:13:0b:f9:2c:09:4a:
7f:ca:3c:4f:7e:5a:08:bd:57:f6:79:e0:d0:2f:a8:
1f:ad:d8:9d:03:9f:2b:21:1b:9c:62:2f:28:d4:7d:
39:ae:25:42:bc:90:57:5f:66:d5:22:a6:f0:eb:df:
cd:0d:6b:bd:31:08:48:af:2f:a8:78:cc:b9:1f:eb:
8f:4b:c1:c5:ce:c4:71:c3:8a:5c:df:db:2d:99:60:
a3:ca:77:18:ec:d1:56:26:88:53:35:db:ba:7d:3e:
7b:06:ea:74:19:29:44:98:4e:23:91:e9:77:32:37:
d1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DE:8D:3D:95:9F:7B:9B:89:18:C5:78:3B:49:C0:10:14:EF:B9:9D
X509v3 Authority Key Identifier:
keyid:D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
d1:b0:48:3b:ad:7f:b2:a8:4e:ae:99:8b:c7:b6:f3:5c:1b:c0:
78:62:16:b0:8f:8a:a6:5a:06:14:2d:38:1d:3c:1f:03:dc:a5:
45:71:f4:e2:b3:33:af:ea:65:ee:e2:a6:fa:0c:b3:d6:51:3f:
6f:f5:70:61:d9:26:ef:8d:fe:11:5a:6b:67:a0:75:80:43:52:
56:25:87:86:33:c6:df:e6:23:bc:ba:ff:4c:39:54:92:c0:93:
a5:41:3f:96:93:76:6b:e6:12:39:6b:26:4b:11:9b:9c:6a:ca:
8b:bb:16:9d:bc:fa:18:bf:68:21:b5:65:50:61:d0:c9:5f:78:
81:48:65:fa:6e:58:1b:4b:3b:3c:87:ee:ec:0f:c3:b6:91:ab:
27:d2:c8:36:f9:22:22:d5:98:a6:15:01:13:8e:10:35:01:fa:
a1:c1:bf:48:9b:f3:05:28:ff:ce:3a:a1:be:b9:d7:c9:9e:69:
a6:1f:61:df:b6:f5:02:de:1d:89:c9:ce:8d:99:2e:47:a6:7e:
13:91:76:20:4b:51:f7:ba:c4:0a:9e:65:bc:57:8a:23:37:81:
9d:e1:00:e6:75:3b:f6:86:08:1c:bd:0e:02:04:54:f4:9d:31:
5a:64:82:8f:8b:ba:bf:6a:af:00:c9:a7:e7:d5:34:db:e9:73:
fc:6a:ea:77
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjkwMTExMTAvBgNVBAUTKEQ1MTY3Qjk3MDc4NzQxMDk1N0UyNUQ5Rjg3NTA4NTYw
RjAwNTc3NkUwHhcNMjUwMzI4MjMyOTE5WhcNMjUwNDA0MjMyOTE5WjAYMRYwFAYD
VQQDEw02N2U3MzBkMC1lNDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsORcNj+6pmh3hpA0MA50P55ZBD6F1k2EbuFhCc9eAIEEhafKjNcJ7MmI48VN
rHtZF07392LP650E5/hLP/doQJHCMVSxExWWZFW9WEVLKQHcm9ydOLMfJ0ty3x41
BWmmBNNdz8VImv2y2xraCzM1cylm4tVMKG7nDop6Em+sMD8uyDagw16Fqve1AVnl
9ZwTC/ksCUp/yjxPfloIvVf2eeDQL6gfrdidA58rIRucYi8o1H05riVCvJBXX2bV
Iqbw69/NDWu9MQhIry+oeMy5H+uPS8HFzsRxw4pc39stmWCjyncY7NFWJohTNdu6
fT57Bup0GSlEmE4jkel3MjfRFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzejT2V
n3ubiRjFeDtJwBAU77mdMB8GA1UdIwQYMBaAFNUWe5cHh0EJV+Jdn4dQhWDwBXdu
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTAxMS8zODg4RTBDNEM3
M0ExMUVCOTAwNzU1MTBDNEY5QUUwMi8xUlo3bHdlSFFRbFg0bDJmaDFDRllQQUZk
MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzFSWjdsd2VIUVFsWDRsMmZoMUNGWVBBRmQyNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
OTAxMS8zODg4RTBDNEM3M0ExMUVCOTAwNzU1MTBDNEY5QUUwMi8xUlo3bHdlSFFR
bFg0bDJmaDFDRllQQUZkMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQDRsEg7rX+yqE6umYvHtvNcG8B4Yhawj4qmWgYULTgdPB8D3KVFcfTi
szOv6mXu4qb6DLPWUT9v9XBh2Sbvjf4RWmtnoHWAQ1JWJYeGM8bf5iO8uv9MOVSS
wJOlQT+Wk3Zr5hI5ayZLEZucasqLuxadvPoYv2ghtWVQYdDJX3iBSGX6blgbSzs8
h+7sD8O2kasn0sg2+SIi1ZimFQETjhA1Afqhwb9Im/MFKP/OOqG+udfJnmmmH2Hf
tvUC3h2Jyc6NmS5Hpn4TkXYgS1H3usQKnmW8V4ojN4Gd4QDmdTv2hggcvQ4CBFT0
nTFaZIKPi7q/aq8Ayafn1TTb6XP8aup3
-----END CERTIFICATE-----
Generated at Tue Apr 8 21:49:47 2025 by rpki-client