Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.mft
File: ihprqbt2zysN7jXqTP0vX_jAieM.mft (raw, json)
Hash identifier: 6Ur786iIfJz4g3pUit99fR4FeSRU243Zq72OV+5NEEg=
Subject key identifier: E7:5E:D4:45:AB:C1:30:97:0F:8E:FE:62:C8:C1:69:2F:FF:4B:E2:73
Authority key identifier: 8A:1A:6B:A9:BB:76:CF:2B:0D:EE:35:EA:4C:FD:2F:5F:F8:C0:89:E3
Certificate issuer: /CN=A91C36EE/serialNumber=8A1A6BA9BB76CF2B0DEE35EA4CFD2F5FF8C089E3
Certificate serial: 0BC4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihprqbt2zysN7jXqTP0vX_jAieM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.mft
Manifest number: 0BBE
Signing time: Fri 28 Mar 2025 19:01:52 +0000
Manifest this update: Fri 28 Mar 2025 19:01:52 +0000
Manifest next update: Fri 04 Apr 2025 19:01:52 +0000
Files and hashes: 1: ihprqbt2zysN7jXqTP0vX_jAieM.crl (hash: 9HCWEqGnkYksXjbVCf2TxCAzKEb4QALI5Hd4h/OchCE=)
2: 6FCF7FF2180411EA9AA70A57C4F9AE02.roa (hash: Kec3OJ0yXeD5eottWlXfmKbDVOHd3PQe3ZSjrmCo8jA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3012 (0xbc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C36EE
Validity
Not Before: Mar 28 19:01:52 2025 GMT
Not After : Apr 4 19:01:52 2025 GMT
Subject: CN=67e6f220-42c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ca:b6:7f:21:c5:a5:14:c2:17:9e:86:16:46:
27:69:53:92:c1:69:21:f6:8a:f1:97:78:ce:6c:f3:
d9:d5:22:a7:33:2c:b5:70:0b:7a:25:c7:32:ae:18:
c3:09:6c:0b:d8:8f:71:17:b2:dd:09:fc:cc:27:c5:
a0:66:8c:8e:60:74:7d:45:3f:80:19:c5:ad:f9:be:
7b:ef:13:f6:25:24:a7:62:26:10:84:c6:87:01:5c:
ee:27:5e:82:2b:e8:6c:32:b3:11:7a:78:88:e8:50:
fa:fb:2c:86:41:af:91:d4:35:fb:29:cd:94:60:b0:
f0:d3:72:e3:25:db:4b:28:76:c7:d5:dd:44:ca:8c:
6e:5d:c3:52:b1:68:f7:d0:c4:e3:f1:a4:ec:26:15:
d6:b1:1e:01:8a:c4:61:a4:61:9e:da:62:df:32:c5:
a7:4b:de:01:ac:ac:3f:a0:d0:0d:22:13:29:76:13:
59:b7:57:ca:66:79:da:c3:94:ff:1b:24:30:05:7d:
2a:5e:47:c3:15:79:6b:03:a6:da:d0:a1:50:29:cf:
10:6e:d3:84:10:ac:4f:08:35:a7:67:94:3b:82:22:
cf:73:c3:fd:f1:eb:77:5d:98:60:04:51:fd:a4:7c:
c3:ec:af:64:54:fa:25:ec:ca:1b:5c:55:99:eb:3a:
d7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:5E:D4:45:AB:C1:30:97:0F:8E:FE:62:C8:C1:69:2F:FF:4B:E2:73
X509v3 Authority Key Identifier:
keyid:8A:1A:6B:A9:BB:76:CF:2B:0D:EE:35:EA:4C:FD:2F:5F:F8:C0:89:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihprqbt2zysN7jXqTP0vX_jAieM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
