Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.mft
File: ntLhokBcme5158OQPfckDKqr-yU.mft (raw, json)
Hash identifier: 6rj6hNTTsXGlb5mkB4rPM4jacKin2pHbJJvN7aYhf1o=
Subject key identifier: 6D:48:D2:98:B1:F8:09:D9:14:71:BC:2E:BA:D9:C0:7B:FD:20:D5:C3
Authority key identifier: 9E:D2:E1:A2:40:5C:99:EE:75:E7:C3:90:3D:F7:24:0C:AA:AB:FB:25
Certificate issuer: /CN=A91B98F0/serialNumber=9ED2E1A2405C99EE75E7C3903DF7240CAAABFB25
Certificate serial: 0A54
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntLhokBcme5158OQPfckDKqr-yU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.mft
Manifest number: 0A3B
Signing time: Fri 28 Mar 2025 19:59:27 +0000
Manifest this update: Fri 28 Mar 2025 19:59:27 +0000
Manifest next update: Fri 04 Apr 2025 19:59:27 +0000
Files and hashes: 1: ntLhokBcme5158OQPfckDKqr-yU.crl (hash: W6ipCaFHkPTe4CdChTGWFTIqBo5ZsvOpQtYB5bhdPiw=)
2: A7C5E9A008C711F0A36DEF53C4F9AE02.roa (hash: 5bw02QPZALBVcPXao2om/7h5TeG43Lt0My2JIbwOjOs=)
3: A5980E1A08C711F0A36DEF53C4F9AE02.roa (hash: LEXFRzUj++AYS1bZVpScJtjHFnh8GD6doBgoF1ckC8A=)
4: A699CC5408C711F0A36DEF53C4F9AE02.roa (hash: 4Gb0oGZj79v5ouAdIBzDqoRNpL7kau5pEssgVRcrgRI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2644 (0xa54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B98F0
Validity
Not Before: Mar 28 19:59:27 2025 GMT
Not After : Apr 4 19:59:27 2025 GMT
Subject: CN=67e6ff9f-718b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5d:dd:41:15:08:19:38:54:cf:00:20:7d:bd:
24:4a:d1:a3:d0:b2:48:48:ea:9d:dc:51:a5:db:52:
f4:3f:03:66:0b:bc:d9:58:54:d5:1f:0c:de:c2:9b:
e5:6f:3a:01:2c:f4:f3:6b:9b:f1:f0:bf:c1:84:3f:
c3:1d:c3:4e:36:03:dc:eb:eb:03:8e:00:0c:f2:0c:
29:e2:c8:8f:8e:7a:ca:e0:24:2b:4d:04:10:a6:48:
08:11:8b:01:5f:e8:b9:7d:9d:3d:6d:8e:3c:c4:08:
08:1c:58:62:78:78:cf:45:a8:1d:33:90:a0:53:14:
99:90:ed:ef:70:f3:2b:82:c4:28:00:2b:b0:ff:4e:
75:aa:de:68:eb:b1:fb:cf:0a:8d:75:f7:34:84:1f:
6a:17:3b:a5:7b:3a:84:9c:e1:c0:25:fc:01:88:58:
8f:41:cd:fb:76:12:14:78:d9:2b:66:f8:b4:26:5b:
7d:57:48:5e:27:76:7a:3e:7b:7e:ec:97:db:60:69:
59:51:39:57:c8:e0:bd:d4:ed:de:f5:1f:12:ec:61:
43:20:74:10:1d:55:7d:1d:8b:ed:16:9d:2e:e5:e6:
9d:87:2d:3b:f5:9d:d5:5c:03:de:7c:c7:f8:7a:b3:
03:86:ed:5e:c2:ae:18:20:98:52:6d:bf:cc:36:17:
19:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:48:D2:98:B1:F8:09:D9:14:71:BC:2E:BA:D9:C0:7B:FD:20:D5:C3
X509v3 Authority Key Identifier:
keyid:9E:D2:E1:A2:40:5C:99:EE:75:E7:C3:90:3D:F7:24:0C:AA:AB:FB:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntLhokBcme5158OQPfckDKqr-yU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4f:0b:14:59:ee:00:f9:2c:f6:80:b3:f9:35:f0:64:1e:39:6a:
45:f9:c4:bb:07:ff:e0:85:9c:ca:ef:df:ae:04:b7:ec:ed:f4:
67:49:ba:fa:34:99:e5:62:71:8d:ed:4e:c9:9d:0e:79:ee:b0:
fc:ad:de:6a:dd:cd:f5:a2:95:5c:50:73:ba:77:74:48:98:6c:
01:2d:d9:d9:5c:04:a3:79:0e:ee:dc:7f:29:b9:9e:3d:7a:e3:
09:59:af:33:31:fe:09:d6:ed:79:b4:16:95:95:68:0c:fe:82:
cb:30:61:d8:c5:70:03:3d:18:eb:b1:b7:f2:22:3d:6e:03:cb:
50:c5:30:aa:bb:44:07:93:8a:4d:a9:1a:f0:1f:c3:b7:d5:b3:
22:6a:77:68:b1:df:8a:18:00:69:99:57:84:0d:b2:a5:3d:c0:
6a:ed:93:be:c8:47:d0:58:c5:56:8b:b2:48:32:7f:74:cb:e0:
c7:5e:c9:73:5c:bf:34:fb:dc:4d:fc:17:00:aa:2a:2e:d1:0f:
a3:9e:9c:6e:66:13:bc:cf:20:ee:a0:bf:81:2f:b2:c2:b9:45:
83:9d:5a:14:62:ec:96:bf:c5:90:1e:07:21:b1:33:c7:86:f8:
45:42:c4:d3:90:3c:43:bd:47:e0:2a:20:ff:f7:a7:13:7f:72:
56:64:ae:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 14:13:17 2025 by rpki-client