Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft
File: mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft (raw, json)
Hash identifier: x+urgOBT/mpoIIs72iOAmezp1t6YkOFxWtELwdtHkwo=
Subject key identifier: 25:EE:2C:A2:FA:A8:04:DD:CE:FC:3C:CE:12:A9:44:F2:AA:36:47:FA
Authority key identifier: 99:4D:9B:2D:97:CB:CC:B5:D5:24:4D:E0:A7:E5:39:74:1F:88:8A:23
Certificate issuer: /CN=A91E9EA9/serialNumber=994D9B2D97CBCCB5D5244DE0A7E539741F888A23
Certificate serial: 0618
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mU2bLZfLzLXVJE3gp-U5dB-IiiM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft
Manifest number: 0611
Signing time: Fri 28 Mar 2025 23:04:24 +0000
Manifest this update: Fri 28 Mar 2025 23:04:23 +0000
Manifest next update: Fri 04 Apr 2025 23:04:23 +0000
Files and hashes: 1: mU2bLZfLzLXVJE3gp-U5dB-IiiM.crl (hash: +CXgmj42Q3nQAjQgUfn5iHDpu2cAME9wf4MoLOOZqHQ=)
2: 1B4DA20CD46711ECA1A27035C4F9AE02.roa (hash: ztzKFXpjSxYM8wd4nThJ1BsK2ipsW271bSfHzk4YREM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1560 (0x618)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E9EA9
Validity
Not Before: Mar 28 23:04:23 2025 GMT
Not After : Apr 4 23:04:23 2025 GMT
Subject: CN=67e72af8-b7a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:47:22:8c:32:55:1b:20:6a:e8:aa:c7:7c:7c:
cd:9d:2e:43:10:ac:aa:e8:6c:d0:65:bf:3e:be:f4:
12:0d:5b:f9:2f:20:d4:78:45:3e:ca:76:19:a0:54:
db:b4:1f:d2:ab:9a:0f:96:c2:41:f2:69:37:f5:92:
75:9c:d1:d1:ee:e1:77:1c:68:0e:9e:ce:2c:05:8f:
90:18:ee:3b:9c:91:dd:f2:82:82:91:39:f4:b2:f6:
8b:2b:ab:84:c0:8c:4a:61:1f:d8:f2:80:93:90:a0:
5e:fe:c7:d5:f9:5a:c7:a3:aa:34:67:13:e0:6e:46:
3e:4d:bc:f2:5c:d4:56:04:39:f7:90:be:b7:9e:eb:
01:0c:c7:b8:23:66:f5:fe:a6:0f:81:f1:89:56:16:
be:16:33:31:c6:7d:95:2b:c1:e9:dc:14:f9:18:e1:
78:37:19:ab:94:e5:ae:09:6c:a8:f7:3f:04:49:bb:
51:5a:22:a9:a0:05:dd:67:72:12:f4:f7:a6:57:65:
3d:9e:a8:e6:71:49:2c:ae:54:08:e7:d7:0c:ca:29:
44:2f:bd:15:98:86:0b:c1:55:d8:57:42:f9:51:82:
13:e2:05:3b:cd:ab:6a:2c:f5:62:80:6c:46:a3:77:
3c:83:c6:dc:0e:d9:f0:9b:59:6d:7a:9d:c2:1e:ba:
2b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:EE:2C:A2:FA:A8:04:DD:CE:FC:3C:CE:12:A9:44:F2:AA:36:47:FA
X509v3 Authority Key Identifier:
keyid:99:4D:9B:2D:97:CB:CC:B5:D5:24:4D:E0:A7:E5:39:74:1F:88:8A:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mU2bLZfLzLXVJE3gp-U5dB-IiiM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
