Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.mft
File: upj7l0sLFJ-1v3Ge_9938G2-STQ.mft (raw, json)
Hash identifier: 7MSqnsTIeHin09nkTZ1sdLgHbI50p/H5JltEvZbJD3w=
Subject key identifier: 93:40:C5:1A:21:CF:FB:8B:C9:1B:5C:0E:B3:4D:B6:67:E0:61:4F:D4
Authority key identifier: BA:98:FB:97:4B:0B:14:9F:B5:BF:71:9E:FF:DF:77:F0:6D:BE:49:34
Certificate issuer: /CN=A91EAC9B/serialNumber=BA98FB974B0B149FB5BF719EFFDF77F06DBE4934
Certificate serial: DB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/upj7l0sLFJ-1v3Ge_9938G2-STQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.mft
Manifest number: DB
Signing time: Fri 03 Jan 2025 03:43:40 +0000
Manifest this update: Fri 03 Jan 2025 03:43:40 +0000
Manifest next update: Fri 10 Jan 2025 03:43:40 +0000
Files and hashes: 1: upj7l0sLFJ-1v3Ge_9938G2-STQ.crl (hash: BSNYgUjhy4mH86Fn8BCwLdKyNnoYMbvE+vog9JMAl1E=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 219 (0xdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAC9B, serialNumber=BA98FB974B0B149FB5BF719EFFDF77F06DBE4934
Validity
Not Before: Jan 3 03:43:40 2025 GMT
Not After : Jan 10 03:43:40 2025 GMT
Subject: CN=67775cec-162a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:71:1f:00:7c:f9:06:a5:40:bf:b7:c7:95:9a:
a8:40:71:e2:14:6f:1c:bd:48:b0:20:b3:94:81:d8:
18:f8:83:de:8e:2d:5d:d1:e8:42:1a:7c:a8:09:1f:
8d:fb:38:ab:c4:f9:b6:1d:f9:0c:36:cb:e5:71:00:
79:e4:d8:1e:20:ac:bf:41:9d:6b:05:04:ea:52:99:
2b:8a:37:59:2e:35:4b:46:1b:91:ed:05:dd:1c:b9:
86:e3:fe:22:4a:7a:6e:88:5c:bd:da:eb:2c:f4:23:
38:44:f2:52:05:fa:4c:88:63:46:42:70:4d:71:f1:
5d:86:8d:38:15:7d:9d:99:d0:81:ef:77:08:30:1d:
50:d3:90:2c:f3:88:b5:a4:7c:c5:d4:45:40:cd:e9:
1b:51:7d:62:34:1d:0b:af:0c:3b:08:fb:06:f4:a2:
e3:8e:7e:37:4a:24:eb:03:62:c3:19:d8:08:f0:e7:
39:88:0e:cc:26:c3:ea:46:f3:32:91:a2:ff:e6:e9:
72:1b:a5:fe:a9:e8:7a:fa:96:b4:35:9c:49:fb:96:
15:08:93:ce:dc:f0:ee:90:c5:ec:7e:4c:b8:e6:85:
20:77:79:c3:c6:cd:1d:0d:06:34:32:78:98:29:f2:
ff:af:3f:15:9f:2b:de:77:93:9b:9e:4b:5d:57:c0:
f8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:40:C5:1A:21:CF:FB:8B:C9:1B:5C:0E:B3:4D:B6:67:E0:61:4F:D4
X509v3 Authority Key Identifier:
keyid:BA:98:FB:97:4B:0B:14:9F:B5:BF:71:9E:FF:DF:77:F0:6D:BE:49:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/upj7l0sLFJ-1v3Ge_9938G2-STQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7c:ea:a4:cf:15:8d:66:46:a1:44:10:dc:86:c4:d1:4b:23:aa:
