Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2258/638C3844CA8F11EC933AB211C4F9AE02/9Jo51DCJcORwLfKfHU3PUh8KUTU.mft
File: 9Jo51DCJcORwLfKfHU3PUh8KUTU.mft (raw, json)
Hash identifier: CKq1c6VwMbF5fKrD5+uT75ZLl53wUbXiLjyADDp2tN0=
Subject key identifier: 69:64:08:EE:5C:9C:A0:B1:0D:64:9A:82:A8:38:EF:CE:D5:6E:88:34
Authority key identifier: F4:9A:39:D4:30:89:70:E4:70:2D:F2:9F:1D:4D:CF:52:1F:0A:51:35
Certificate issuer: /CN=A91D2258/serialNumber=F49A39D4308970E4702DF29F1D4DCF521F0A5135
Certificate serial: 0309
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9Jo51DCJcORwLfKfHU3PUh8KUTU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D2258/638C3844CA8F11EC933AB211C4F9AE02/9Jo51DCJcORwLfKfHU3PUh8KUTU.mft
Manifest number: 0304
Signing time: Sat 29 Mar 2025 01:30:10 +0000
Manifest this update: Sat 29 Mar 2025 01:30:09 +0000
Manifest next update: Sat 05 Apr 2025 01:30:09 +0000
Files and hashes: 1: 9Jo51DCJcORwLfKfHU3PUh8KUTU.crl (hash: wGmMbFUFROiu0euc9IREAn9/xdk34u9vEGC+fCKBTaM=)
2: E27CA57ECA9111EC9F9A7513C4F9AE02.roa (hash: C1ezUxuL3ClkX3BgQjjS1dTVihRitOogxbbsy9SR+JY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 777 (0x309)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D2258
Validity
Not Before: Mar 29 01:30:09 2025 GMT
Not After : Apr 5 01:30:09 2025 GMT
Subject: CN=67e74d21-4204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:03:c0:d5:0d:72:c4:72:af:e2:db:bb:65:08:
dc:25:7e:99:52:80:b3:ac:f8:21:11:f0:11:64:15:
2f:20:9c:00:02:72:19:fb:1c:48:78:87:b5:ea:79:
e2:80:ed:99:bc:e2:a6:cc:4f:4f:76:f0:e5:29:3a:
e9:f1:f7:1c:e5:ab:be:ee:62:93:a8:4e:a6:eb:8a:
75:ce:28:77:1f:52:6f:d3:34:23:7e:ea:14:fc:38:
e7:e8:0a:68:f5:07:58:ad:64:a7:a5:b8:dc:df:38:
90:a5:7c:21:4f:d5:88:4a:e4:3d:08:a6:48:4e:64:
e4:fa:24:ad:70:84:66:22:ee:27:3c:5a:c3:a3:24:
51:49:12:0c:51:3f:16:27:35:d5:1f:99:48:aa:4e:
b1:d7:3e:a9:a4:07:2f:60:2e:0e:41:17:2f:c8:5d:
32:7e:f4:5b:0b:bd:b0:18:79:2e:d0:88:a4:e1:9e:
22:ca:8b:10:44:88:b1:30:1d:1c:a2:f7:6f:34:d9:
64:09:cd:1e:0f:8c:13:f7:f1:0d:ac:d5:79:9b:d1:
cf:99:ef:bf:3d:8d:02:95:3a:0f:3a:98:c3:d8:1a:
11:39:95:d3:a6:38:be:f3:47:28:eb:f3:9d:10:0d:
21:d8:2b:46:53:34:1e:85:97:24:16:0c:d0:e0:3c:
ef:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:64:08:EE:5C:9C:A0:B1:0D:64:9A:82:A8:38:EF:CE:D5:6E:88:34
X509v3 Authority Key Identifier:
keyid:F4:9A:39:D4:30:89:70:E4:70:2D:F2:9F:1D:4D:CF:52:1F:0A:51:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D2258/638C3844CA8F11EC933AB211C4F9AE02/9Jo51DCJcORwLfKfHU3PUh8KUTU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9Jo51DCJcORwLfKfHU3PUh8KUTU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2258/638C3844CA8F11EC933AB211C4F9AE02/9Jo51DCJcORwLfKfHU3PUh8KUTU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