54:bc:d1:80:5f:1e:c5:a5:bc:82:03:43:f2:91:8e:8a:20:19:
79:5c:c7:1f:0b:35:9e:42:9b:09:c5:79:fe:5b:bb:3c:60:98:
dd:d4:44:42:f6:f7:57:4b:3e:b3:38:b3:d5:57:42:c9:e1:28:
0c:37:c9:48:98:75:9e:ed:92:f8:55:c6:1f:58:76:43:9f:e7:
1e:96:b7:69:92:65:c7:0c:23:88:6c:b8:b7:01:a2:1c:c4:43:
a4:32:1f:1d:83:47:99:f9:3d:95:6e:95:08:c5:b8:49:39:8a:
85:47:81:cc:71:f4:cb:e3:f7:3c:d9:5a:19:f8:a9:14:5a:19:
a1:7f:14:af:6f:5c:30:d2:63:fc:b3:f7:a7:69:86:4e:32:70:
5c:6f:d3:92:2f:29:dc:46:7f:a8:c0:79:10:e4:33:46:a0:d1:
ca:06:b2:a8:52:3f:c9:19:6e:ef:6e:fa:2a:30:eb:aa:ff:34:
9b:fe:f3:7c:3f:57:b9:94:8b:ce:70:eb:2e:cb:e2:71:2d:3c:
19:14:a9:58:02:6b:66:b8:d0:b1:be:ce:07:93:e7:94:1c:f3:
3d:fb:10:74:7d:0d:57:52:1f:2f:79:ef:0c:b6:75:5c:67:b7:
d1:65:72:ca:1d:4e:b3:f1:1b:a9:b1:6c:6d:10:af:5b:31:25:
eb:64:67:24
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTlFQTkxMTAvBgNVBAUTKDk5NEQ5QjJEOTdDQkNDQjVENTI0NERFMEE3RTUzOTc0
MUY4ODhBMjMwHhcNMjUwMzI4MjMwNDIzWhcNMjUwNDA0MjMwNDIzWjAYMRYwFAYD
VQQDEw02N2U3MmFmOC1iN2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAq0cijDJVGyBq6KrHfHzNnS5DEKyq6GzQZb8+vvQSDVv5LyDUeEU+ynYZoFTb
tB/Sq5oPlsJB8mk39ZJ1nNHR7uF3HGgOns4sBY+QGO47nJHd8oKCkTn0svaLK6uE
wIxKYR/Y8oCTkKBe/sfV+VrHo6o0ZxPgbkY+TbzyXNRWBDn3kL63nusBDMe4I2b1
/qYPgfGJVha+FjMxxn2VK8Hp3BT5GOF4NxmrlOWuCWyo9z8ESbtRWiKpoAXdZ3IS
9PemV2U9nqjmcUksrlQI59cMyilEL70VmIYLwVXYV0L5UYIT4gU7zatqLPVigGxG
o3c8g8bcDtnwm1ltep3CHrorZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXuLKL6
qATdzvw8zhKpRPKqNkf6MB8GA1UdIwQYMBaAFJlNmy2Xy8y11SRN4KflOXQfiIoj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUVBOS9FNjQ2QkYxRTk2
ODAxMUVCQUE2NEZBNTZDNEY5QUUwMi9tVTJiTFpmTHpMWFZKRTNncC1VNWRCLUlp
aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL21VMmJMWmZMekxYVkpFM2dwLVU1ZEItSWlpTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
OUVBOS9FNjQ2QkYxRTk2ODAxMUVCQUE2NEZBNTZDNEY5QUUwMi9tVTJiTFpmTHpM
WFZKRTNncC1VNWRCLUlpaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBUvNGAXx7FpbyCA0PykY6KIBl5XMcfCzWeQpsJxXn+W7s8YJjd1ERC
9vdXSz6zOLPVV0LJ4SgMN8lImHWe7ZL4VcYfWHZDn+celrdpkmXHDCOIbLi3AaIc
xEOkMh8dg0eZ+T2VbpUIxbhJOYqFR4HMcfTL4/c82VoZ+KkUWhmhfxSvb1ww0mP8
s/enaYZOMnBcb9OSLyncRn+owHkQ5DNGoNHKBrKoUj/JGW7vbvoqMOuq/zSb/vN8
P1e5lIvOcOsuy+JxLTwZFKlYAmtmuNCxvs4Hk+eUHPM9+xB0fQ1XUh8vee8MtnVc
Z7fRZXLKHU6z8RupsWxtEK9bMSXrZGck
-----END CERTIFICATE-----
Generated at Thu Apr 10 16:35:16 2025 by rpki-client