Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft
File: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft (raw, json)
Hash identifier: JOPXBoOqe6AeqQQYBW8mOBujytZmHZUZxH9qFEJtdug=
Subject key identifier: 2E:A5:A0:01:63:12:76:F2:4E:F3:6F:6E:F9:64:2B:AD:4F:0A:7B:E3
Authority key identifier: 90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23
Certificate issuer: /CN=A91EC4DD/serialNumber=90C3D8351726A8B91DE26D46811283435CC52623
Certificate serial: 06BA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft
Manifest number: 06B4
Signing time: Fri 28 Mar 2025 22:25:37 +0000
Manifest this update: Fri 28 Mar 2025 22:25:36 +0000
Manifest next update: Fri 04 Apr 2025 22:25:36 +0000
Files and hashes: 1: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl (hash: 2zjcoqHFB44DmvtsrFz0iTwNj/x5xnwYt7KuVBeCyc0=)
2: AFCD8352557E11EBACB5CE3BC4F9AE02.roa (hash: yon8zk/9fCZ3WyFBjyvszv/gLcYp08xtnvCiEsyDKSw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1722 (0x6ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EC4DD
Validity
Not Before: Mar 28 22:25:36 2025 GMT
Not After : Apr 4 22:25:36 2025 GMT
Subject: CN=67e721e1-20cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:da:3e:f6:4a:78:20:84:aa:5f:99:e8:a2:dc:
4f:c7:35:b4:56:ff:2f:c9:46:e3:f2:35:ae:e9:d2:
03:a8:a6:55:98:a6:1f:c1:45:08:04:d5:63:70:b5:
51:aa:94:66:21:59:c1:20:39:57:8a:00:09:6a:12:
0f:b5:46:11:ba:eb:99:1f:75:7a:1d:1e:8d:99:31:
fe:b4:8e:28:cd:0e:98:0c:03:ac:aa:20:66:9a:2f:
8c:89:2b:0b:14:9f:3c:8f:d1:26:e6:3c:a5:1d:10:
32:87:fe:f2:49:6b:66:86:a1:3f:ce:8f:3d:54:9f:
f2:72:ed:01:c2:99:bd:96:38:f3:f5:67:74:14:ab:
6a:d3:c0:61:4a:81:80:43:cc:9a:c7:a5:42:3e:ea:
44:cd:36:a1:63:69:db:fd:f2:7a:81:03:6f:a1:fa:
9e:38:84:00:2f:5c:82:8e:dd:cd:df:ca:d0:a2:b0:
5d:29:f9:e7:78:77:ba:73:b9:ef:59:d1:d5:c2:6b:
33:17:22:d9:65:5d:74:40:3d:a8:83:10:e1:92:c2:
7b:f1:ca:46:0e:c5:45:0c:c6:bf:8e:40:7a:2c:e7:
d0:71:81:9f:b5:d1:b9:43:b8:42:5a:60:87:e9:ea:
32:52:c6:12:a4:75:51:0a:95:bb:d3:81:f9:b2:81:
af:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:A5:A0:01:63:12:76:F2:4E:F3:6F:6E:F9:64:2B:AD:4F:0A:7B:E3
X509v3 Authority Key Identifier:
keyid:90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4f:d3:fb:13:ba:20:5c:63:da:18:11:ee:25:a2:2c:9e:66:70:
57:4c:ae:67:05:e4:c9:a0:ec:7e:6b:70:6a:72:7f:b7:50:ee:
91:4a:19:e1:3d:9a:89:2f:03:17:66:8b:4c:35:15:e6:37:14:
44:2e:ca:a3:05:54:22:f1:b8:fb:9d:cc:6e:3b:4a:c7:0f:ec:
8a:db:25:2a:0b:c4:f3:43:ac:98:af:1c:ad:6e:75:8d:d5:c0:
6a:52:27:65:b2:a5:af:0c:65:a3:71:60:9d:f8:82:98:a6:dd:
d9:52:cb:28:4f:11:8a:ba:1b:95:d9:08:bb:03:b5:83:99:71:
70:0c:b7:fe:77:46:99:ae:0c:73:7a:da:3b:35:e5:94:46:1a:
8d:7f:96:0e:3f:fd:03:34:91:ad:45:18:69:c8:0d:7e:5c:7c:
dc:f9:a0:f3:cb:e6:62:a5:8f:3e:23:65:66:0c:14:e1:60:5a:
07:cf:c3:ac:63:7f:4c:24:46:c8:51:e1:ee:78:b7:56:fd:ee:
36:60:20:d6:37:88:b8:12:43:20:c0:14:11:cc:fb:a9:3a:00:
49:0a:cc:22:b5:39:ac:2c:37:75:71:ce:c7:fd:e0:7f:e4:44:
15:a1:0b:ab:da:4d:68:71:1f:d5:a0:76:55:1a:ae:86:71:22:
f7:4a:87:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:17:29 2025 by rpki-client