Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft
File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json)
Hash identifier: n/SaM8jFyY5z7D8yI0uxxPcB+XvMUD1T0mpnOTZ40+Y=
Subject key identifier: D8:00:A2:6D:56:D4:F8:7F:F5:7A:57:C3:D3:27:9D:C6:57:00:A0:A2
Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17
Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17
Certificate serial: B5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft
Manifest number: B4
Signing time: Sat 29 Mar 2025 05:21:28 +0000
Manifest this update: Sat 29 Mar 2025 05:21:28 +0000
Manifest next update: Sat 05 Apr 2025 05:21:27 +0000
Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: oOuDZBA4HGaeEEpoI5dcFM+j2O22cINPZj4XsmolK+k=)
2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 1mGAGUdcHgzIXHfMP/sj7r20tyRJ1V+9II4lN7eXdqI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181 (0xb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DC459
Validity
Not Before: Mar 29 05:21:28 2025 GMT
Not After : Apr 5 05:21:27 2025 GMT
Subject: CN=67e78358-1a8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e1:44:24:ef:22:df:7b:81:79:9e:2a:91:64:
d6:9c:de:6b:c3:30:e1:68:f2:6f:8f:2a:7d:5b:92:
30:c7:c7:11:31:f7:c6:76:1a:af:69:cb:10:c0:8a:
7a:80:70:10:73:c6:28:08:f5:fd:6a:cf:5c:ea:b1:
90:c9:31:fd:f0:e4:14:50:bd:94:d1:df:d3:6d:2e:
e5:db:66:34:94:92:e3:76:b0:85:e2:26:13:03:44:
0f:a9:a5:29:71:0e:43:86:fe:d2:8c:14:10:dd:55:
e2:87:e7:22:85:3d:8c:c9:98:72:52:43:7e:d8:76:
e4:b0:f0:a1:20:83:37:93:53:c4:61:af:f6:6e:2b:
ea:d2:12:95:6a:b7:f0:07:d4:43:90:60:6c:3e:2a:
af:89:22:d0:64:bb:60:bf:c5:b6:99:2f:5e:18:c2:
fb:b2:2f:e4:c5:09:6b:57:c7:f7:46:63:cc:4c:36:
e6:8c:2b:a1:ba:60:b2:6e:07:a1:ee:17:5f:c9:5c:
90:a7:97:44:3f:a6:ca:4d:3f:28:b0:75:1f:79:70:
37:e2:fb:5d:50:37:26:f8:1a:4c:46:5a:35:f0:34:
92:6b:b6:02:7e:4a:0c:c5:9a:8b:dd:2a:5f:9c:67:
84:ce:4b:52:3a:1b:32:43:45:85:8d:aa:85:8e:49:
98:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:00:A2:6D:56:D4:F8:7F:F5:7A:57:C3:D3:27:9D:C6:57:00:A0:A2
X509v3 Authority Key Identifier:
keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b3:b7:f3:b4:9c:3f:4f:f0:db:cb:7d:9a:4c:13:e1:f0:15:36:
6d:e2:99:d2:6f:67:43:33:9a:53:b1:dc:9f:66:a9:4c:85:0c:
74:77:fa:1a:6f:fe:84:22:ea:5a:c0:d6:de:16:c3:04:37:74:
92:c9:31:9b:40:c6:3c:0b:a8:23:f7:1d:d9:d5:b4:82:d8:6b:
1e:1b:bf:28:51:b3:29:fa:c3:69:70:b0:fb:9f:f9:4b:64:bd:
99:db:29:c5:b9:bb:31:04:17:4b:e3:9c:20:d8:92:19:b7:13:
21:0e:0e:c8:c1:03:1e:d1:9a:9e:24:ef:56:76:30:d7:34:dc:
ef:74:ee:a1:fb:83:e5:e8:e2:1c:bb:f7:88:36:89:26:b2:ed:
e8:77:4c:93:41:3e:2f:b1:6f:f9:a2:f9:eb:3f:cc:58:f7:89:
3c:bf:ac:03:0d:57:4a:41:e1:0d:b5:c4:c4:2f:c0:36:ff:5c:
7a:12:bd:bf:b2:f3:78:a0:ee:08:f2:09:37:a7:84:a5:82:66:
22:39:39:e3:da:18:5d:9c:f8:f3:c7:5a:61:2f:e4:2e:6b:6f:
83:0c:39:a7:75:c3:0d:06:c3:e2:f7:2e:e6:e5:48:6d:9e:ca:
f0:3c:c8:5b:b8:75:44:d2:39:ac:9b:78:60:62:d1:5f:f3:4d:
62:4f:22:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:52:41 2025 by rpki-client