Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft
File: NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft (raw, json)
Hash identifier: rIWx2w3gWrAvzsf6btACxVEC2Od/ohw6rVpnhU8haT0=
Subject key identifier: 1A:BF:A7:01:64:83:A5:D8:E1:DB:BA:10:30:7E:DD:F6:00:26:5C:C7
Authority key identifier: 37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A
Certificate issuer: /CN=A91DE7DE/serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A
Certificate serial: 1199
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft
Manifest number: 116A
Signing time: Fri 28 Mar 2025 17:22:43 +0000
Manifest this update: Fri 28 Mar 2025 17:22:43 +0000
Manifest next update: Fri 04 Apr 2025 17:22:43 +0000
Files and hashes: 1: NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl (hash: ahfPj+7nPH5WfjvNyEGEIZg+aMrdE8CsWk0LyYgTO0I=)
2: 7F7F1470091D11F0B7E95627C4F9AE02.roa (hash: hpmM9pfcrUFnNRets4Cm3b/cVvffA5StG3HyqAHQxOA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4505 (0x1199)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DE7DE
Validity
Not Before: Mar 28 17:22:43 2025 GMT
Not After : Apr 4 17:22:43 2025 GMT
Subject: CN=67e6dae3-7877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1e:47:42:88:7e:24:99:5c:e9:90:66:99:54:
31:9c:00:34:a1:9c:ad:c2:ea:6f:ad:6a:3f:86:da:
87:92:e6:10:68:d0:b6:e5:5f:df:16:fa:d5:a9:20:
a9:af:fb:fd:e5:1d:ca:46:1c:54:ea:b2:41:ed:b2:
fa:d3:33:8c:9a:f0:c2:3f:15:bc:1c:12:49:c4:9b:
40:12:f5:9a:17:7c:5c:6f:90:be:b4:62:07:76:be:
46:98:f9:05:6a:c0:21:8d:d8:1e:30:0e:e7:d7:b6:
fa:2d:53:17:26:89:08:a1:85:5b:ad:78:9f:5c:eb:
86:31:65:03:ed:34:91:94:3a:19:09:c7:14:33:6a:
ff:7d:1b:7f:a9:00:b0:eb:07:a4:df:3f:d1:17:0c:
6d:4e:a3:a5:32:ac:31:b2:f1:73:fb:41:92:6c:70:
a4:89:b4:6f:78:8b:e0:6b:1f:31:eb:3e:5b:c7:80:
3c:4c:53:eb:7e:cc:9c:cf:27:7a:9f:1c:1f:af:08:
7b:05:fa:b8:a8:0b:10:a9:1e:d4:8d:00:34:98:2b:
05:3a:2f:8a:e4:e5:9c:44:1f:8a:57:79:eb:5a:31:
41:7c:b7:cc:36:6b:08:9e:3f:5f:93:28:26:a4:b6:
2e:21:c1:ac:5a:03:da:cd:38:5d:c9:c4:16:44:12:
15:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BF:A7:01:64:83:A5:D8:E1:DB:BA:10:30:7E:DD:F6:00:26:5C:C7
X509v3 Authority Key Identifier:
keyid:37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
79:6c:36:96:2b:02:a4:50:20:cb:89:1e:c2:d5:41:4e:2f:fc:
b8:aa:6f:50:ce:79:d4:6d:b0:6d:73:eb:11:72:53:4f:0d:6f:
39:ec:61:a3:01:dc:97:23:a9:d8:df:9a:9a:4a:59:19:dc:4e:
e8:b1:7f:c5:3e:a0:f4:a2:21:8c:e6:8a:46:7b:73:f9:ef:78:
45:d0:76:45:ed:a7:1b:4a:97:b4:e8:47:cb:df:14:7e:6b:fc:
ab:f6:6d:7a:35:71:c0:86:f0:17:e1:fc:68:c7:6d:bf:81:b9:
73:2b:5b:e9:f7:28:d1:52:af:2c:f6:af:ba:ef:93:6f:5c:9b:
dd:46:9e:be:ec:04:6e:fe:b3:8a:83:8e:30:5f:77:c9:a2:c6:
5d:23:9a:cb:eb:e5:35:85:74:c2:e6:75:9d:cd:5b:d5:0b:c2:
05:07:27:e8:66:37:2f:cb:e0:8a:b7:40:f5:fb:a8:f6:52:fd:
2b:cf:12:b7:2d:43:98:1d:b8:77:30:71:1b:44:b7:15:7d:b3:
b5:42:6a:dc:a0:4e:18:93:21:ed:0b:7d:6d:d9:92:1f:8b:2f:
e5:db:0b:0a:76:32:41:e7:71:b9:79:bc:10:27:5f:78:ef:a6:
73:03:3f:99:b0:da:09:dd:dd:1e:c7:a0:b9:c6:ab:1d:31:6c:
34:0f:a1:28
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICEZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REU3REUxMTAvBgNVBAUTKDM3MTI3M0NGRDhDMkM5MDhCNjkxRDZCRUExNzVFOERF
ODJCRDQzOUEwHhcNMjUwMzI4MTcyMjQzWhcNMjUwNDA0MTcyMjQzWjAYMRYwFAYD
VQQDEw02N2U2ZGFlMy03ODc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxx5HQoh+JJlc6ZBmmVQxnAA0oZytwupvrWo/htqHkuYQaNC25V/fFvrVqSCp
r/v95R3KRhxU6rJB7bL60zOMmvDCPxW8HBJJxJtAEvWaF3xcb5C+tGIHdr5GmPkF
asAhjdgeMA7n17b6LVMXJokIoYVbrXifXOuGMWUD7TSRlDoZCccUM2r/fRt/qQCw
6wek3z/RFwxtTqOlMqwxsvFz+0GSbHCkibRveIvgax8x6z5bx4A8TFPrfsyczyd6
nxwfrwh7Bfq4qAsQqR7UjQA0mCsFOi+K5OWcRB+KV3nrWjFBfLfMNmsInj9fkygm
pLYuIcGsWgPazThdycQWRBIVXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBq/pwFk
g6XY4du6EDB+3fYAJlzHMB8GA1UdIwQYMBaAFDcSc8/YwskItpHWvqF16N6CvUOa
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTdERS9DRUUzRDcxODA0
RTExMUU5OEVBN0Q4NzJDNEY5QUUwMi9OeEp6ejlqQ3lRaTJrZGEtb1hYbzNvSzlR
NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL054Snp6OWpDeVFpMmtkYS1vWFhvM29LOVE1by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
RTdERS9DRUUzRDcxODA0RTExMUU5OEVBN0Q4NzJDNEY5QUUwMi9OeEp6ejlqQ3lR
aTJrZGEtb1hYbzNvSzlRNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQB5bDaWKwKkUCDLiR7C1UFOL/y4qm9QznnUbbBtc+sRclNPDW857GGj
AdyXI6nY35qaSlkZ3E7osX/FPqD0oiGM5opGe3P573hF0HZF7acbSpe06EfL3xR+
a/yr9m16NXHAhvAX4fxox22/gblzK1vp9yjRUq8s9q+675NvXJvdRp6+7ARu/rOK
g44wX3fJosZdI5rL6+U1hXTC5nWdzVvVC8IFByfoZjcvy+CKt0D1+6j2Uv0rzxK3
LUOYHbh3MHEbRLcVfbO1QmrcoE4YkyHtC31t2ZIfiy/l2wsKdjJB53G5ebwQJ194
76ZzAz+ZsNoJ3d0ex6C5xqsdMWw0D6Eo
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:25:01 2025 by rpki-client