Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft
File: w-IA1ABdmiPkv66uDtty6kPx0JY.mft (raw, json)
Hash identifier: nc/IhGoZgMQ+EKuiuEZ3T9QZhuOmpEhmi9BwWfI0CUU=
Subject key identifier: 96:3E:33:B7:B3:8F:AE:3E:B8:6A:95:E4:4E:C8:A2:9D:C7:36:85:55
Authority key identifier: C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96
Certificate issuer: /CN=A91CD1A2/serialNumber=C3E200D4005D9A23E4BFAEAE0EDB72EA43F1D096
Certificate serial: D8
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft
Manifest number: D6
Signing time: Sat 29 Mar 2025 04:41:17 +0000
Manifest this update: Sat 29 Mar 2025 04:41:17 +0000
Manifest next update: Sat 05 Apr 2025 04:41:16 +0000
Files and hashes: 1: w-IA1ABdmiPkv66uDtty6kPx0JY.crl (hash: VNzfjrcMgrh/WkBOxLCbo+fvwwREf2l8v9Uu30szmI4=)
2: C19C2720CA2711EE82C12B0CC4F9AE02.roa (hash: VHJTWsm4wzJziIer/htU6hv3gqL/KMd1K2nOD3+RJsA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 216 (0xd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD1A2
Validity
Not Before: Mar 29 04:41:17 2025 GMT
Not After : Apr 5 04:41:16 2025 GMT
Subject: CN=67e779ed-b51f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:35:38:22:4d:ad:7a:6e:9a:07:1d:9d:bb:f2:
17:14:aa:77:19:81:28:65:1a:b1:33:f4:0d:38:28:
0a:1e:23:ed:0d:db:fa:6f:a1:7e:51:a3:ef:2b:ee:
f8:4b:a2:17:36:4a:1f:77:85:2a:34:19:c3:49:09:
f5:8d:ba:00:d4:06:13:32:c0:c1:81:b3:d2:96:09:
91:81:0e:e5:e5:28:f3:1e:a4:2c:51:53:36:74:9c:
65:6f:27:21:b4:30:31:01:3a:f9:c8:ce:8a:53:44:
1f:42:29:29:3e:36:cf:7c:cb:62:ee:aa:3a:b8:24:
e5:86:1f:ae:c2:09:87:2d:ce:37:6f:96:c7:66:4e:
0b:89:c5:1d:d1:05:bd:9d:c2:3d:01:11:6c:c9:d5:
9e:2b:f7:d5:d1:47:68:eb:ff:d3:08:38:48:7e:52:
8e:a7:1d:0c:91:fd:0f:80:7b:a5:69:3c:f1:f3:17:
da:1d:9d:c3:a2:f8:d0:58:b2:0f:41:70:a0:ef:f9:
cd:8f:a4:83:29:da:26:e0:22:3f:c2:a3:6c:ab:3a:
3e:93:1a:43:54:9f:49:6c:cc:13:5e:e0:e1:ae:49:
ac:c8:bc:18:e1:4b:84:87:15:b2:8c:28:55:9b:8f:
86:26:db:48:20:1d:b5:11:02:83:d7:57:7e:70:bf:
77:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:3E:33:B7:B3:8F:AE:3E:B8:6A:95:E4:4E:C8:A2:9D:C7:36:85:55
X509v3 Authority Key Identifier:
keyid:C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
22:3d:7f:39:5d:1e:cb:49:0f:8f:ae:fe:7d:e6:12:32:5c:df:
64:7d:a0:50:13:65:4a:84:c4:6d:78:a8:dd:b2:ed:7a:e9:0b:
6f:b2:3f:45:b6:96:0c:0e:f2:d4:1d:2d:e8:ad:ed:55:c3:ca:
40:81:7c:af:12:ce:cc:f3:51:93:5d:44:49:0c:36:e6:fc:00:
da:b3:da:fd:86:b3:31:bd:2d:a7:84:5a:fd:39:f2:83:b5:6c:
2e:49:3a:5c:ed:39:c5:45:66:dc:f7:63:1b:fc:25:27:62:33:
ad:a2:e8:8e:6e:15:73:4d:c7:32:fa:f5:26:ec:37:52:d2:a7:
ce:3f:32:e2:ac:39:c8:17:41:4c:3c:6a:14:72:1e:3e:e4:be:
09:a4:ee:53:e1:2f:37:e5:90:cc:ec:d7:31:6a:ac:4a:4a:4b:
5b:5f:cd:48:6a:4d:d3:b9:ef:75:0e:53:b4:06:c5:22:ed:b2:
98:16:ba:af:be:94:0a:c1:85:6c:3a:56:87:b3:77:39:41:a0:
97:20:d0:e9:8a:05:2b:e3:9f:23:26:07:24:ef:b4:43:da:7c:
a3:66:82:81:4c:95:10:36:dd:3d:8b:fc:35:2b:2c:a9:81:55:
6a:61:86:1a:bf:71:79:50:d4:f5:74:f4:96:b4:e4:0f:b5:d6:
91:87:c3:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 14:38:50 2025 by rpki-client