Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft
File: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft (raw, json)
Hash identifier: 5ESVyuiCDH80N4wP6sRmdyl6Bi2ymXsoOdNFMuN0uk4=
Subject key identifier: 5F:38:1D:75:B7:0A:26:F6:E7:31:E8:5F:2B:54:2E:C6:B4:5E:72:72
Authority key identifier: 85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94
Certificate issuer: /CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694
Certificate serial: 02A8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft
Manifest number: 029F
Signing time: Sat 29 Mar 2025 01:46:57 +0000
Manifest this update: Sat 29 Mar 2025 01:46:56 +0000
Manifest next update: Sat 05 Apr 2025 01:46:56 +0000
Files and hashes: 1: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl (hash: uj2uP7X+AjNMZPAW5tgBiy3+YZAqZueOR6180eOyU/g=)
2: 5B6AD2DCF1C811ECBBC34549C4F9AE02.roa (hash: tIjRYvm7kHb3Z/vuy4/Hasw9Jy2neJdJRNnPansBj78=)
3: 5AD85A56F1C811ECBBC34549C4F9AE02.roa (hash: llPQK6RAm7smNmRGwi10ZC04JcuM8comzd+cTfPYGBM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 680 (0x2a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BF5C0
Validity
Not Before: Mar 29 01:46:56 2025 GMT
Not After : Apr 5 01:46:56 2025 GMT
Subject: CN=67e75110-6848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a9:8d:c0:6f:ec:cf:b2:3d:f1:98:ad:3d:b2:
e4:94:3b:79:b9:a6:3c:de:39:74:44:04:99:84:9a:
fa:8c:33:fd:7d:a6:c4:f2:38:64:13:e4:d5:46:70:
b2:bf:27:73:e2:c9:ec:c3:0b:64:17:55:71:84:66:
4e:97:d6:5e:17:09:4a:d2:e3:ae:11:df:b5:69:ca:
9e:40:65:a8:f2:79:40:ad:53:36:d0:52:39:f8:8c:
e9:98:7e:ed:5d:03:3e:fe:25:93:e5:19:fd:48:07:
73:70:04:db:b1:87:b1:e3:d6:b2:66:67:e1:71:2c:
88:c2:47:85:f2:61:af:8a:1d:35:68:e8:e6:f7:d5:
44:21:cd:06:31:4b:98:9e:32:37:3e:6d:8a:5a:0f:
2a:97:65:2a:df:83:fd:c3:36:b7:99:36:3a:50:4a:
58:b1:6a:d8:09:61:2b:c6:c0:d3:62:79:96:3c:53:
80:8c:c8:ba:dc:63:bc:03:f4:f0:db:5c:fc:70:56:
0e:01:ed:80:ff:05:1c:54:c4:6a:48:e7:72:1d:ea:
52:64:26:f1:4a:95:42:ca:46:ec:05:8a:7c:53:29:
bf:1e:c0:bb:43:80:5d:13:b2:e7:f6:20:b9:8e:f8:
1a:82:08:2a:ae:17:68:36:95:fc:2f:36:0c:b3:53:
3b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:38:1D:75:B7:0A:26:F6:E7:31:E8:5F:2B:54:2E:C6:B4:5E:72:72
X509v3 Authority Key Identifier:
keyid:85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
97:fd:e9:c4:d4:65:bd:ea:fb:4c:d4:32:25:ce:78:d7:c9:b9:
24:c8:e3:10:be:37:fa:73:3d:b9:3b:af:db:a4:6c:03:c4:a4:
45:21:8e:d7:f6:57:ff:69:99:8b:b6:6f:2a:bc:e7:9e:3f:72:
d0:b1:b0:dc:2c:b6:e7:f4:4c:3a:f6:6f:07:48:33:ac:6a:46:
d8:c6:d8:8b:7d:4c:ff:d2:a0:77:c8:eb:6b:af:44:32:66:9c:
0b:5b:67:ee:af:cb:1e:1b:5b:b9:77:e6:cf:5b:d7:1b:be:50:
47:96:ee:3f:09:a0:00:21:e3:36:6c:8e:c4:81:34:f3:a3:99:
0e:a6:8e:f6:fa:2f:2e:c0:76:29:ef:f0:38:10:25:ce:ed:db:
31:ff:54:54:d4:75:f8:18:b6:e8:a8:97:97:49:c5:64:16:e8:
86:02:69:b3:5c:11:51:f7:4b:ff:21:59:db:d6:ca:21:23:d2:
12:46:ef:fc:e1:24:10:ff:7f:ef:5d:49:17:3d:d3:7e:ee:22:
fd:c8:bd:29:2b:b2:df:b7:0b:c6:42:bb:f7:9a:19:36:93:b8:
40:db:33:90:02:b5:32:d7:93:d8:17:3c:12:8c:e1:af:c4:4f:
9c:65:8e:79:ad:8a:c5:2a:55:6b:34:6f:b4:25:5f:b6:b8:3f:
71:7c:4a:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 11:23:44 2025 by rpki-client