57:4d:ea:9d:55:9e:38:96:44:10:97:44:3a:50:d4:18:d5:17:
0b:e1:20:59:b9:1f:13:80:f1:d2:ee:74:00:8c:ac:72:2e:53:
f3:55:a4:b4:67:98:d7:f3:5a:88:39:2b:6a:9b:f0:88:03:ea:
31:95:2d:8b:15:f5:79:c5:72:98:20:99:d5:ee:8f:6f:a6:4f:
6c:f1:80:e0:fe:14:76:c0:00:8b:e5:9f:aa:ef:b2:2e:67:a0:
37:e1:7d:7a:c9:f4:8a:82:9f:96:e5:05:55:a6:d4:00:60:e5:
48:e8:bd:ef:e8:a1:03:14:6a:4e:d6:39:ed:e3:9d:15:90:77:
26:c1:37:84:d8:34:d6:c0:f9:16:d5:bd:92:5c:f8:70:cf:68:
ff:e5:94:55:f2:d4:ce:0c:92:cb:9c:15:bb:85:fc:89:f5:b0:
5b:76:4a:5a:de:fc:69:1a:d6:6f:fb:4c:b7:b1:dd:1d:fc:bd:
4a:02:28:97:f3:b9:e1:82:df:f3:e9:ee:17:85:d0:d9:34:09:
36:7f:f0:d4:79:3f:26:96:1b:3b:00:90:22:67:ab:96:06:67:
26:5f:c2:5b:38:c6:94:17:1e:37:96:43:0b:fa:eb:89:f7:71:
d0:59:e1:d3:cc:dc:03:5c:76:cf:ac:1f:d9:e5:d5:96:5c:78:
ee:81:14:27
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzM2RUUxMTAvBgNVBAUTKDhBMUE2QkE5QkI3NkNGMkIwREVFMzVFQTRDRkQyRjVG
RjhDMDg5RTMwHhcNMjUwMzI4MTkwMTUyWhcNMjUwNDA0MTkwMTUyWjAYMRYwFAYD
VQQDEw02N2U2ZjIyMC00MmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA18q2fyHFpRTCF56GFkYnaVOSwWkh9orxl3jObPPZ1SKnMyy1cAt6JccyrhjD
CWwL2I9xF7LdCfzMJ8WgZoyOYHR9RT+AGcWt+b577xP2JSSnYiYQhMaHAVzuJ16C
K+hsMrMReniI6FD6+yyGQa+R1DX7Kc2UYLDw03LjJdtLKHbH1d1EyoxuXcNSsWj3
0MTj8aTsJhXWsR4BisRhpGGe2mLfMsWnS94BrKw/oNANIhMpdhNZt1fKZnnaw5T/
GyQwBX0qXkfDFXlrA6ba0KFQKc8QbtOEEKxPCDWnZ5Q7giLPc8P98et3XZhgBFH9
pHzD7K9kVPol7MobXFWZ6zrXRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOde1EWr
wTCXD47+YsjBaS//S+JzMB8GA1UdIwQYMBaAFIoaa6m7ds8rDe416kz9L1/4wInj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzZFRS9BOEMxQzg3QTE4
MDMxMUVBQkVDODJCNTZDNEY5QUUwMi9paHBycWJ0Mnp5c043alhxVFAwdlhfakFp
ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2locHJxYnQyenlzTjdqWHFUUDB2WF9qQWllTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
MzZFRS9BOEMxQzg3QTE4MDMxMUVBQkVDODJCNTZDNEY5QUUwMi9paHBycWJ0Mnp5
c043alhxVFAwdlhfakFpZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBXTeqdVZ44lkQQl0Q6UNQY1RcL4SBZuR8TgPHS7nQAjKxyLlPzVaS0
Z5jX81qIOStqm/CIA+oxlS2LFfV5xXKYIJnV7o9vpk9s8YDg/hR2wACL5Z+q77Iu
Z6A34X16yfSKgp+W5QVVptQAYOVI6L3v6KEDFGpO1jnt450VkHcmwTeE2DTWwPkW
1b2SXPhwz2j/5ZRV8tTODJLLnBW7hfyJ9bBbdkpa3vxpGtZv+0y3sd0d/L1KAiiX
87nhgt/z6e4XhdDZNAk2f/DUeT8mlhs7AJAiZ6uWBmcmX8JbOMaUFx43lkML+uuJ
93HQWeHTzNwDXHbPrB/Z5dWWXHjugRQn
-----END CERTIFICATE-----
Generated at Sun Apr 6 01:27:13 2025 by rpki-client