Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft
File: AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft (raw, json)
Hash identifier: Y/cilpeq4mcf/xxOz4eZpsKpnExgjar4XAbc6oOUqos=
Subject key identifier: 03:75:B8:D4:C5:6E:E7:BE:E9:26:8A:35:17:34:C3:3E:E3:7C:14:44
Authority key identifier: 00:02:41:49:0E:3F:20:98:F7:9D:5C:93:03:7E:BF:F2:B9:56:CF:D7
Certificate issuer: /CN=A91CA1A6/serialNumber=000241490E3F2098F79D5C93037EBFF2B956CFD7
Certificate serial: 0719
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AAJBSQ4_IJj3nVyTA36_8rlWz9c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft
Manifest number: 0702
Signing time: Fri 28 Mar 2025 22:15:03 +0000
Manifest this update: Fri 28 Mar 2025 22:15:02 +0000
Manifest next update: Fri 04 Apr 2025 22:15:02 +0000
Files and hashes: 1: AAJBSQ4_IJj3nVyTA36_8rlWz9c.crl (hash: FlEB0JuqLhf26FTP8tKlMpxGhQ85J/P78w7fPuIIASE=)
2: EEE4C606B5D411ECA20B840AC4F9AE02.roa (hash: 0XMlIXCMAiJZlp7fDiVuLUwSsm0ebLntYydTAPsauDo=)
3: 910A49AAB5CC11ECAE337E78C4F9AE02.roa (hash: 3it6MgHyhXt2fOxKVzUm+aEDZP71P1ra3Nfl+4bBlR4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1817 (0x719)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CA1A6
Validity
Not Before: Mar 28 22:15:02 2025 GMT
Not After : Apr 4 22:15:02 2025 GMT
Subject: CN=67e71f66-2c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f1:1c:c7:be:1b:8f:7b:a9:3f:04:71:af:a5:
71:ce:8f:1b:66:92:cd:3b:3c:be:53:3f:f5:cb:79:
12:a9:91:51:fd:cd:7e:86:0b:b2:13:b0:7b:b0:0a:
37:31:34:d7:5d:1b:dd:aa:44:0d:be:fd:3f:f5:83:
69:a7:3c:63:7f:35:f1:45:1a:91:9f:b3:11:47:5e:
bf:9f:4a:99:a9:53:0d:69:c3:a0:12:db:67:df:17:
e3:fc:02:0d:b8:00:6e:a3:3c:2e:aa:e1:48:f1:cb:
a9:71:dd:d0:23:19:fd:56:43:1f:46:f6:40:82:78:
79:25:a5:41:1f:a1:75:31:02:0a:8f:10:f4:52:d5:
7a:8f:9c:29:e4:a6:d6:96:59:e1:47:5d:12:a7:59:
71:c4:ef:19:5c:12:ab:6b:f9:a2:7a:77:97:d1:7e:
b9:bf:01:cd:07:12:32:37:7c:e5:84:b8:98:de:1f:
76:2b:0d:0d:a5:f7:8a:31:ee:42:2f:bd:9c:db:44:
59:48:e6:82:ce:72:57:ff:27:67:68:1b:59:53:7e:
8c:94:3e:9a:1d:3c:6b:e8:b5:aa:ba:6b:42:6c:14:
63:2b:1e:3f:74:bf:06:5c:55:48:25:1d:bd:3c:d3:
ce:b8:68:c6:5d:3e:ce:4e:47:88:8c:b5:f3:d4:60:
c6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:75:B8:D4:C5:6E:E7:BE:E9:26:8A:35:17:34:C3:3E:E3:7C:14:44
X509v3 Authority Key Identifier:
keyid:00:02:41:49:0E:3F:20:98:F7:9D:5C:93:03:7E:BF:F2:B9:56:CF:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AAJBSQ4_IJj3nVyTA36_8rlWz9c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
28:7e:ca:fc:db:91:85:17:54:2e:99:54:be:2b:e4:45:76:95:
cc:10:da:32:d2:d9:db:43:08:b2:59:a1:e1:ee:dc:64:28:e5:
fb:af:75:7e:08:67:d7:a0:96:48:18:31:88:9b:1c:79:56:1d:
a2:71:e4:9f:c6:ef:de:fc:81:b8:74:1e:0b:61:0f:87:e0:45:
8c:2d:3d:0f:8a:20:d2:82:a7:be:0a:d2:07:f2:d6:9b:85:f9:
f7:e5:15:49:dd:61:63:37:fd:54:ed:f5:df:c1:60:ff:c1:f5:
6e:d7:b3:93:c4:5c:a0:16:91:5e:83:89:26:0c:ce:07:a8:71:
81:ce:71:f3:a3:29:47:14:1b:73:64:26:a2:4f:19:f1:9a:f0:
80:cb:85:f2:91:e4:a1:4c:ed:9f:3c:80:4d:a5:84:b9:9e:e1:
9a:3f:77:7a:0d:16:57:ed:c5:ce:8d:f0:8c:cd:07:43:5b:a6:
86:4e:f8:c4:5f:5e:76:8a:ca:43:2e:dd:47:f0:60:fb:7b:a5:
19:b5:97:4c:0f:89:03:6e:68:51:95:61:d4:c8:7c:39:8d:d1:
f7:11:9a:37:f0:ce:45:06:bc:ba:fc:39:aa:5e:5b:1e:97:40:
07:7b:17:8e:8b:85:b5:98:6f:eb:e7:eb:42:c1:34:b3:6b:de:
54:d3:50:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:50:10 2025 by rpki-client