Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/DZhBj4TCLONROV4eXE1dka5g_h8.mft
File: DZhBj4TCLONROV4eXE1dka5g_h8.mft (raw, json)
Hash identifier: J1it8T+9NEzj0Mu8iQkVt4/TK2lZPxVrZcxiYYsBSC4=
Subject key identifier: ED:F0:FE:75:B1:B1:1E:73:3F:A2:28:2E:58:26:67:D9:5F:38:02:3D
Authority key identifier: 0D:98:41:8F:84:C2:2C:E3:51:39:5E:1E:5C:4D:5D:91:AE:60:FE:1F
Certificate issuer: /CN=A91DED5A/serialNumber=0D98418F84C22CE351395E1E5C4D5D91AE60FE1F
Certificate serial: 02FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DZhBj4TCLONROV4eXE1dka5g_h8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/DZhBj4TCLONROV4eXE1dka5g_h8.mft
Manifest number: 02F8
Signing time: Sat 29 Mar 2025 01:32:15 +0000
Manifest this update: Sat 29 Mar 2025 01:32:14 +0000
Manifest next update: Sat 05 Apr 2025 01:32:14 +0000
Files and hashes: 1: DZhBj4TCLONROV4eXE1dka5g_h8.crl (hash: NlsFQbk74+B6HLDzD/YA1eehCQGuo3B9lWLfA1Hk3KU=)
2: 26DB1136FDFC11ECBB977313C4F9AE02.roa (hash: ATHtpOo5iB32fJStBSLmEkpBLzW5yPkGZ3s+RacPoK8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 765 (0x2fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DED5A
Validity
Not Before: Mar 29 01:32:14 2025 GMT
Not After : Apr 5 01:32:14 2025 GMT
Subject: CN=67e74d9e-39ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:60:c4:99:28:93:06:9d:a8:7f:fd:6f:2e:7f:
67:63:7a:bd:34:1b:24:a1:b0:80:74:bd:05:59:57:
08:22:e9:a4:67:db:bb:7b:d5:55:56:ed:83:5c:a5:
35:b9:d8:a1:47:4a:b5:d5:b4:e2:b7:30:ae:87:04:
96:29:57:f0:19:b6:19:ab:56:46:68:f6:aa:94:fb:
bb:19:ba:df:50:67:1f:6c:d0:7b:a1:0e:7e:25:85:
0f:d1:1e:ab:5b:33:8a:a7:58:1d:cf:ff:f7:c3:a9:
d0:22:57:df:fc:6d:e2:25:16:93:44:48:53:09:da:
4f:00:a4:0d:c4:44:92:33:b6:ae:24:15:d4:a7:fe:
22:a1:94:2e:32:de:8f:85:72:3c:48:a2:33:58:2a:
bc:3f:30:7b:1c:f9:51:2b:29:18:56:c4:c7:0e:4c:
c3:54:74:4f:ce:63:ca:8b:a3:e3:37:98:f7:8a:ff:
a6:8f:7d:68:52:85:4f:f1:2d:7d:45:69:42:b9:e1:
cf:87:50:bd:54:36:f5:fd:24:c2:f3:1e:5d:f3:53:
2d:59:8f:c7:f6:28:88:e1:ec:ca:03:ef:93:b3:ae:
74:ce:78:e3:19:e3:a6:e3:73:09:95:ef:36:07:80:
fd:0d:4d:d2:e2:de:54:b3:55:c6:91:55:fb:6a:59:
a3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F0:FE:75:B1:B1:1E:73:3F:A2:28:2E:58:26:67:D9:5F:38:02:3D
X509v3 Authority Key Identifier:
keyid:0D:98:41:8F:84:C2:2C:E3:51:39:5E:1E:5C:4D:5D:91:AE:60:FE:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/DZhBj4TCLONROV4eXE1dka5g_h8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DZhBj4TCLONROV4eXE1dka5g_h8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/DZhBj4TCLONROV4eXE1dka5g_h8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2a:a1:bb:af:eb:c1:d7:d7:25:03:1d:8c:a9:7c:8a:38:8d:49:
11:24:8c:4f:d7:a9:ab:ac:b8:87:c6:4a:68:3c:e9:f2:59:d9:
3a:34:8f:8f:0d:6a:57:a6:84:e5:2a:a8:14:66:f3:a1:00:ae:
83:30:f8:3a:d6:73:48:fd:db:2e:5d:31:1f:2d:8b:ce:6a:cf:
11:55:98:4c:17:55:a5:c5:43:25:e6:bf:06:49:2f:f2:83:91:
88:92:08:3d:fa:39:19:89:3d:32:34:c1:a8:92:bd:c8:01:48:
62:33:46:63:bf:76:cc:a2:fe:22:af:59:91:b7:33:91:1f:30:
8c:e5:03:0b:9a:9e:46:2b:1e:c2:ae:9d:24:df:43:6f:82:4c:
80:48:a3:8e:f6:b2:57:b4:94:41:cb:56:44:ad:29:61:11:9f:
51:db:43:ad:51:97:98:0e:49:7f:5a:2e:4f:8a:4f:f1:ba:23:
e7:8e:56:61:27:33:e3:74:97:3a:2b:ad:e3:ab:d0:f9:ed:20:
f1:bf:a4:08:b6:d3:b3:c3:7e:f9:d8:63:f8:8d:cc:c1:f6:50:
55:8a:ed:85:0b:0b:35:cc:20:b0:b5:d4:78:ef:34:33:3d:8f:
d6:c8:35:89:af:a1:63:43:88:a6:52:a6:1b:0d:f3:a3:a3:ba:
f2:5c:0b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:47:51 2025 by rpki-client