Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft
File: xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft (raw, json)
Hash identifier: JwEYiY8FBbXguSGOgXUnMFU0FiJ6Srl5S+fWCxmR/0E=
Subject key identifier: C9:CF:B2:0B:A3:DE:CE:23:07:C6:1D:C4:9F:61:4C:6E:4D:0B:58:F9
Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39
Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539
Certificate serial: 040F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft
Manifest number: 03E3
Signing time: Sat 29 Mar 2025 00:53:27 +0000
Manifest this update: Sat 29 Mar 2025 00:53:26 +0000
Manifest next update: Sat 05 Apr 2025 00:53:26 +0000
Files and hashes: 1: xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl (hash: 1iR70R0HVVOXSBPokw9/WH35oiL0NmxnucrgCgyroGc=)
2: 5CA964A68AC111EC91D19A11C4F9AE02.roa (hash: JDhvBxRe3WYJ1iKQKnxqCUD2z2C21JJ9nqsXsWXBpYM=)
3: 6F8A81CCF30C11ED94750772C4F9AE02.roa (hash: QNRRPIEXpBXbzOjvogyb/5EofzlDIH5pOqmalYkDTHw=)
4: 86131D8AEA5D11ED80641166C4F9AE02.roa (hash: pOC7yi76swQlUgILehboMwNcNI7fxV+UlNvd0wZTls0=)
5: 8FD0B12E400311EEBF5A8B52C4F9AE02.roa (hash: QSRbYccf6zSEHa0HsQVgKCVz5nS1O8L5U8Elot2Xz40=)
6: D46B2C087F8711EC81E76A59C4F9AE02.roa (hash: R3jOsVUDlgPUNcLVjE2JxsnxeughPhg0TvY+Ytf4478=)
7: D83192B0152B11EE85ED4B1DC4F9AE02.roa (hash: 8STPYAJJhsqxveLpZRzmdl9yhMuww2dhMQO1WbQeNbU=)
8: 5F14A15442D111EF8424E65BC4F9AE02.roa (hash: +sir/1Ip5eUjrTrKzP4T0efIjhcNSv/WtmTYay9OtXs=)
9: C3261EF826DF11ED94E18118C4F9AE02.roa (hash: 7KI+xGonwsZRICria/4CZwlDNlRIuXU/wVts22Crf9U=)
10: 350FEB88D40611EDADEE3D1EC4F9AE02.roa (hash: fPCfFsxMUqOAvLJmkWjc+RPsiCNLjQ233XGNCqOiY/w=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1039 (0x40f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D51A0
Validity
Not Before: Mar 29 00:53:26 2025 GMT
Not After : Apr 5 00:53:26 2025 GMT
Subject: CN=67e74486-048b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f2:b3:ca:fc:ec:07:ed:b9:c2:c4:fa:6b:64:
e5:f3:08:43:be:99:68:86:95:cd:d4:1d:dc:81:51:
6f:d3:13:00:3e:18:9a:a5:c7:6c:66:6a:29:bd:08:
4b:c2:8a:75:1f:fc:59:af:7b:79:2f:f6:ae:ae:00:
5c:48:08:fe:40:62:4d:bf:56:0a:f6:9b:0e:88:aa:
30:b8:8e:45:20:6e:53:be:c9:78:c9:07:7b:4f:07:
21:c3:85:9a:68:86:8f:de:cb:8e:54:32:cb:e3:20:
57:9d:bb:0c:12:62:cf:c6:d7:ac:e2:40:94:f5:5a:
7d:d0:54:35:27:70:09:6b:19:50:1c:c3:8b:53:73:
79:38:8b:57:e6:25:d8:98:61:22:da:e4:26:39:bc:
a9:14:fb:d2:96:ee:3a:ce:a5:88:c1:49:bd:de:a1:
21:66:1d:3d:dd:a5:9d:6c:65:22:c7:6a:c7:23:79:
ba:30:88:9e:81:e3:25:b8:b4:73:be:0b:7a:77:c8:
1c:29:d5:f7:cc:d9:f5:ac:37:37:a9:65:d1:94:d0:
73:c4:d3:26:d0:86:ee:24:15:41:50:b2:ac:a0:9b:
22:3c:26:34:2c:f8:77:05:af:33:e7:37:6c:f0:f0:
25:48:59:a9:db:9e:1a:56:17:1c:85:0a:50:b0:01:
f8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:CF:B2:0B:A3:DE:CE:23:07:C6:1D:C4:9F:61:4C:6E:4D:0B:58:F9
X509v3 Authority Key Identifier:
keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
03:a6:30:e1:14:ef:09:cf:6d:77:55:b4:fc:84:1b:b9:e7:bb:
bb:5f:e4:47:22:f8:37:56:e4:03:7f:ca:3d:d5:d8:c9:6b:85:
01:93:b2:c1:96:b0:65:d6:e8:32:a4:54:54:05:fd:20:c3:f1:
7b:5c:d8:59:9b:23:e3:2f:5c:b2:51:2e:d5:08:c5:7b:e5:39:
40:61:4b:f1:4f:e1:dd:ec:32:36:9d:06:5f:a6:24:45:a4:84:
6d:4e:5f:85:8b:ec:40:f6:0a:ce:3e:75:8c:db:c0:e5:59:fe:
b1:52:b9:b7:fc:2c:7b:73:50:5b:7a:b8:95:84:12:06:d1:bc:
68:f8:c1:e7:ba:4f:2a:da:0f:3e:c7:69:b4:f3:b2:85:45:71:
8b:21:d2:04:25:87:0f:2d:29:08:a0:db:0f:e3:11:35:8e:09:
a3:60:de:e3:81:47:9c:74:75:5c:d3:d4:f4:f1:76:f4:27:85:
fa:11:71:c4:d6:b2:c6:40:c4:c7:4c:ff:e7:94:20:e0:d6:b7:
bf:fb:85:84:62:20:6f:a9:28:c0:61:9a:6c:fa:54:62:04:8d:
71:a9:d6:93:87:c3:6f:28:0c:f4:12:4d:f0:a8:16:d0:79:0c:
15:bb:40:b5:6c:28:38:b3:6f:21:46:b7:b9:e9:62:33:14:4c:
69:45:59:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:51:04 2025 by rpki-client