Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft
File: fBlP7bilyMl2697IST3zw_CMyOI.mft (raw, json)
Hash identifier: q894qzRknK5UdAG4Rfysv4QaJIrOx0x0w08Lvy1mmrw=
Subject key identifier: 1B:D9:48:EB:5F:B3:5F:2F:75:A8:87:F9:FC:AD:F4:B0:0E:77:A7:DC
Authority key identifier: 7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2
Certificate issuer: /CN=A91BE056/serialNumber=7C194FEDB8A5C8C976EBDEC8493DF3C3F08CC8E2
Certificate serial: DA
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft
Manifest number: D4
Signing time: Fri 28 Mar 2025 23:51:57 +0000
Manifest this update: Fri 28 Mar 2025 23:51:56 +0000
Manifest next update: Fri 04 Apr 2025 23:51:56 +0000
Files and hashes: 1: fBlP7bilyMl2697IST3zw_CMyOI.crl (hash: 3d6z/1D+4F1LEztIKH6udFni5RcO9iHicwPh224foP4=)
2: C7AAEA76637311EF97465324C4F9AE02.roa (hash: 7qAgqeHaZPQYvPPHuv1+My9lZgN4hj2uJJ26C3QxuHc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 218 (0xda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BE056
Validity
Not Before: Mar 28 23:51:56 2025 GMT
Not After : Apr 4 23:51:56 2025 GMT
Subject: CN=67e7361d-31c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d7:8d:5e:75:03:3e:b2:39:62:ac:52:a1:b0:
09:cd:78:9c:02:bd:a4:45:40:02:1a:25:38:3f:d8:
33:53:ee:f9:56:c3:4a:3e:d9:82:91:a9:95:a0:5a:
e1:51:d5:0b:be:b4:a7:b1:ae:f4:12:3c:d7:d9:7c:
3c:d1:32:61:9c:66:7c:a8:ea:02:96:6c:75:83:61:
f6:30:ea:1d:a8:9e:3b:29:74:0b:20:c0:93:4b:26:
fc:f2:da:bb:cd:06:ae:3f:d8:e4:e8:e6:55:2d:cc:
7a:69:fc:b6:f0:ea:a5:3e:1b:7e:6d:92:ca:2c:37:
18:57:2b:f3:3a:14:73:63:50:8c:f8:8d:df:46:75:
b5:c6:27:29:6a:cf:cf:ed:81:42:98:a9:05:9f:51:
cc:53:3c:d1:ee:cb:52:07:62:bb:b4:9a:85:13:dd:
4d:e3:ea:1b:ef:4b:8d:09:b7:be:9d:0c:5c:56:54:
c5:26:ff:9a:6a:e0:e9:f3:e0:de:09:99:da:c1:e3:
26:93:a1:b0:86:8d:a4:e2:5e:17:1e:50:5c:83:58:
87:8a:36:b1:3c:51:ff:ff:82:19:87:e2:ce:0d:c7:
cc:e3:c0:cc:ab:32:13:f3:1b:f8:b2:82:b5:3d:39:
44:e3:c4:e1:3a:16:f8:17:94:64:32:4d:7a:49:c3:
b8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D9:48:EB:5F:B3:5F:2F:75:A8:87:F9:FC:AD:F4:B0:0E:77:A7:DC
X509v3 Authority Key Identifier:
keyid:7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
97:b2:fc:61:46:65:39:61:06:97:18:1f:94:aa:44:ed:82:6a:
04:14:b8:41:b8:66:ac:b7:3a:69:d3:07:e0:a0:0e:f5:a4:7d:
