Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft
File: iBzVaxmrfMJiYzdmnqtzClWnLLY.mft (raw, json)
Hash identifier: ePgxQdOypqERyBX1kj5FOBBD3JR/p/9EeRsBZenYTFA=
Subject key identifier: BB:50:A3:12:C3:07:A7:FE:57:89:E7:A9:D0:4F:BB:DF:E0:41:C7:F8
Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6
Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6
Certificate serial: DB
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft
Manifest number: D7
Signing time: Sat 29 Mar 2025 05:00:26 +0000
Manifest this update: Sat 29 Mar 2025 05:00:26 +0000
Manifest next update: Sat 05 Apr 2025 05:00:26 +0000
Files and hashes: 1: iBzVaxmrfMJiYzdmnqtzClWnLLY.crl (hash: YWMigbCbfzuqNjvjLCEFFpCbVj+0n80ktThs+pIQoks=)
2: D714E00CB26F11EFB2BFFC58C4F9AE02.roa (hash: fbK8JApyPVI7CqfBV4idqbGNutPDQ+/1nnEJoajk5Ao=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 219 (0xdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ED9F9
Validity
Not Before: Mar 29 05:00:26 2025 GMT
Not After : Apr 5 05:00:26 2025 GMT
Subject: CN=67e77e6a-ceb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4a:ab:fe:32:71:22:cd:4b:42:5b:7c:7d:8c:
25:c1:d1:b9:08:5d:2c:2b:ff:d6:0a:31:43:07:ea:
e9:d9:29:51:ab:61:4d:31:4c:5b:08:de:fc:a0:a2:
e4:72:22:cd:5c:ef:31:9b:b5:5c:d2:4c:5a:a1:10:
68:b6:52:86:51:de:ae:b5:b4:b8:88:9c:d8:08:89:
b8:59:f5:44:c8:13:1a:01:fd:35:b9:39:d5:78:37:
f3:4a:16:63:8e:d3:34:70:6f:52:64:e0:5d:33:df:
bf:cf:47:bf:92:b8:04:f5:10:9e:ef:0c:c4:f2:cd:
da:99:0e:e2:e7:c0:ed:41:de:91:e8:35:1e:5e:e2:
4e:9d:e1:9d:b1:72:9b:cc:83:21:39:b9:65:52:67:
9a:53:bb:fa:ee:ec:74:c3:a9:a6:c2:36:ac:d3:f8:
20:f8:d7:e4:65:5e:cf:07:95:10:0d:c2:ae:19:18:
5c:41:25:30:11:61:dc:0b:40:3d:c9:fc:e8:d8:98:
92:bd:d2:12:e7:fa:67:5b:a9:88:f8:c7:e5:00:bd:
28:87:15:08:b9:01:6a:47:80:ed:7f:db:26:c5:35:
65:e0:0c:1c:d0:d4:e9:75:2e:83:ef:a7:57:0c:89:
f8:b2:b7:65:89:71:05:11:77:df:46:79:6a:66:cd:
11:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:50:A3:12:C3:07:A7:FE:57:89:E7:A9:D0:4F:BB:DF:E0:41:C7:F8
X509v3 Authority Key Identifier:
keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
93:9d:b6:5e:1c:a3:9f:b8:ec:38:2d:87:04:bb:de:8b:03:53:
a5:57:ae:0c:e4:e3:a2:31:40:9a:04:d2:5e:a4:e0:38:02:48:
78:65:92:7c:68:08:17:56:89:b9:40:f3:68:a9:36:7c:92:47:
35:51:4d:5d:df:b1:b0:5a:f3:24:50:ea:ad:e6:2d:2a:83:f8:
99:f8:ee:80:7f:a4:7b:7b:7c:80:f4:8c:25:ad:e4:05:a1:de:
15:1b:33:5c:39:63:01:d1:aa:21:de:6d:45:ed:66:e2:37:cc:
09:ad:b6:f3:98:58:9d:57:8f:9b:b7:84:d1:27:e0:9a:2b:b4:
4c:b0:28:3b:81:f6:cc:47:56:2b:b0:9f:ba:cc:fc:7c:d4:fd:
4a:37:b1:97:2c:99:e5:e4:6d:72:b1:22:da:e2:7c:be:07:b6:
4a:3c:5a:7a:6a:1f:85:d6:98:e7:b4:29:3a:c1:1b:ce:68:c2:
35:ff:93:fc:0b:02:72:4f:22:12:c1:d9:21:8f:90:6a:ff:5e:
06:bc:3a:c1:48:6d:07:c8:b5:25:ee:c9:eb:89:89:d0:b4:ca:
87:2c:c4:42:22:96:9e:a6:88:2b:40:f9:85:d6:b5:14:cb:7a:
96:8a:e4:0e:9a:57:0e:1e:e4:d8:19:21:57:04:38:3c:83:29:
a1:3c:15:fe
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUQ5RjkxMTAvBgNVBAUTKDg4MUNENTZCMTlBQjdDQzI2MjYzMzc2NjlFQUI3MzBB
NTVBNzJDQjYwHhcNMjUwMzI5MDUwMDI2WhcNMjUwNDA1MDUwMDI2WjAYMRYwFAYD
VQQDEw02N2U3N2U2YS1jZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA30qr/jJxIs1LQlt8fYwlwdG5CF0sK//WCjFDB+rp2SlRq2FNMUxbCN78oKLk
ciLNXO8xm7Vc0kxaoRBotlKGUd6utbS4iJzYCIm4WfVEyBMaAf01uTnVeDfzShZj
jtM0cG9SZOBdM9+/z0e/krgE9RCe7wzE8s3amQ7i58DtQd6R6DUeXuJOneGdsXKb
zIMhObllUmeaU7v67ux0w6mmwjas0/gg+NfkZV7PB5UQDcKuGRhcQSUwEWHcC0A9
yfzo2JiSvdIS5/pnW6mI+MflAL0ohxUIuQFqR4Dtf9smxTVl4Awc0NTpdS6D76dX
DIn4srdliXEFEXffRnlqZs0R1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtQoxLD
B6f+V4nnqdBPu9/gQcf4MB8GA1UdIwQYMBaAFIgc1WsZq3zCYmM3Zp6rcwpVpyy2
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDlGOS81RjM3OURCMEM5
NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZNSmlZemRtbnF0ekNsV25M
TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxMWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
RDlGOS81RjM3OURCMEM5NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZN
SmlZemRtbnF0ekNsV25MTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCTnbZeHKOfuOw4LYcEu96LA1OlV64M5OOiMUCaBNJepOA4Akh4ZZJ8
aAgXVom5QPNoqTZ8kkc1UU1d37GwWvMkUOqt5i0qg/iZ+O6Af6R7e3yA9IwlreQF
od4VGzNcOWMB0aoh3m1F7WbiN8wJrbbzmFidV4+bt4TRJ+CaK7RMsCg7gfbMR1Yr
sJ+6zPx81P1KN7GXLJnl5G1ysSLa4ny+B7ZKPFp6ah+F1pjntCk6wRvOaMI1/5P8
CwJyTyISwdkhj5Bq/14GvDrBSG0HyLUl7snriYnQtMqHLMRCIpaepogrQPmF1rUU
y3qWiuQOmlcOHuTYGSFXBDg8gymhPBX+
-----END CERTIFICATE-----
Generated at Fri Apr 11 00:17:15 2025 by rpki-client