Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.mft
File: S9mZS8XP-ey2aDyU3G7s1e7uDng.mft (raw, json)
Hash identifier: MymhJ3v+tXqlTNf1UYysV8pW9Y/s2bVCOUWgVeg1Ass=
Subject key identifier: A8:8D:65:2D:B9:E9:5D:0D:98:9E:B2:D6:95:DB:E4:14:A7:26:01:4F
Authority key identifier: 4B:D9:99:4B:C5:CF:F9:EC:B6:68:3C:94:DC:6E:EC:D5:EE:EE:0E:78
Certificate issuer: /CN=A91E00FC/serialNumber=4BD9994BC5CFF9ECB6683C94DC6EECD5EEEE0E78
Certificate serial: 09CE
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S9mZS8XP-ey2aDyU3G7s1e7uDng.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.mft
Manifest number: 09C2
Signing time: Fri 28 Mar 2025 20:15:13 +0000
Manifest this update: Fri 28 Mar 2025 20:15:12 +0000
Manifest next update: Fri 04 Apr 2025 20:15:12 +0000
Files and hashes: 1: S9mZS8XP-ey2aDyU3G7s1e7uDng.crl (hash: dDoOQ+mUSUliNKeNJWIMJkbjK6lQyK3NhXdrnVk1Vnk=)
2: CD26CAC0431611EE80B53A75C4F9AE02.roa (hash: PN8KDNG+lfB8OMD8c5W9WAaHU3MIVkDLw5J7GhvF+L4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2510 (0x9ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E00FC
Validity
Not Before: Mar 28 20:15:12 2025 GMT
Not After : Apr 4 20:15:12 2025 GMT
Subject: CN=67e70351-ae1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:30:1c:d0:b6:ed:80:48:e7:40:f4:a6:05:7c:
e4:4c:d3:f3:d5:7c:1d:14:d2:78:c9:78:99:d2:6c:
94:2c:11:bf:b5:c9:ea:0a:60:8b:1c:e3:3f:9d:be:
cd:ef:80:08:4e:c9:89:d7:35:4e:55:57:7a:4c:85:
32:25:65:03:38:22:89:12:6d:a0:5e:96:cd:9e:e2:
78:81:0d:af:63:7b:9e:8b:7c:ba:40:d8:4d:04:61:
9a:62:dd:44:f0:e7:ff:50:ce:9c:b6:07:e7:08:f6:
8a:3b:69:7f:f1:02:59:d7:97:66:44:17:ba:0b:b5:
88:56:e0:8a:17:b6:cd:7a:5a:df:44:a1:57:61:25:
52:eb:99:86:82:c0:17:20:6a:0d:9a:40:24:66:5e:
09:b6:69:a0:d0:6a:09:01:6b:9b:e7:57:d7:2c:8a:
f7:17:f4:00:e6:f3:f7:6e:55:09:f3:ae:41:e6:44:
ba:45:eb:02:65:46:50:06:59:93:ef:b7:1b:62:bc:
2d:f5:7e:dc:6d:71:31:ba:49:fb:53:de:35:03:bf:
ab:d6:8c:08:60:ad:b1:1b:7f:46:f2:36:29:de:6c:
68:c8:56:8c:24:3b:1d:58:7c:41:42:d4:7a:c7:79:
93:62:5b:34:7a:b9:b5:f6:5d:ab:b8:39:0f:91:d2:
52:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:8D:65:2D:B9:E9:5D:0D:98:9E:B2:D6:95:DB:E4:14:A7:26:01:4F
X509v3 Authority Key Identifier:
keyid:4B:D9:99:4B:C5:CF:F9:EC:B6:68:3C:94:DC:6E:EC:D5:EE:EE:0E:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S9mZS8XP-ey2aDyU3G7s1e7uDng.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c4:7b:72:46:32:1a:ee:b2:ff:27:a4:b6:c1:62:f9:9e:cf:dc:
73:34:17:00:e1:29:49:05:27:0f:c5:ef:43:06:7f:e1:7a:a5:
95:56:36:ba:35:d8:64:63:34:ea:7b:b7:03:97:59:63:7e:68:
48:77:e9:6b:6b:e8:ce:8a:95:c8:76:3e:40:c1:9c:bb:9e:ce:
42:fc:d5:d1:49:63:d7:76:de:84:57:0c:9f:43:6e:5d:c5:a3:
c5:da:be:0b:17:3d:bf:af:2f:4f:fc:49:cc:75:39:c0:5c:8b:
aa:09:a6:e4:fb:c8:9b:8e:a4:6c:04:ec:93:2c:3e:9a:d6:0c:
e2:7c:c9:e9:49:25:73:c9:b8:6b:12:c3:81:f5:82:bc:2b:46:
4e:e2:79:9d:38:20:72:92:07:08:c0:12:a6:3f:9f:3f:f1:e2:
4a:ab:d7:86:75:21:37:ba:64:37:43:b3:89:d1:2f:cb:bd:22:
6b:1a:b7:db:28:2a:4a:c6:6c:d9:00:9f:99:24:a5:13:67:5f:
21:fa:3e:c2:fa:ed:04:a8:5f:3e:b6:bd:3c:1a:36:fd:75:72:
01:8f:8e:22:82:91:fd:75:06:cb:e0:ff:ae:3a:d3:bd:9c:b3:
a9:39:ca:1f:6b:b3:52:5b:af:00:1e:74:79:a6:b9:2b:25:80:
bd:88:b6:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:48:08 2025 by rpki-client