Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.mft
File: 67tHPRcLa4MG0eFsi5UjNK3UDxA.mft (raw, json)
Hash identifier: DvstgKfe6Yn/u76Q4qUVVhsJUPecv4DW7J5ePlPkTh0=
Subject key identifier: C9:16:39:79:8D:03:2F:5A:12:EC:4C:25:E4:A8:45:A6:81:10:49:42
Authority key identifier: EB:BB:47:3D:17:0B:6B:83:06:D1:E1:6C:8B:95:23:34:AD:D4:0F:10
Certificate issuer: /CN=A91D9F5A/serialNumber=EBBB473D170B6B8306D1E16C8B952334ADD40F10
Certificate serial: 0769
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67tHPRcLa4MG0eFsi5UjNK3UDxA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.mft
Manifest number: 075F
Signing time: Fri 28 Mar 2025 21:47:00 +0000
Manifest this update: Fri 28 Mar 2025 21:47:00 +0000
Manifest next update: Fri 04 Apr 2025 21:47:00 +0000
Files and hashes: 1: 67tHPRcLa4MG0eFsi5UjNK3UDxA.crl (hash: IyL7/E8sOSq3XpxxrkhLyMjdJZpDXLBU2jBYPMuAerc=)
2: 1ACA9A7011BC11EBA0759F52C4F9AE02.roa (hash: 1/WmY9YBhKiu5MIvT1vmw+1SrQM0aVWoRuNlt6WnK0s=)
3: 1A0FD01411BC11EBA0759F52C4F9AE02.roa (hash: 0XN9EZ4o4OF/LsbCrndQVN6EKGwIuwGsOPBGXuiVcqo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1897 (0x769)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D9F5A
Validity
Not Before: Mar 28 21:47:00 2025 GMT
Not After : Apr 4 21:47:00 2025 GMT
Subject: CN=67e718d4-08c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:12:82:46:cc:67:43:18:0f:ac:27:be:97:51:
40:e2:0e:f8:2a:20:c2:b0:46:ae:43:fb:38:6b:bc:
95:8b:10:2e:69:b9:66:b0:af:96:fb:34:3a:3c:91:
69:ab:f1:ff:62:70:4e:e8:dd:bb:8c:0a:dd:54:45:
a8:82:5d:57:c6:fe:b3:d8:c6:6e:68:b7:9e:e3:cd:
f5:c5:27:bb:ec:fd:19:90:1b:90:8d:00:86:f2:59:
84:db:b9:c7:b0:d0:f1:55:ce:be:a0:52:02:c1:87:
4f:57:86:b4:4b:0e:b0:ca:20:ee:e1:46:be:d5:3e:
80:bb:00:d3:7a:b4:d5:38:b5:a5:84:4f:21:9f:17:
5c:f0:02:fa:ea:3c:d4:3c:97:d1:2d:0e:97:eb:c1:
29:d5:a7:03:49:19:a8:9a:62:aa:9b:8b:0f:29:24:
70:30:04:e1:a7:7e:d4:b6:1f:a2:fd:4c:94:76:24:
3b:72:c6:10:9c:63:07:10:04:ae:6a:58:00:69:ca:
03:6f:6d:28:88:68:2a:a4:16:ce:ad:50:71:a5:0c:
70:e1:54:8b:d8:2e:7c:92:b8:ac:a0:2f:51:d5:ca:
1d:c3:1d:34:20:ab:e8:15:04:a1:b4:2a:51:63:7f:
ba:06:14:95:2e:1f:63:bc:db:9d:a7:22:cf:2d:7e:
d4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:16:39:79:8D:03:2F:5A:12:EC:4C:25:E4:A8:45:A6:81:10:49:42
X509v3 Authority Key Identifier:
keyid:EB:BB:47:3D:17:0B:6B:83:06:D1:E1:6C:8B:95:23:34:AD:D4:0F:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67tHPRcLa4MG0eFsi5UjNK3UDxA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
22:fa:7a:a2:f0:5a:1f:59:c4:11:02:2f:85:19:2d:e0:08:f6:
32:cc:2a:d9:82:a4:ae:9e:3d:5d:74:26:f2:d7:44:ea:10:ae:
5c:05:ab:4b:42:4a:a0:17:9c:ce:17:30:7a:17:c2:ec:60:87:
d9:3f:8b:80:39:55:5a:23:fc:33:1b:b7:19:f9:9d:00:93:12:
b6:04:8e:de:12:40:06:d2:ca:5f:60:9d:ed:50:62:a7:b3:a5:
a9:5c:51:e2:b0:7b:91:47:39:48:72:97:62:ab:ce:8d:07:89:
62:29:1c:c8:6f:27:ef:44:4d:5a:af:85:7c:20:0d:54:e5:51:
35:e6:6d:7f:1c:cf:04:fa:82:3a:0e:09:dd:66:b9:75:00:e4:
56:8e:44:bf:87:85:e5:e9:53:c8:df:fd:b0:d4:7b:38:e5:0b:
3b:0e:58:4d:75:61:51:0c:f0:e7:5c:5f:2f:7b:df:af:91:0d:
32:ab:66:ee:0a:6f:f3:93:89:f9:2c:b5:e0:d6:e0:5c:37:bf:
5c:54:2d:20:a1:3c:d5:11:b9:f2:fe:2c:05:7d:bc:15:9a:14:
70:2f:0c:55:0e:31:5d:d3:59:eb:10:23:42:0a:4d:b4:c0:d1:
1d:cf:4e:fd:8f:12:37:51:9d:d7:ad:d0:47:35:e3:f3:07:66:
86:b7:31:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 12:34:52 2025 by rpki-client