Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft
File: IaR__8gaEzNcB7kmBaLd_RgHoUw.mft (raw, json)
Hash identifier: XLdACdLfLUIUm/vZ0SNHEpKX6mi1W5/CFaxxm63dH5g=
Subject key identifier: 9D:8B:B1:0B:A6:26:BD:E4:55:4F:30:BA:C8:98:63:9D:CA:60:B2:6B
Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C
Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C
Certificate serial: 0ADB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft
Manifest number: 0ACD
Signing time: Fri 28 Mar 2025 19:39:45 +0000
Manifest this update: Fri 28 Mar 2025 19:39:44 +0000
Manifest next update: Fri 04 Apr 2025 19:39:44 +0000
Files and hashes: 1: IaR__8gaEzNcB7kmBaLd_RgHoUw.crl (hash: n++xbz/l2MQ6e+fT4lmpQ5FSMHn6ib81ELw77EOirxY=)
2: CDEFCF14801F11EF99206C47C4F9AE02.roa (hash: kISEPEmE2ZLNGr7M+gIIuLb+wfjhIl0pN5Ozrn7290M=)
3: A558194E801F11EFB86B2647C4F9AE02.roa (hash: yZl4Rgg31ofEgyuQezY4Q6zD53Q3cflOAAa2hJJAiIg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2779 (0xadb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BF905
Validity
Not Before: Mar 28 19:39:44 2025 GMT
Not After : Apr 4 19:39:44 2025 GMT
Subject: CN=67e6fb01-db0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:61:cd:d0:38:cd:56:09:7f:e2:2e:e6:80:08:
11:e4:29:c6:6d:8d:8e:6c:64:75:73:64:b8:da:37:
8e:b5:f9:b8:fc:f9:5e:18:d9:39:f0:e3:df:a8:64:
8e:3d:2b:9a:b4:95:ac:ab:c8:ba:2d:a7:38:1f:27:
be:94:48:f3:b2:24:55:48:4b:11:a6:6b:27:c8:48:
f8:fa:d9:0b:ad:71:0b:00:9f:b3:88:37:b8:e0:92:
2d:0a:49:95:4b:4b:94:8a:84:66:f6:90:22:63:b6:
5b:d8:ef:54:17:bf:1f:f6:b2:8a:e3:e7:7b:8c:3c:
14:c2:ae:48:38:74:2f:2d:0a:e8:0a:a4:ef:c2:0f:
53:c0:5a:37:ff:bc:21:45:64:b0:e3:d3:88:e5:54:
7a:4c:89:89:38:64:78:f5:5d:8e:da:b8:f0:34:d6:
95:bc:e7:58:e1:1b:c9:be:ca:8c:f5:ae:fe:23:a0:
f1:83:44:13:ea:03:77:c8:a8:11:b1:a8:d0:63:59:
c7:6e:18:21:85:a0:d1:c5:e7:53:8d:37:c7:3a:54:
63:25:96:a6:cc:8f:d7:09:be:b1:da:0d:b0:9b:11:
09:38:a4:28:95:d4:13:0f:70:1d:cd:af:ba:cb:5f:
52:2d:e0:41:93:57:d4:ae:90:fb:39:60:f9:71:f8:
e0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:8B:B1:0B:A6:26:BD:E4:55:4F:30:BA:C8:98:63:9D:CA:60:B2:6B
X509v3 Authority Key Identifier:
keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
71:56:7d:02:e0:fe:a1:8b:73:61:a1:eb:e1:04:35:23:34:42:
fc:9f:3c:56:c6:6f:96:42:58:0c:18:49:b2:74:46:7f:ef:5b:
2f:92:e8:0f:e1:a2:37:14:63:dc:4a:56:fb:29:bf:eb:e9:db:
df:2d:a9:08:2c:71:00:fb:f2:cf:c3:e1:0d:1f:22:89:1a:12:
7d:4e:ec:51:34:02:6f:09:e5:49:ca:d4:30:a6:2c:f5:50:ff:
91:a3:c0:c4:97:1d:36:d9:6d:d5:11:45:7b:64:2c:7a:3d:1f:
60:be:50:d2:1d:41:ff:3d:94:12:79:87:3e:95:f4:ab:a7:34:
c5:ea:1d:85:82:99:d2:cd:34:dc:cc:aa:71:c5:40:13:86:05:
0c:79:97:77:9b:8b:f7:19:92:99:3f:01:96:93:b5:46:5e:c6:
30:c4:b7:71:9b:a8:92:2c:f0:48:4c:32:16:47:a2:4c:fc:55:
89:1c:a3:c3:50:c7:cc:d7:70:2d:8b:34:2b:52:93:3d:42:90:
9b:d2:35:60:75:fa:29:43:80:b2:88:c4:15:35:0e:70:35:d7:
8c:43:9d:d3:c7:6a:19:ca:3d:f2:ab:24:9b:55:11:e5:d4:3b:
9c:02:43:c3:0f:c9:3b:ca:6f:c6:95:77:c6:f2:26:8f:83:89:
52:bc:a3:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:03:07 2025 by rpki-client