8d:eb:35:2e:fe:66:4e:93:44:0e:b5:ce:c7:b8:42:c3:59:fd:
33:36:11:5f:74:d8:5f:18:8f:2f:27:a3:59:99:f6:6f:db:6b:
43:87:62:30:a2:0d:80:a0:b9:8f:b6:ec:46:23:f0:ee:00:c4:
7f:45:f2:cc:60:c1:8d:fc:20:04:c4:f4:95:c4:3d:b9:f1:c8:
f5:cf:05:d2:3b:43:b8:62:52:c1:7e:d0:73:92:82:0e:b2:90:
2e:93:c8:fe:94:d6:db:e6:e3:f6:59:29:2b:b9:3f:54:8a:d5:
5c:d5:e3:dd:dc:ae:39:7b:52:fa:1b:17:26:8b:81:41:6b:5c:
c4:46:e3:c0:65:84:25:9b:d3:ea:42:41:d0:7d:41:00:2f:13:
bf:1c:64:7f:5f:11:e9:34:d8:9d:b1:91:c5:11:f5:b2:1e:f7:
d8:4f:f6:f6:7b:42:2e:9f:a2:93:58:22:8b:8f:3d:95:ef:5f:
a9:da:72:e1:10:bd:8e:e5:08:b5:3a:26:13:47:de:dd:d2:b7:
2e:94:78:fe:23:21:59:b2:5f:1c:d1:e2:a5:22:28:39:cb:c2:
32:5d:43:f4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QkUwNTYxMTAvBgNVBAUTKDdDMTk0RkVEQjhBNUM4Qzk3NkVCREVDODQ5M0RGM0Mz
RjA4Q0M4RTIwHhcNMjUwMzI4MjM1MTU2WhcNMjUwNDA0MjM1MTU2WjAYMRYwFAYD
VQQDEw02N2U3MzYxZC0zMWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0deNXnUDPrI5YqxSobAJzXicAr2kRUACGiU4P9gzU+75VsNKPtmCkamVoFrh
UdULvrSnsa70EjzX2Xw80TJhnGZ8qOoClmx1g2H2MOodqJ47KXQLIMCTSyb88tq7
zQauP9jk6OZVLcx6afy28OqlPht+bZLKLDcYVyvzOhRzY1CM+I3fRnW1xicpas/P
7YFCmKkFn1HMUzzR7stSB2K7tJqFE91N4+ob70uNCbe+nQxcVlTFJv+aauDp8+De
CZnaweMmk6Gwho2k4l4XHlBcg1iHijaxPFH//4IZh+LODcfM48DMqzIT8xv4soK1
PTlE48ThOhb4F5RkMk16ScO41wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvZSOtf
s18vdaiH+fyt9LAOd6fcMB8GA1UdIwQYMBaAFHwZT+24pcjJduveyEk988PwjMji
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA1Ni8wMDNFMTE1OEQ3
OEIxMUVFQTJFQkQ3MTJDNEY5QUUwMi9mQmxQN2JpbHlNbDI2OTdJU1QzendfQ015
T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL2ZCbFA3YmlseU1sMjY5N0lTVDN6d19DTXlPSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
RTA1Ni8wMDNFMTE1OEQ3OEIxMUVFQTJFQkQ3MTJDNEY5QUUwMi9mQmxQN2JpbHlN
bDI2OTdJU1QzendfQ015T0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCXsvxhRmU5YQaXGB+UqkTtgmoEFLhBuGastzpp0wfgoA71pH2N6zUu
/mZOk0QOtc7HuELDWf0zNhFfdNhfGI8vJ6NZmfZv22tDh2Iwog2AoLmPtuxGI/Du
AMR/RfLMYMGN/CAExPSVxD258cj1zwXSO0O4YlLBftBzkoIOspAuk8j+lNbb5uP2
WSkruT9UitVc1ePd3K45e1L6Gxcmi4FBa1zERuPAZYQlm9PqQkHQfUEALxO/HGR/
XxHpNNidsZHFEfWyHvfYT/b2e0Iun6KTWCKLjz2V71+p2nLhEL2O5Qi1OiYTR97d
0rculHj+IyFZsl8c0eKlIig5y8IyXUP0
-----END CERTIFICATE-----
Generated at Fri Apr 11 00:36:57 2025 by rpki-client