Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
File: bb1cTQEh_LMY54xFG29WcyCYYAI.mft (raw, json)
Hash identifier: yKO8vYEeHjUqJmjgqeyzZ/xrFyb10jh3xi65CagmOpU=
Subject key identifier: 01:0A:46:2B:30:F5:47:E4:D1:D5:D4:B6:20:C8:83:C3:19:44:4D:38
Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02
Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002
Certificate serial: 039C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
Manifest number: 0369
Signing time: Sat 29 Mar 2025 01:20:50 +0000
Manifest this update: Sat 29 Mar 2025 01:20:50 +0000
Manifest next update: Sat 05 Apr 2025 01:20:50 +0000
Files and hashes: 1: bb1cTQEh_LMY54xFG29WcyCYYAI.crl (hash: mEKFS5adA8TXGQ3hwkDe/6tzkMXBipA6Dknr+wbHoPM=)
2: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (hash: uzprXmLZAeVeFEFGMakzKpKMKq1iIlqcTuQSaK0YrGo=)
3: AD17704445F611EE97DF317CC4F9AE02.roa (hash: sdrVSjIs8Qd6YgjT3RuNMeG76kE1PDfBoWYkgwiCgcM=)
4: 943D15902D1011EFBBEBA67BC4F9AE02.roa (hash: 3UjrYjj5O3Amm02WCEzbVdg/2HdFUuqdwKYNG8cKQe0=)
5: 9B0C244C73B611EEB18A0385C4F9AE02.roa (hash: YgWtLAFjeyb8EUf6jgk5P6z3rHF4ij9vs7WYRKlGxPw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 924 (0x39c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D1216
Validity
Not Before: Mar 29 01:20:50 2025 GMT
Not After : Apr 5 01:20:50 2025 GMT
Subject: CN=67e74af2-5b15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c3:6e:c1:e5:2b:6b:d9:86:e1:4f:35:82:83:
17:fe:91:8b:3f:65:74:e3:b0:2d:92:ab:bd:db:7d:
93:bd:c2:a1:b2:4c:b8:42:19:5c:f9:32:30:3c:98:
ac:62:48:a1:07:ec:59:6f:ea:7e:25:f1:00:69:7e:
09:09:2c:3f:45:b5:4e:cb:46:15:bb:5d:76:36:f8:
15:39:e0:ba:ec:54:8c:8c:ee:cd:60:aa:9d:42:15:
cd:15:9e:63:f7:38:ba:e8:67:35:e7:7a:8c:ae:52:
58:e6:28:b6:fd:63:54:49:70:ae:40:2e:7c:ec:a2:
5e:8a:17:9e:19:93:8b:6b:82:be:aa:65:33:92:34:
94:ac:b2:bd:ba:2f:bd:25:f5:32:a6:ac:4f:38:9b:
4c:ac:18:57:08:af:0e:51:9f:0e:dc:b3:59:9f:40:
8a:24:be:7e:15:88:e3:72:9a:58:ac:21:ad:73:92:
8e:48:78:ca:0c:23:e0:78:a5:9c:71:70:ca:fa:7a:
e3:d8:f7:71:5c:21:ec:70:28:e0:62:04:e3:2e:35:
b0:92:ec:da:cf:dd:c1:1c:ab:04:ca:e3:66:67:74:
ce:58:45:79:64:95:b3:a7:d1:1b:47:3b:b9:ea:1e:
cd:9b:c1:2b:ba:92:3f:70:1f:a7:55:44:16:9f:b1:
63:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:0A:46:2B:30:F5:47:E4:D1:D5:D4:B6:20:C8:83:C3:19:44:4D:38
X509v3 Authority Key Identifier:
keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
63:48:30:13:4a:c0:af:6f:2b:b1:08:53:1e:43:6e:0e:17:8e:
2b:98:ef:04:71:4c:78:d8:46:a1:cb:fc:99:7b:8b:17:72:e1:
b2:41:71:f9:84:95:11:0b:28:8e:3c:05:ee:08:b1:d0:15:a2:
17:88:5a:7d:0a:e3:15:39:9e:7f:8e:cc:ac:67:99:d7:b9:3a:
23:1b:2b:ee:3d:55:b3:9d:7e:ae:fb:15:30:89:85:48:df:e7:
6f:36:50:e0:4b:a5:24:e3:01:01:83:01:d7:d8:0d:62:1e:12:
1b:3c:0e:14:fc:81:82:ef:03:06:c6:fa:2a:10:6d:80:cf:71:
57:86:e5:df:b2:d6:ad:59:ca:d7:2d:b7:b2:b2:c1:22:82:5f:
54:81:4b:b1:58:66:1e:a5:1d:ad:26:48:27:cf:10:8e:ea:5f:
f3:30:7d:4c:cc:9f:26:3b:15:41:07:81:1a:a3:f7:4e:d6:31:
e5:a0:75:f1:d1:a7:15:9b:48:fb:fc:02:b9:3c:ed:9e:3a:c5:
cb:57:1e:ee:3e:2f:f1:ca:9c:ec:67:67:d6:00:90:e8:cc:eb:
14:61:5d:2d:63:3e:68:08:bc:18:36:e3:b0:12:07:65:d7:da:
6f:4d:86:97:0e:04:20:ae:a1:9d:00:7f:7f:df:d5:db:de:94:
f9:88:6c:19
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICA5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz
MjA5ODYwMDIwHhcNMjUwMzI5MDEyMDUwWhcNMjUwNDA1MDEyMDUwWjAYMRYwFAYD
VQQDEw02N2U3NGFmMi01YjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAk8NuweUra9mG4U81goMX/pGLP2V047Atkqu9232TvcKhsky4Qhlc+TIwPJis
YkihB+xZb+p+JfEAaX4JCSw/RbVOy0YVu112NvgVOeC67FSMjO7NYKqdQhXNFZ5j
9zi66Gc153qMrlJY5ii2/WNUSXCuQC587KJeiheeGZOLa4K+qmUzkjSUrLK9ui+9
JfUypqxPOJtMrBhXCK8OUZ8O3LNZn0CKJL5+FYjjcppYrCGtc5KOSHjKDCPgeKWc
cXDK+nrj2PdxXCHscCjgYgTjLjWwkuzaz93BHKsEyuNmZ3TOWEV5ZJWzp9EbRzu5
6h7Nm8ErupI/cB+nVUQWn7FjJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEKRisw
9Ufk0dXUtiDIg8MZRE04MB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5
NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ
QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
MTIxNi9EQzc4MjY4Q0I5NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9M
TVk1NHhGRzI5V2N5Q1lZQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBjSDATSsCvbyuxCFMeQ24OF44rmO8EcUx42Eahy/yZe4sXcuGyQXH5
hJURCyiOPAXuCLHQFaIXiFp9CuMVOZ5/jsysZ5nXuTojGyvuPVWznX6u+xUwiYVI
3+dvNlDgS6Uk4wEBgwHX2A1iHhIbPA4U/IGC7wMGxvoqEG2Az3FXhuXfstatWcrX
LbeyssEigl9UgUuxWGYepR2tJkgnzxCO6l/zMH1MzJ8mOxVBB4Eao/dO1jHloHXx
0acVm0j7/AK5PO2eOsXLVx7uPi/xypzsZ2fWAJDozOsUYV0tYz5oCLwYNuOwEgdl
19pvTYaXDgQgrqGdAH9/39Xb3pT5iGwZ
-----END CERTIFICATE-----
Generated at Thu Apr 10 08:23:28 2025 by rpki-client