Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft
File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json)
Hash identifier: 3dcMU9r9PaSXDqHNulm5GKaJ1zTldsSwDU+XdPMgK/Y=
Subject key identifier: 84:C7:8D:BC:D1:CB:C6:3F:89:96:95:C0:D3:6E:63:43:3C:03:E9:57
Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F
Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F
Certificate serial: 040F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft
Manifest number: 040B
Signing time: Sat 29 Mar 2025 00:43:10 +0000
Manifest this update: Sat 29 Mar 2025 00:43:10 +0000
Manifest next update: Sat 05 Apr 2025 00:43:10 +0000
Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: mUw/4fbkFaRL9H08Se4Z0vVrSY/bQiZrI7Ognti4VBc=)
2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: RCWPaj7t0e1p3rp6/K3vTM6gR0rDSmQTnwQnVmwe2ms=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1039 (0x40f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BB100
Validity
Not Before: Mar 29 00:43:10 2025 GMT
Not After : Apr 5 00:43:10 2025 GMT
Subject: CN=67e7421e-5a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d9:5d:de:00:45:c7:4b:92:f0:84:e6:19:af:
45:6b:c8:25:4d:40:a3:30:ce:d7:11:97:c9:42:3f:
44:a5:d9:08:32:60:91:74:93:56:c9:72:b4:b4:92:
bf:4c:e0:00:f2:fe:45:cc:96:37:ba:cb:8c:4f:c3:
78:b4:86:0a:31:72:1f:40:9c:f8:b4:0d:d9:b5:3f:
fc:af:ee:ce:ec:0f:07:13:29:47:9d:7b:21:4f:a9:
38:59:f7:98:e0:f0:64:a8:92:02:97:47:b4:0e:2b:
d5:1f:93:be:da:dd:88:8e:84:9f:14:d4:23:8e:65:
7f:90:dd:7a:e1:4e:00:06:4c:79:45:6e:44:51:38:
89:d0:44:bf:18:32:c8:c5:c5:3d:45:35:c7:6d:1f:
9a:ff:2b:58:5a:2e:a5:2d:df:6a:26:16:43:cd:85:
c3:fa:a6:48:38:4e:9f:ac:d6:d7:da:d9:35:e5:e6:
5d:35:1e:3f:92:f4:e0:6e:4d:25:79:0c:8e:b7:29:
f7:05:5a:f1:cc:23:5d:38:c6:b1:55:3e:81:2d:0a:
93:57:8f:df:2e:ec:cc:56:14:a9:6f:b2:a4:a9:08:
6e:c6:38:e2:0f:33:d4:b2:0d:95:e9:95:12:7c:50:
5d:c9:dc:87:8f:ae:f4:ac:75:0c:8d:07:47:b8:73:
f6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C7:8D:BC:D1:CB:C6:3F:89:96:95:C0:D3:6E:63:43:3C:03:E9:57
X509v3 Authority Key Identifier:
keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
10:a7:0d:00:81:fa:25:31:4f:5a:b2:32:7e:e6:05:b4:34:56:
39:18:44:91:db:ca:fd:be:f7:27:ee:85:0e:44:07:c2:e7:7e:
26:9f:1c:62:1c:fe:ed:dc:fb:81:77:7f:7a:83:4e:39:2f:fa:
ac:e1:cf:ff:1d:0b:fa:50:6a:fc:e1:61:51:5c:f5:40:81:9f:
a8:9e:3f:72:8a:7c:08:06:16:a2:1f:73:c7:cf:58:19:d3:0d:
e3:e9:c7:54:09:0b:86:01:47:ea:e1:58:98:fc:77:f9:f2:36:
2b:f3:2b:bb:53:b2:01:64:24:2f:76:e8:08:1c:42:dc:08:5e:
65:54:83:64:d2:ab:1d:84:f3:cf:1a:b0:24:78:63:1e:36:de:
0b:d7:5b:6a:01:a9:27:6c:dc:48:db:0e:41:29:86:31:26:e8:
65:47:a1:51:b3:da:9e:29:c5:26:fd:5a:a2:e4:b3:1e:d3:04:
cd:2c:78:25:64:07:53:61:f1:77:06:86:cc:02:9d:f6:30:1b:
f9:4d:a2:61:59:96:a1:11:74:1b:71:1a:09:05:bf:89:1a:e5:
8b:9e:9d:dd:cd:84:eb:b4:1b:bd:56:ad:d0:04:29:b0:5a:84:
83:4c:2c:ce:1e:b5:98:d2:7b:a3:12:bc:43:bd:32:3d:a9:3f:
80:c8:14:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:35:57 2025 by rpki-client