Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft
File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json)
Hash identifier: gxeXSYN6zXZidKzHTSal/WN8lWzG2WnpkZ5iFkvOeUE=
Subject key identifier: 48:2D:10:2A:76:0E:89:FB:5F:E5:F0:01:3C:47:13:48:42:E7:AE:04
Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3
Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3
Certificate serial: 0A16
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft
Manifest number: 09F8
Signing time: Fri 28 Mar 2025 20:07:08 +0000
Manifest this update: Fri 28 Mar 2025 20:07:08 +0000
Manifest next update: Fri 04 Apr 2025 20:07:08 +0000
Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: oZQyTxmGEMnh1tVxn8dA/cyIC94f6370oSIgX7TgSq4=)
2: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: G01L1XLnOeHPHEOBsipJ57Qla0AD5wDZb1QdjAc+xSg=)
3: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: t6ZMY4L5BwCt1IMJhlimNMIeL0Ws6WTTcjT9QCJWlnU=)
4: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: ytlftfyFWjiXKIbSy8izVb+CXXbL9qxoIXy1hZ6RR08=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2582 (0xa16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E734C
Validity
Not Before: Mar 28 20:07:08 2025 GMT
Not After : Apr 4 20:07:08 2025 GMT
Subject: CN=67e7016c-32d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:20:d5:22:c8:ae:52:c0:df:0c:44:c3:10:33:
6b:f8:67:f1:5c:e6:8a:3a:a1:cf:c4:fd:ee:48:8b:
4f:59:b6:ee:bb:7d:6f:92:dd:48:c1:88:96:51:f1:
7f:87:5b:55:43:a3:e3:b0:6f:1d:a6:a6:9d:61:39:
12:4a:96:34:dc:10:2e:f4:4b:8e:8d:86:e7:8b:dc:
fb:03:c0:b5:5e:b5:58:05:8a:b6:f9:01:3c:a2:62:
60:53:76:1a:f1:f7:ce:99:7a:f5:18:e1:b6:d7:74:
5f:69:96:d6:41:5d:9e:ca:07:00:56:e2:6a:0d:d2:
37:fa:ef:17:e8:dc:78:ef:44:88:15:6f:7a:fe:01:
1e:2d:cb:02:91:5d:bd:1e:53:71:57:3b:e1:49:0e:
c4:de:af:a8:49:cd:94:65:14:9b:60:c2:86:6b:cc:
cf:4c:97:1c:d0:0d:bc:18:30:95:85:1c:f9:cb:fa:
b0:8f:96:91:57:97:b3:d7:23:87:18:5f:40:fe:e6:
de:0d:38:76:af:75:a0:af:bf:9a:a4:fb:1d:e7:5f:
62:8e:51:8b:d7:0a:51:ff:ca:e6:d5:aa:a7:c6:11:
74:55:a4:08:37:c2:67:e8:76:69:b6:d4:7e:5d:00:
08:dd:76:b4:7c:83:62:4c:88:10:4e:6d:48:59:84:
c2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:2D:10:2A:76:0E:89:FB:5F:E5:F0:01:3C:47:13:48:42:E7:AE:04
X509v3 Authority Key Identifier:
keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
35:bf:24:cc:14:27:4c:ee:73:27:f9:58:ea:42:66:47:a9:f6:
b2:89:5a:7e:98:e1:aa:cf:95:2b:82:45:cd:88:a1:52:f6:b3:
71:e5:8e:11:ee:f6:e0:5c:3b:04:87:47:bc:d8:2b:53:db:c7:
3f:87:99:a0:d6:83:1a:b2:4c:fe:3c:ba:b3:33:50:46:03:49:
a4:d4:59:ad:5f:da:9f:0a:00:31:82:f3:63:fc:8c:b1:4b:f8:
72:4a:9b:48:fb:35:86:11:cc:3b:cb:ff:af:8d:b2:9b:d9:e4:
8a:81:b2:a4:d1:72:51:ba:73:ba:d4:f5:b3:7b:a0:81:31:73:
cd:42:d4:19:88:6f:96:56:1a:d0:2a:34:4f:00:f6:60:de:c3:
80:07:9f:e3:d7:d2:52:db:b1:75:5f:5a:29:92:e1:31:7b:2c:
b6:47:a0:cb:5d:f8:19:e4:bb:4c:15:e1:a3:25:2a:b9:0a:05:
f4:54:21:49:53:ed:dd:bb:2d:6f:9d:1a:27:c4:1b:65:ca:aa:
d4:d3:cf:6a:b7:8e:05:ad:6b:e0:62:94:54:6f:2b:9d:69:85:
c0:20:8a:ee:b2:9e:d1:dc:c4:3c:9d:fd:7d:03:13:4c:ec:20:
ee:08:f6:4d:78:ad:3e:bf:c8:04:45:56:0b:30:a6:57:ba:83:
ae:77:22:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:32:57 2025 by rpki-client