Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft
File: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft (raw, json)
Hash identifier: ka/3qba+HhHmqLGzo3MUBoGok4HLLCsDWV/OuLAOiTQ=
Subject key identifier: FA:0C:C6:25:D9:D5:25:87:A4:3F:35:E7:E1:17:DC:B0:06:20:09:90
Authority key identifier: 04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7
Certificate issuer: /CN=A91D425A/serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7
Certificate serial: 0AF4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft
Manifest number: 0AED
Signing time: Fri 28 Mar 2025 19:31:11 +0000
Manifest this update: Fri 28 Mar 2025 19:31:11 +0000
Manifest next update: Fri 04 Apr 2025 19:31:11 +0000
Files and hashes: 1: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl (hash: 3/qi0Te64O+hYo0PiHjG9GkxF+1qT7rLLR4+xZ/VmUs=)
2: 494B4070419C11EAAE836772C4F9AE02.roa (hash: Y3JTz6x7Gh76YU/+03lkuBO3MY94CeW1sP7iPG9gZfk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2804 (0xaf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D425A
Validity
Not Before: Mar 28 19:31:11 2025 GMT
Not After : Apr 4 19:31:11 2025 GMT
Subject: CN=67e6f8ff-04ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c0:4a:ae:7d:96:5d:04:22:96:93:41:af:ca:
64:6e:ce:c4:3c:83:51:60:04:37:c9:a9:72:71:6d:
d8:bc:0e:29:0e:55:49:0e:b0:c5:1b:49:de:51:12:
15:76:16:34:13:d8:25:94:4d:f6:df:9a:40:cd:c7:
c0:5c:f7:9d:88:e6:69:e3:01:41:6f:3f:4e:a8:ca:
6f:0b:fe:ff:47:c8:df:41:40:b0:1c:9d:5d:50:7f:
aa:90:b9:12:1a:12:e2:53:45:da:d5:e8:9b:7d:b2:
07:8b:5d:93:3a:6e:08:0d:11:3f:02:3c:bc:9f:65:
56:ee:b4:ba:f7:e7:15:4b:db:9c:13:0d:bc:4a:ec:
d7:77:55:f3:fb:7d:86:78:14:bc:09:71:cd:50:d0:
5a:e6:5b:ac:e8:8e:75:05:1a:80:48:8a:1f:ca:8e:
4d:63:56:2d:04:e5:01:34:d0:e5:17:1f:c7:6c:8a:
a5:a2:62:ee:b9:ee:3f:27:7a:4f:ee:f1:62:22:12:
70:00:52:92:83:a5:28:68:c5:4a:78:11:8b:58:02:
e8:63:8f:58:51:7e:ed:6e:39:4e:bf:da:ad:23:c5:
6d:5f:83:b3:d0:de:f0:37:18:62:74:15:ee:cb:e0:
ef:44:62:c3:00:4d:f9:46:50:6e:7d:95:2b:e4:c5:
76:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:0C:C6:25:D9:D5:25:87:A4:3F:35:E7:E1:17:DC:B0:06:20:09:90
X509v3 Authority Key Identifier:
keyid:04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
49:11:aa:60:22:e7:84:6c:db:04:2d:89:78:a0:9d:ba:23:78:
67:4c:3b:29:b7:6e:35:fb:82:d2:d1:bc:cd:bf:49:da:54:3c:
e2:10:f0:ba:1c:c5:50:fe:7c:ba:2b:e7:17:f6:81:68:c7:1e:
5e:48:8d:6e:46:ef:35:f8:c9:84:b5:4f:6b:0b:6e:5c:e4:fb:
27:76:0e:cc:37:e6:d6:46:92:6d:85:1b:87:0f:3e:41:f9:5f:
ce:3b:3b:dd:45:24:ad:da:13:f2:15:80:2f:0a:33:c2:e2:68:
ed:ff:e2:e2:55:ae:0b:c5:ae:6d:44:29:7e:c9:78:d7:b0:01:
4b:dd:80:c1:a0:87:07:f8:4f:54:d8:90:b8:91:1d:53:8e:ba:
d6:5d:11:78:f7:c5:d7:34:1e:12:36:4b:c1:7e:08:98:de:86:
28:a0:9f:06:17:f9:18:c0:78:ea:ef:e1:1a:50:b8:e6:fd:fc:
b4:41:44:87:d9:22:64:41:34:a6:57:b4:06:1f:5a:7f:be:b3:
c0:df:30:94:d0:9d:b2:f4:e8:f6:26:d9:b2:5a:3d:2d:ef:68:
07:44:1b:fd:c6:d6:21:c3:ab:e9:df:c4:9a:18:9c:bf:95:c4:
6e:11:79:42:7d:ab:58:26:30:a5:5f:a5:97:f5:bf:db:5e:78:
50:b3:70:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:30:17 2025 by rpki-client