Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft
File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json)
Hash identifier: 69utbV4xPNxgzbjUeRd/yyLbKbhRzO2itVXZR4D624o=
Subject key identifier: 6C:2A:13:71:EF:55:FF:6E:30:A8:3B:63:75:34:04:82:E2:1A:F4:AE
Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D
Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D
Certificate serial: 0490
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft
Manifest number: 0477
Signing time: Sat 29 Mar 2025 00:26:03 +0000
Manifest this update: Sat 29 Mar 2025 00:26:03 +0000
Manifest next update: Sat 05 Apr 2025 00:26:03 +0000
Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: UnE7z0ZjTnH021LlL1gwlKyL4A1XB0kimWj/xKgDvqQ=)
2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: tXoHtibATlzSAFpYW8FXeLBuzqLRo++NJ/KLRuKUVS4=)
3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 8/T20piCaEKmwex2vfHli1eA2pf6jywQnHESOXqs7Kg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1168 (0x490)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D3307
Validity
Not Before: Mar 29 00:26:03 2025 GMT
Not After : Apr 5 00:26:03 2025 GMT
Subject: CN=67e73e1b-303e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a2:30:06:0a:5c:03:cb:67:e7:8b:f5:f1:5f:
b5:55:f6:d7:1d:e6:cd:6d:73:eb:98:d6:02:d8:8c:
91:ff:48:d9:5c:4b:cd:a5:cd:97:e0:9b:93:b5:2e:
fc:f2:31:94:4e:b5:0c:49:4e:69:1d:a1:99:89:17:
f0:eb:f9:87:6d:5c:da:4d:33:e8:af:09:62:94:b2:
76:6b:ee:87:ac:59:72:31:32:23:d9:05:33:29:2f:
06:96:59:55:2d:2f:a7:f2:2b:33:3b:e7:82:34:1e:
bc:78:91:81:72:00:a4:3e:85:ee:24:43:ec:0c:78:
fa:59:c5:89:77:2c:91:47:aa:0d:78:1a:17:c5:71:
3a:db:aa:f5:ad:61:8c:b5:d9:6e:c4:14:e3:08:d0:
d4:01:d1:fd:c4:72:8e:a7:8e:38:20:96:e5:b1:f5:
05:1f:2f:64:cb:91:eb:b9:85:f3:b2:40:0f:2d:a4:
99:66:f8:a2:85:ba:08:4d:80:cb:3d:24:f3:35:56:
e9:22:60:5b:1e:35:8d:11:46:17:61:c9:88:78:d2:
a6:bb:ff:76:77:7f:d0:ef:26:d6:ac:81:8e:b9:3d:
74:ca:18:52:5e:71:6f:52:64:7d:22:a6:61:8f:5c:
81:5d:f9:ba:cd:0d:47:40:4f:d8:b6:ce:5d:fa:64:
a8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:2A:13:71:EF:55:FF:6E:30:A8:3B:63:75:34:04:82:E2:1A:F4:AE
X509v3 Authority Key Identifier:
keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
73:40:a5:2c:85:ba:2a:53:12:a5:c1:b6:5b:8d:f2:2d:8a:7f:
83:d6:28:0c:49:17:e1:b4:a9:62:41:65:fe:bc:58:dd:07:5e:
40:23:b2:10:1a:e7:c2:e7:97:5d:97:75:c3:04:d0:5f:63:e1:
b6:3b:49:3c:0a:48:c3:1a:02:e9:05:d9:e2:d2:ee:20:4b:ba:
ea:ed:1b:2f:f4:8b:67:21:5a:cf:ef:d0:9a:ef:17:30:36:e2:
80:e3:c1:e3:1d:6c:03:bf:4a:59:b0:56:84:73:21:a4:fd:ce:
b5:bf:f4:8a:06:14:c9:20:b7:b5:de:e0:9a:00:30:dd:6a:0b:
8a:21:df:32:59:c7:cb:6c:1b:ba:6d:38:44:37:52:2d:86:32:
46:35:98:2b:29:58:0c:58:c4:f1:8e:77:c2:9e:41:f8:76:11:
5f:0c:d2:64:cc:d5:d6:b3:4f:df:12:d6:a4:3f:3f:d0:9b:3c:
6a:ea:b2:45:f0:b5:60:5c:1e:e6:68:09:e4:92:5e:7f:72:eb:
f4:af:10:3a:83:f5:6f:54:e5:8b:4f:dd:8c:d4:fe:5c:62:8c:
54:25:1b:c7:f1:64:65:dc:51:5d:9f:b9:9d:8f:3c:c9:b4:a9:
fb:61:19:79:4b:4b:e5:03:a4:05:3b:f7:58:b9:a8:f0:4c:9a:
44:ee:fe:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:27:04 2025 by rpki-client