Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft
File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json)
Hash identifier: nRpcOJdiCqa0+cr+R3/4TL7h5NDiSIIUCjUq91CM/8c=
Subject key identifier: D4:F2:27:A0:F9:BD:5B:53:AC:C5:46:1D:E2:EA:4E:5A:7C:D4:B6:8E
Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9
Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9
Certificate serial: 03C7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft
Manifest number: 03DF
Signing time: Sat 29 Mar 2025 00:55:43 +0000
Manifest this update: Sat 29 Mar 2025 00:55:43 +0000
Manifest next update: Sat 05 Apr 2025 00:55:43 +0000
Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: wn/L47FYuSwCfqxINzL1h4Y7tvjabxJx8P9lniebipQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 967 (0x3c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C9A8D
Validity
Not Before: Mar 29 00:55:43 2025 GMT
Not After : Apr 5 00:55:43 2025 GMT
Subject: CN=67e7450f-a77e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:81:8b:cc:b0:c8:bf:7f:9d:10:0b:e2:d7:13:
a3:87:50:64:34:d4:7e:03:96:1d:c3:1f:5f:9a:8c:
f0:04:50:ac:82:ad:ce:11:73:28:d2:44:43:ec:b1:
06:36:f9:7a:ec:97:57:d7:0d:8b:8b:ae:d3:fd:44:
8a:c0:11:59:38:7e:3f:ae:22:76:28:8b:ee:66:f8:
76:ac:12:bf:10:a3:6a:ff:52:cf:4a:14:37:94:1b:
8d:1e:6b:91:7e:d7:5d:9c:a6:aa:fe:4e:13:2f:1a:
e1:00:59:f8:c4:65:8c:f1:42:7b:26:48:6b:21:1d:
5f:3d:60:d0:b8:9c:4b:62:be:81:5b:38:f0:0d:49:
5d:2c:fa:df:34:6a:6c:7f:5e:ed:ca:95:43:c0:47:
ce:05:7e:b8:dc:c5:ba:6c:f0:11:9a:a7:ec:eb:e1:
ab:79:ef:27:d5:ba:86:c3:80:fa:04:4e:d2:8a:43:
1b:ef:3f:cb:7c:42:ba:df:80:f2:88:df:d6:70:1a:
78:10:78:f2:d2:8c:71:cc:b2:d7:90:8f:ea:26:3b:
dc:b4:e6:6b:ed:df:21:d4:13:3d:2a:ac:e6:ea:ff:
bb:dc:ad:b1:20:69:40:88:f8:9c:e3:f2:a6:04:a6:
c1:83:19:ce:1f:89:b6:e9:40:a2:73:a4:c5:2f:fd:
0f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:F2:27:A0:F9:BD:5B:53:AC:C5:46:1D:E2:EA:4E:5A:7C:D4:B6:8E
X509v3 Authority Key Identifier:
keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
43:e0:ef:0f:1b:77:e4:7c:4b:54:63:0c:5e:8c:7c:4e:f1:f5:
ba:10:4c:0b:09:b1:3d:73:8f:71:c4:76:f9:ff:7f:aa:a0:1e:
1d:57:2b:9c:f0:af:0c:3a:e2:00:06:b2:c2:1f:01:0e:92:ba:
ff:90:dd:87:f2:08:3b:d1:c9:df:3b:7b:33:92:d8:9d:5b:34:
b3:8a:c5:1e:b0:bd:97:3e:ec:ec:0c:8e:dd:7d:a2:0e:3d:37:
98:34:93:98:c8:7b:89:e8:60:15:00:d8:a7:1c:89:d2:8f:ef:
65:04:e1:63:e1:f2:fb:43:6d:c5:c7:5e:48:ac:c9:82:2e:da:
a3:37:9c:23:06:b5:ae:22:b7:65:e4:64:dd:69:b4:38:be:f0:
bd:29:3b:fe:96:99:8a:3d:ce:22:d2:ff:58:aa:0a:f3:b1:e7:
2e:7c:bd:58:bd:8f:eb:6a:22:a8:a3:d3:ad:c7:f4:dc:3b:59:
7e:51:ed:a8:24:b0:70:e2:97:02:9d:c3:e3:90:4c:5a:e8:a1:
2a:76:72:f2:26:7a:33:15:57:bc:22:56:42:21:66:2d:2d:40:
b0:3c:bb:52:97:3b:ba:1d:80:88:bb:7e:23:90:52:a7:1f:7d:
65:36:3c:c1:fa:fb:16:75:88:4c:05:9a:73:ef:df:3e:b3:23:
01:53:f7:4a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICA8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC
NEE2MjhGRjkwHhcNMjUwMzI5MDA1NTQzWhcNMjUwNDA1MDA1NTQzWjAYMRYwFAYD
VQQDEw02N2U3NDUwZi1hNzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA7IGLzLDIv3+dEAvi1xOjh1BkNNR+A5Ydwx9fmozwBFCsgq3OEXMo0kRD7LEG
Nvl67JdX1w2Li67T/USKwBFZOH4/riJ2KIvuZvh2rBK/EKNq/1LPShQ3lBuNHmuR
ftddnKaq/k4TLxrhAFn4xGWM8UJ7JkhrIR1fPWDQuJxLYr6BWzjwDUldLPrfNGps
f17typVDwEfOBX643MW6bPARmqfs6+Gree8n1bqGw4D6BE7SikMb7z/LfEK634Dy
iN/WcBp4EHjy0oxxzLLXkI/qJjvctOZr7d8h1BM9Kqzm6v+73K2xIGlAiPic4/Km
BKbBgxnOH4m26UCic6TFL/0PLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTyJ6D5
vVtTrMVGHeLqTlp81LaOMB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz
RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq
X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz
ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBD4O8PG3fkfEtUYwxejHxO8fW6EEwLCbE9c49xxHb5/3+qoB4dVyuc
8K8MOuIABrLCHwEOkrr/kN2H8gg70cnfO3szktidWzSzisUesL2XPuzsDI7dfaIO
PTeYNJOYyHuJ6GAVANinHInSj+9lBOFj4fL7Q23Fx15IrMmCLtqjN5wjBrWuIrdl
5GTdabQ4vvC9KTv+lpmKPc4i0v9YqgrzsecufL1YvY/raiKoo9Otx/TcO1l+Ue2o
JLBw4pcCncPjkExa6KEqdnLyJnozFVe8IlZCIWYtLUCwPLtSlzu6HYCIu34jkFKn
H31lNjzB+vsWdYhMBZpz798+syMBU/dK
-----END CERTIFICATE-----
Generated at Thu Apr 10 21:08:56 2025 by rpki-client