Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft
File: cFWB1AyVgaJlHlMlI42zvcs6fQU.mft (raw, json)
Hash identifier: t03VUMRQZUWEsjH1RaHwtyvaTfFNot4cCmvZDAQpJKM=
Subject key identifier: F3:E8:BE:EB:31:CE:78:A4:86:DD:2B:BD:F7:0C:D8:AD:8D:0C:B0:D4
Authority key identifier: 70:55:81:D4:0C:95:81:A2:65:1E:53:25:23:8D:B3:BD:CB:3A:7D:05
Certificate issuer: /CN=A91E1D91/serialNumber=705581D40C9581A2651E5325238DB3BDCB3A7D05
Certificate serial: 037D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft
Manifest number: 0374
Signing time: Sat 29 Mar 2025 01:11:38 +0000
Manifest this update: Sat 29 Mar 2025 01:11:37 +0000
Manifest next update: Sat 05 Apr 2025 01:11:37 +0000
Files and hashes: 1: cFWB1AyVgaJlHlMlI42zvcs6fQU.crl (hash: aJ08dPmHveldoTR+7XAObihnlsFSDMUNhS6lj2GCVss=)
2: 6CDC639EA04411EC8A7E5E2CC4F9AE02.roa (hash: WktAZLAHSw7QkU+hNH84sEG4OXo+/tq5XSlAqKGLv18=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 893 (0x37d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E1D91
Validity
Not Before: Mar 29 01:11:37 2025 GMT
Not After : Apr 5 01:11:37 2025 GMT
Subject: CN=67e748c9-a683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0c:81:ce:6f:a0:02:71:e9:9e:95:ae:6e:09:
2b:7d:1d:cd:6d:29:57:7c:d8:64:6c:f4:ee:a8:74:
bc:8f:e9:d8:a3:b0:fe:0f:7a:b7:fb:60:4c:fe:75:
73:be:3e:aa:8f:59:d0:5f:27:17:ad:b6:50:c1:6d:
c2:eb:58:0e:75:f4:5f:75:d1:c8:93:ad:12:d3:3a:
4e:25:81:21:9d:92:37:4e:86:f6:99:32:8b:e0:4e:
8c:b4:c5:7e:78:38:f9:38:fb:71:52:df:7e:4a:3d:
60:0c:bf:17:b1:02:93:10:94:78:08:25:a6:6b:d0:
ac:e5:a9:51:f3:6e:58:6d:ac:cb:9e:91:e3:60:22:
78:8f:bf:f3:3c:8b:2b:60:08:f4:1e:e7:aa:25:2d:
ff:b5:12:80:fb:f3:44:fd:a7:ec:f8:a7:8b:13:16:
16:5b:00:44:a8:98:1f:77:98:a4:90:95:80:c2:f2:
d0:fc:5f:ed:5f:e6:e2:19:b2:50:46:03:f3:fc:fa:
f7:6f:5f:85:58:62:58:0b:bf:1d:a6:ea:45:0f:3d:
f0:0a:a6:64:eb:0d:89:ed:9a:2e:33:7a:d4:0d:19:
de:a3:80:21:5f:6f:c1:91:58:94:6b:29:66:f9:1a:
16:26:45:72:fa:d2:69:1b:ab:9c:d1:60:fc:44:a4:
90:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E8:BE:EB:31:CE:78:A4:86:DD:2B:BD:F7:0C:D8:AD:8D:0C:B0:D4
X509v3 Authority Key Identifier:
keyid:70:55:81:D4:0C:95:81:A2:65:1E:53:25:23:8D:B3:BD:CB:3A:7D:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6b:14:37:46:1c:eb:66:26:e2:74:51:02:ae:59:70:dc:de:c8:
1c:53:9d:09:13:a5:a6:b7:3e:1f:3a:48:1e:10:17:9b:1b:22:
12:81:64:02:1d:38:9a:36:e0:be:8e:2e:9a:c4:67:b1:21:7b:
dc:7b:37:39:03:b4:97:96:1b:d1:87:30:12:a9:54:8f:5f:ae:
35:bc:88:62:19:e7:27:ba:b6:30:1c:03:fa:8f:d0:7f:b6:d7:
fe:51:30:47:c9:3a:60:0d:b0:c9:10:3e:d9:7d:ee:b7:3c:f4:
37:1e:be:90:64:64:9f:86:06:5a:85:2f:34:ef:9c:22:07:29:
70:56:17:60:dc:0a:ce:0d:bd:4e:83:8d:45:af:9a:d8:95:c5:
07:fd:31:d4:63:5c:57:b5:f1:87:83:cd:c7:6f:b9:48:5e:89:
d8:1e:13:8f:0a:d0:a0:43:3a:b3:99:39:ff:eb:38:aa:5f:e3:
38:92:8c:69:f0:2a:8b:b9:79:31:78:c6:b0:6e:24:64:fa:3a:
75:1b:20:c6:ab:ed:05:5a:cb:d2:2e:11:dd:e6:2e:0f:f2:f5:
45:ff:53:7f:5e:eb:5e:72:08:30:e9:f8:9e:c0:29:78:89:f8:
4e:32:b0:2c:a3:15:ba:96:f2:28:fa:8e:2d:68:46:48:41:b4:
31:07:1e:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:58:47 2025 by rpki-client