Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft
File: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft (raw, json)
Hash identifier: z1RT+/rFOHDJmYNvfM4pW8oRuDGzlMLj+YealJ5neig=
Subject key identifier: 6F:A6:9C:45:FC:94:0B:19:23:8F:63:6F:5E:A5:E5:00:3A:68:1C:83
Authority key identifier: 6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70
Certificate issuer: /CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70
Certificate serial: 1457
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft
Manifest number: 1443
Signing time: Fri 28 Mar 2025 17:03:00 +0000
Manifest this update: Fri 28 Mar 2025 17:02:59 +0000
Manifest next update: Fri 04 Apr 2025 17:02:59 +0000
Files and hashes: 1: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl (hash: Wn6+30pn3p4wXfedxZ8yTqGQ2ZAeYf+3Dc3GH6xEybE=)
2: F693F2689CB811EB97F77E14C4F9AE02.roa (hash: U3tQJQlcyfHM4FE2g1sFZHo1n5O210FCbrxqZ5WoAEg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5207 (0x1457)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAE3D
Validity
Not Before: Mar 28 17:02:59 2025 GMT
Not After : Apr 4 17:02:59 2025 GMT
Subject: CN=67e6d643-4289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:11:4d:e7:43:10:07:49:bf:2e:ff:18:83:8c:
b4:d1:02:77:e8:df:c4:85:1a:07:c2:3a:69:34:d7:
7f:60:b9:f2:44:48:40:8a:9a:ab:ee:fb:bc:8f:8e:
2b:cd:6d:4a:45:86:07:82:46:aa:0a:2d:d6:57:d0:
da:2b:5a:08:5d:46:c9:f8:96:d7:0d:35:47:51:17:
c0:2b:39:b8:a8:ed:56:55:56:9f:f2:99:24:30:69:
c0:e3:18:6e:fc:24:42:26:69:33:b8:4a:71:bb:fd:
fd:83:bd:d5:12:30:71:07:50:8e:69:b6:ca:d2:f3:
0b:4e:ef:5d:40:fc:5f:4b:84:ad:cd:a6:9a:65:d8:
c6:20:40:22:9a:5f:7e:67:28:3e:0a:08:b1:d7:f9:
9b:e0:b2:c8:00:5a:e3:f2:69:6a:24:21:2a:7e:9f:
c8:b5:8c:03:36:d6:50:ea:20:de:69:0c:8b:da:d2:
5b:96:65:3b:b8:c1:ef:1f:81:42:78:9e:ec:0f:ef:
02:a8:4f:50:d1:0e:fd:a4:d9:fe:07:e4:e5:41:13:
17:ec:40:02:81:f6:f9:95:7e:a0:99:b5:90:dc:35:
fe:41:2a:1a:5c:c5:1b:98:fc:c6:23:31:5f:dd:61:
3e:c7:77:5e:7a:27:44:ef:71:c8:50:76:6a:2c:20:
aa:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A6:9C:45:FC:94:0B:19:23:8F:63:6F:5E:A5:E5:00:3A:68:1C:83
X509v3 Authority Key Identifier:
keyid:6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
91:82:b2:9b:b5:74:66:96:63:62:75:6e:48:2c:72:e5:80:b5:
4d:63:ef:62:5c:79:41:e4:8f:26:bd:aa:d4:73:fc:48:4e:9e:
23:85:9a:48:56:68:aa:e6:e7:5d:03:82:9d:81:9b:6a:ef:9a:
de:52:ad:a8:a9:da:0d:76:95:69:7c:31:97:03:0e:b3:4d:2a:
51:4d:df:36:6e:8d:d1:32:32:ee:df:2d:f6:07:4e:45:1f:3e:
5e:31:4f:bb:69:f4:a0:f4:a8:a9:38:7c:27:d0:ce:ee:46:d8:
f4:cf:9d:83:d9:ae:51:8b:51:e1:50:10:0f:eb:44:b6:6f:eb:
54:ae:03:96:80:90:7a:19:c0:05:79:2a:33:e4:4f:e9:a2:b0:
0c:d7:8e:24:a0:7d:d6:29:4b:be:99:7c:59:57:4f:f5:22:84:
22:16:2b:d6:2c:3e:c4:3e:11:7a:90:24:34:d3:35:61:4c:d0:
2d:f4:f6:63:16:20:99:47:c3:a2:ec:0f:53:c3:27:92:98:09:
03:9f:37:2c:fa:f3:64:6f:a6:73:7a:fb:8a:e9:bc:1f:1b:e6:
9e:8d:3d:39:d4:a8:bd:d2:5e:60:8c:3d:8a:f9:3f:1f:37:11:
1d:21:b5:cd:9e:7c:66:9e:b9:69:e1:5e:4d:87:7a:30:d8:8c:
32:85:be:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:22:08 2025 by rpki-client