34:67:36:54:dd:a8:ea:97:74:34:a7:c3:a2:22:ae:8a:64:e5:
ff:7d:2a:1d:51:27:77:3c:ff:0c:a0:7d:29:89:0c:71:40:2e:
42:14:79:bc:d1:bc:cb:51:a6:98:2d:7e:c3:ab:39:4b:a1:b4:
ce:48:71:ed:05:d7:1b:5c:64:a6:7f:0d:8c:32:8c:81:b9:28:
10:9a:e9:06:6a:33:ac:d3:5f:de:03:2b:29:03:98:9a:ac:52:
c3:fa:11:d5:ba:e6:2e:b5:69:a0:2e:7d:d1:aa:b7:0a:be:92:
8b:1d:84:94:27:a7:5b:fd:5f:23:90:ad:68:95:5a:e9:5f:55:
c1:e5:e1:4f:3d:0e:d2:88:17:22:54:f5:59:a1:35:e1:44:90:
a9:42:5c:5f:a2:86:37:07:c2:fc:d3:a7:9d:31:c8:dc:35:de:
8a:f3:26:68:72:10:fd:e7:a2:60:76:b6:de:d6:f8:2f:ed:bd:
fc:24:99:e5:be:d8:f6:ff:f7:17:cd:2b:5a:1a:0f:12:57:94:
e1:60:3d:5f:fa:e0:cf:6d:61:ea:a5:e1:e4:75:4f:bd:3f:64:
1b:26:e0:92:fd:3d:98:b8:fb:bf:91:d5:f8:cb:61:e8:68:73:
d8:65:17:25:28:c8:3f:4f:70:e5:86:ff:e8:c6:1e:11:36:59:
26:84:04:93
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDIyNTgxMTAvBgNVBAUTKEY0OUEzOUQ0MzA4OTcwRTQ3MDJERjI5RjFENERDRjUy
MUYwQTUxMzUwHhcNMjUwMzI5MDEzMDA5WhcNMjUwNDA1MDEzMDA5WjAYMRYwFAYD
VQQDEw02N2U3NGQyMS00MjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyAPA1Q1yxHKv4tu7ZQjcJX6ZUoCzrPghEfARZBUvIJwAAnIZ+xxIeIe16nni
gO2ZvOKmzE9PdvDlKTrp8fcc5au+7mKTqE6m64p1zih3H1Jv0zQjfuoU/Djn6Apo
9QdYrWSnpbjc3ziQpXwhT9WISuQ9CKZITmTk+iStcIRmIu4nPFrDoyRRSRIMUT8W
JzXVH5lIqk6x1z6ppAcvYC4OQRcvyF0yfvRbC72wGHku0Iik4Z4iyosQRIixMB0c
ovdvNNlkCc0eD4wT9/ENrNV5m9HPme+/PY0ClToPOpjD2BoROZXTpji+80co6/Od
EA0h2CtGUzQehZckFgzQ4Dzv7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGlkCO5c
nKCxDWSagqg4787Vbog0MB8GA1UdIwQYMBaAFPSaOdQwiXDkcC3ynx1Nz1IfClE1
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjI1OC82MzhDMzg0NENB
OEYxMUVDOTMzQUIyMTFDNEY5QUUwMi85Sm81MURDSmNPUndMZktmSFUzUFVoOEtV
VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzlKbzUxRENKY09Sd0xmS2ZIVTNQVWg4S1VUVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
MjI1OC82MzhDMzg0NENBOEYxMUVDOTMzQUIyMTFDNEY5QUUwMi85Sm81MURDSmNP
UndMZktmSFUzUFVoOEtVVFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQA0ZzZU3ajql3Q0p8OiIq6KZOX/fSodUSd3PP8MoH0piQxxQC5CFHm8
0bzLUaaYLX7DqzlLobTOSHHtBdcbXGSmfw2MMoyBuSgQmukGajOs01/eAyspA5ia
rFLD+hHVuuYutWmgLn3RqrcKvpKLHYSUJ6db/V8jkK1olVrpX1XB5eFPPQ7SiBci
VPVZoTXhRJCpQlxfooY3B8L806edMcjcNd6K8yZochD956Jgdrbe1vgv7b38JJnl
vtj2//cXzStaGg8SV5ThYD1f+uDPbWHqpeHkdU+9P2QbJuCS/T2YuPu/kdX4y2Ho
aHPYZRclKMg/T3Dlhv/oxh4RNlkmhAST
-----END CERTIFICATE-----
Generated at Fri Apr 11 16:29:20 2025 by rpki-client