Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft
File: -mfVMKhwCqjrfU9svpZHvlN_X84.mft (raw, json)
Hash identifier: dZfH7Qj182IDIWB46sRVGB1aJhV4T1Oig3BGH2F//fA=
Subject key identifier: 20:8E:7D:70:95:22:65:BB:59:9A:76:9B:10:0E:A9:7D:7A:91:4F:14
Authority key identifier: FA:67:D5:30:A8:70:0A:A8:EB:7D:4F:6C:BE:96:47:BE:53:7F:5F:CE
Certificate issuer: /CN=A91CD056/serialNumber=FA67D530A8700AA8EB7D4F6CBE9647BE537F5FCE
Certificate serial: 0306
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft
Manifest number: 0303
Signing time: Sat 29 Mar 2025 01:29:54 +0000
Manifest this update: Sat 29 Mar 2025 01:29:53 +0000
Manifest next update: Sat 05 Apr 2025 01:29:53 +0000
Files and hashes: 1: -mfVMKhwCqjrfU9svpZHvlN_X84.crl (hash: ehh6cUkpXJGEJIXAlgnRmQV56AOdd0bFFqeKGrXZiUM=)
2: 3E62F2ECC9EA11ECB6295B34C4F9AE02.roa (hash: ziC+4E1YChOduXVyJ0jy/1ifVphFnzBug4X1uVrRcws=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 774 (0x306)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD056
Validity
Not Before: Mar 29 01:29:53 2025 GMT
Not After : Apr 5 01:29:53 2025 GMT
Subject: CN=67e74d11-a4f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b0:20:05:a0:aa:cd:b4:70:89:a7:c6:9a:04:
17:26:e5:94:20:e8:99:94:46:f9:24:c1:b4:2f:3b:
ca:48:12:ae:11:14:74:d9:5f:83:9d:2a:a7:de:54:
08:b3:76:6d:ec:9a:83:99:b5:18:57:c5:ab:15:5e:
3d:64:7f:3c:df:1e:a9:80:bf:87:6e:f5:1e:97:b9:
38:d3:91:73:bb:93:fb:d6:ab:01:7e:16:49:2e:2d:
71:79:b9:4a:74:fe:8d:b9:2a:39:12:39:1b:80:05:
a2:ef:17:48:54:58:2e:77:5f:75:1b:22:21:11:12:
08:4b:94:05:4c:67:d3:03:ae:dc:93:78:a1:dc:c0:
81:df:06:85:f4:6c:08:fc:91:8b:c7:c3:50:4c:30:
ce:28:c1:a3:d0:11:5c:fe:73:db:d7:a6:60:2b:12:
37:03:37:c8:3f:3e:95:0f:09:ef:c5:e3:2b:26:33:
11:0c:49:6d:a2:f6:51:af:f3:09:9e:ad:21:16:98:
b4:a0:f2:eb:66:27:40:34:e6:30:0d:df:50:62:82:
4c:7f:bf:57:bd:f4:12:09:df:af:94:9b:06:07:de:
1a:e4:85:59:35:86:a3:b7:96:ea:b6:4f:d3:c2:82:
fb:70:84:96:5e:80:23:44:56:39:7d:9c:ed:e1:ef:
c4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8E:7D:70:95:22:65:BB:59:9A:76:9B:10:0E:A9:7D:7A:91:4F:14
X509v3 Authority Key Identifier:
keyid:FA:67:D5:30:A8:70:0A:A8:EB:7D:4F:6C:BE:96:47:BE:53:7F:5F:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
18:67:d0:f5:7a:58:87:2b:14:c7:80:f5:a1:88:c3:8d:c3:5d:
ed:56:f1:ac:34:cc:c2:0f:2d:45:62:6a:e4:96:59:b3:82:d8:
e3:4f:90:85:d7:37:e1:2b:7d:03:be:ea:c3:e4:f1:0c:54:d2:
7b:93:10:9e:db:26:49:3a:12:8c:2e:aa:56:13:cb:c0:13:b6:
53:39:96:9f:32:99:fe:a8:a8:f1:42:b3:61:22:38:e5:f9:b5:
43:8c:c9:9c:60:a5:6d:bb:c9:3e:aa:df:20:f4:a4:7e:e9:71:
ba:fc:1c:44:f7:21:a2:2b:36:98:d0:a2:ac:47:c5:db:bb:be:
5a:b6:fa:c4:6d:52:3b:23:09:6e:45:32:16:c1:93:42:a0:3d:
42:00:20:f9:c0:ef:72:c4:a1:31:f7:21:f8:ee:f6:0d:b3:fd:
18:bd:8f:38:08:51:da:5b:b9:12:ca:2a:c1:16:52:f6:e8:60:
fc:15:e1:92:a9:05:2c:07:b7:c0:29:5b:7b:3e:0d:b8:0a:ce:
a6:36:e6:3b:80:ec:29:72:57:a9:cc:42:b1:14:4a:a1:4d:13:
23:b4:45:ec:53:04:8e:22:d7:00:d7:6b:ce:5a:d6:39:52:ff:
86:98:53:5d:44:b6:5e:4d:8b:dc:fb:c7:46:76:19:f0:71:c6:
fb:a3:01:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 06:27:34 2025 by rpki-client