Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft
File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json)
Hash identifier: VyQQOJjPNyWEaUMvJmKBVH9G6ZEg2Cb4xQ/Buz7KOYk=
Subject key identifier: CF:BD:74:22:1C:3E:AD:B5:D2:98:47:FD:47:A4:F9:7E:59:E7:A2:CB
Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93
Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93
Certificate serial: 03C2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft
Manifest number: 03B9
Signing time: Sat 29 Mar 2025 00:57:27 +0000
Manifest this update: Sat 29 Mar 2025 00:57:26 +0000
Manifest next update: Sat 05 Apr 2025 00:57:26 +0000
Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: Aa6pR8MHIazECDXNsl/Co8/ccdGEXMqSTup4XdeDBUQ=)
2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=)
3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 962 (0x3c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DFC30
Validity
Not Before: Mar 29 00:57:26 2025 GMT
Not After : Apr 5 00:57:26 2025 GMT
Subject: CN=67e74577-0825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fd:b9:e3:96:41:af:6e:f2:25:3e:f7:e1:d0:
b2:7c:a3:32:fd:ba:12:b4:c9:89:65:71:98:cb:9e:
3f:c0:e2:40:d5:2c:0f:00:c3:2a:95:74:aa:eb:c4:
16:77:b8:0f:10:51:be:93:7f:23:62:3b:54:8e:1b:
39:ef:fb:3a:12:a8:3b:c5:a9:13:84:84:8c:3d:68:
8c:83:12:7a:f3:32:25:ba:b8:07:3c:c3:7f:2b:5b:
f0:18:2f:4f:d6:1d:19:41:88:af:ff:95:85:3a:eb:
78:e8:4a:cf:1a:3c:d8:4b:d5:5f:de:3a:39:ce:a0:
6a:9e:e8:91:75:51:2f:b9:1a:35:57:93:10:b8:2b:
34:70:f4:65:e3:12:6e:ff:d5:1d:0f:d4:a0:ca:58:
c6:84:b9:9b:a5:23:50:99:7e:33:b0:3d:b4:f4:e9:
fc:80:f8:bc:f2:ba:a3:e9:55:f8:23:56:cc:45:ca:
dd:53:51:f1:66:c7:25:22:c0:a2:da:98:ea:b5:32:
84:9c:75:a5:ab:00:ed:8b:79:ff:eb:ac:eb:ec:d8:
fd:be:5e:b3:bb:84:44:c5:91:a8:f7:39:df:11:80:
f5:75:9f:d2:e0:c9:e0:5b:ba:1c:fe:c4:07:e1:cb:
7d:07:b1:cc:b5:fa:57:1b:b8:47:3b:72:4f:10:51:
4f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:BD:74:22:1C:3E:AD:B5:D2:98:47:FD:47:A4:F9:7E:59:E7:A2:CB
X509v3 Authority Key Identifier:
keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c0:68:7c:2f:7c:65:53:a8:8c:cc:64:67:83:93:51:4e:c6:9f:
99:4b:f2:86:7d:9e:a8:3b:d8:b8:2c:0e:80:e4:6b:a5:26:8b:
16:45:3e:c9:31:c8:17:24:a4:90:d8:d1:0e:22:f1:d8:3e:63:
ef:f9:ae:65:3d:03:f6:fa:24:3d:c0:f3:00:4c:15:8b:c0:b7:
de:51:a3:50:14:fe:bc:a6:e1:b4:c9:3f:9b:6b:1d:fc:ea:ca:
42:58:55:f5:a1:ed:be:5c:aa:ad:d7:83:81:30:7b:f4:30:ac:
b2:cd:f1:3b:c9:24:f1:b1:27:5b:b4:1e:60:ca:ab:35:c8:c3:
f9:d9:66:c2:3f:df:95:99:b6:f2:90:7c:d1:bb:4e:ac:1b:05:
42:82:44:f2:af:4a:39:30:8f:3e:79:27:9b:af:66:73:c0:06:
ed:bf:6a:40:05:a5:be:a0:b0:19:5d:5e:83:6d:39:c8:83:63:
9d:8f:27:dd:70:c2:20:fa:dd:40:03:c2:1a:5c:3e:32:95:db:
a0:ba:e2:79:a9:30:7a:41:1b:cc:42:5f:6a:8f:67:8a:be:d0:
f3:8e:da:66:e2:8a:0e:e5:73:6c:a2:fb:60:c4:b3:00:81:b9:
47:2a:59:72:98:8b:c9:69:fc:01:f3:51:80:39:e2:f0:53:d0:
cf:64:fd:f2
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICA8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx
RTQ5RUNCOTMwHhcNMjUwMzI5MDA1NzI2WhcNMjUwNDA1MDA1NzI2WjAYMRYwFAYD
VQQDEw02N2U3NDU3Ny0wODI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArf2545ZBr27yJT734dCyfKMy/boStMmJZXGYy54/wOJA1SwPAMMqlXSq68QW
d7gPEFG+k38jYjtUjhs57/s6Eqg7xakThISMPWiMgxJ68zIlurgHPMN/K1vwGC9P
1h0ZQYiv/5WFOut46ErPGjzYS9Vf3jo5zqBqnuiRdVEvuRo1V5MQuCs0cPRl4xJu
/9UdD9SgyljGhLmbpSNQmX4zsD209On8gPi88rqj6VX4I1bMRcrdU1HxZsclIsCi
2pjqtTKEnHWlqwDti3n/66zr7Nj9vl6zu4RExZGo9znfEYD1dZ/S4MngW7oc/sQH
4ct9B7HMtfpXG7hHO3JPEFFPUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+9dCIc
Pq210phH/Uek+X5Z56LLMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1
QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5
NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa
R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQDAaHwvfGVTqIzMZGeDk1FOxp+ZS/KGfZ6oO9i4LA6A5GulJosWRT7J
McgXJKSQ2NEOIvHYPmPv+a5lPQP2+iQ9wPMATBWLwLfeUaNQFP68puG0yT+bax38
6spCWFX1oe2+XKqt14OBMHv0MKyyzfE7ySTxsSdbtB5gyqs1yMP52WbCP9+Vmbby
kHzRu06sGwVCgkTyr0o5MI8+eSebr2ZzwAbtv2pABaW+oLAZXV6DbTnIg2Odjyfd
cMIg+t1AA8IaXD4ylduguuJ5qTB6QRvMQl9qj2eKvtDzjtpm4ooO5XNsovtgxLMA
gblHKllymIvJafwB81GAOeLwU9DPZP3y
-----END CERTIFICATE-----
Generated at Sun Apr 6 02:16:15 2025 by rpki-client