7f:2e:4c:5e:1a:86:18:6e:cf:5a:ba:4f:db:cf:f6:f7:c8:15:
4f:d6:4d:4b:70:76:df:53:1f:09:13:1a:89:91:3b:35:0c:01:
38:d9:bd:21:28:02:b6:19:e7:72:4b:41:7f:f7:76:25:7a:a2:
24:77:0e:bb:de:36:d7:47:90:02:96:93:2a:d0:ef:41:d9:f0:
4f:df:b1:fb:25:cd:62:08:f6:50:f3:d3:fb:c9:ed:ad:ff:35:
6f:d4:0d:54:c5:f9:9d:74:19:6c:4b:98:d7:59:f3:3d:66:d8:
a7:c2:31:3a:a6:21:55:64:17:53:2e:04:8a:dd:66:ee:83:28:
ea:67:18:50:70:1b:a7:f9:52:64:8f:4f:4f:ce:54:5a:40:40:
98:8b:e0:52:7b:8a:7b:e7:71:89:1d:8f:2c:54:9a:82:eb:76:
ff:e8:8a:bc:e6:8f:e0:79:0f:21:f9:23:7e:32:e3:0c:ea:9b:
f6:f0:d2:cc:33:a5:42:50:2e:42:eb:0c:fc:de:bf:48:8c:54:
b8:7e:57:08:d6:be:bd:79:1c:a2:21:f1:8b:42:b7:0a:31:f1:
3b:41:a1:2a:b5:d7:95:d6:82:fc:fd:e6:1e:de:07:92:21:91:
a6:eb:17:6d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUFDOUIxMTAvBgNVBAUTKEJBOThGQjk3NEIwQjE0OUZCNUJGNzE5RUZGREY3N0Yw
NkRCRTQ5MzQwHhcNMjUwMTAzMDM0MzQwWhcNMjUwMTEwMDM0MzQwWjAYMRYwFAYD
VQQDEw02Nzc3NWNlYy0xNjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1XEfAHz5BqVAv7fHlZqoQHHiFG8cvUiwILOUgdgY+IPeji1d0ehCGnyoCR+N
+zirxPm2HfkMNsvlcQB55NgeIKy/QZ1rBQTqUpkrijdZLjVLRhuR7QXdHLmG4/4i
SnpuiFy92uss9CM4RPJSBfpMiGNGQnBNcfFdho04FX2dmdCB73cIMB1Q05As84i1
pHzF1EVAzekbUX1iNB0Lrww7CPsG9KLjjn43SiTrA2LDGdgI8Oc5iA7MJsPqRvMy
kaL/5ulyG6X+qeh6+pa0NZxJ+5YVCJPO3PDukMXsfky45oUgd3nDxs0dDQY0MniY
KfL/rz8Vnyved5ObnktdV8D47QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNAxRoh
z/uLyRtcDrNNtmfgYU/UMB8GA1UdIwQYMBaAFLqY+5dLCxSftb9xnv/fd/Btvkk0
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUM5Qi81MDNGOEUyNDc5
MkMxMUVFODFFNjlBMTZDNEY5QUUwMi91cGo3bDBzTEZKLTF2M0dlXzk5MzhHMi1T
VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3VwajdsMHNMRkotMXYzR2VfOTkzOEcyLVNUUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
QUM5Qi81MDNGOEUyNDc5MkMxMUVFODFFNjlBMTZDNEY5QUUwMi91cGo3bDBzTEZK
LTF2M0dlXzk5MzhHMi1TVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQB86qTPFY1mRqFEENyGxNFLI6p/LkxeGoYYbs9auk/bz/b3yBVP1k1L
cHbfUx8JExqJkTs1DAE42b0hKAK2GedyS0F/93YleqIkdw673jbXR5AClpMq0O9B
2fBP37H7Jc1iCPZQ89P7ye2t/zVv1A1UxfmddBlsS5jXWfM9ZtinwjE6piFVZBdT
LgSK3WbugyjqZxhQcBun+VJkj09PzlRaQECYi+BSe4p753GJHY8sVJqC63b/6Iq8
5o/geQ8h+SN+MuMM6pv28NLMM6VCUC5C6wz83r9IjFS4flcI1r69eRyiIfGLQrcK
MfE7QaEqtdeV1oL8/eYe3geSIZGm6xdt
-----END CERTIFICATE-----
Generated at Sat Apr 19 00:51:27 2025 by rpki-client