Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft
File: Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft (raw, json)
Hash identifier: jv/B6kGCHEE/qJCQhm8R51dUQr+t6azvOi6iL1vBfwY=
Subject key identifier: E9:F1:FD:86:7C:65:B2:37:BB:D4:39:74:25:51:54:84:1C:D7:12:A7
Authority key identifier: 4A:2F:BB:46:0D:1B:D8:F3:16:F6:64:2D:9E:B5:F4:C3:B2:20:18:9D
Certificate issuer: /CN=A91EE0A0/serialNumber=4A2FBB460D1BD8F316F6642D9EB5F4C3B220189D
Certificate serial: 0246
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft
Manifest number: 0242
Signing time: Sat 29 Mar 2025 02:07:26 +0000
Manifest this update: Sat 29 Mar 2025 02:07:25 +0000
Manifest next update: Sat 05 Apr 2025 02:07:25 +0000
Files and hashes: 1: Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.crl (hash: BMjZWdl9F6lkA4JxMEskL445XBtmPcgtz+XDatkMXrI=)
2: 9682ACDE16A611ED86A3EF0CC4F9AE02.roa (hash: xcEo5ZEds1+7lHb6kjHbxyhxfOhLVoaBRTvNwgY9oCU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 582 (0x246)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EE0A0
Validity
Not Before: Mar 29 02:07:25 2025 GMT
Not After : Apr 5 02:07:25 2025 GMT
Subject: CN=67e755de-5e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:30:59:42:98:c1:95:bc:86:94:ff:98:f2:79:
d6:b5:46:48:8e:4d:a7:93:b8:90:9d:6d:04:90:c5:
7c:7c:15:b7:7d:08:2f:2a:9b:88:6b:3c:66:b0:50:
fb:12:ea:c6:b5:3b:25:32:bb:fa:6a:44:cd:9f:4e:
55:ca:7f:27:5a:4f:ab:16:86:b7:14:4d:6a:17:66:
02:8c:ad:09:41:c3:5d:d1:c5:32:85:1c:98:2c:f6:
bb:b2:91:8d:71:96:7e:ff:ea:86:44:02:ab:42:07:
d5:a9:01:b7:3e:08:03:c1:21:ec:d0:1b:0c:b1:f2:
53:ac:cb:ff:02:1c:78:a6:29:4b:f6:73:8d:ae:fb:
3d:7c:5d:5a:c9:fd:2d:f0:48:95:72:0c:4c:a9:94:
1b:fa:eb:e3:4c:6a:3f:79:a3:dd:d1:69:70:c8:34:
53:1d:cf:b9:a8:0b:3a:ed:cf:6a:2f:57:45:15:52:
32:95:32:7b:06:03:d8:ba:83:95:28:53:e6:99:c7:
48:62:bc:87:bb:b9:dc:05:c7:4e:8d:5c:5a:34:8f:
36:89:43:60:23:b0:6d:2f:81:79:20:73:9a:be:f3:
57:f1:c9:cf:97:a6:2c:f4:cd:e4:a2:70:51:2d:a9:
f8:93:e2:69:84:cb:18:da:3f:a0:bd:5b:ec:97:1b:
40:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F1:FD:86:7C:65:B2:37:BB:D4:39:74:25:51:54:84:1C:D7:12:A7
X509v3 Authority Key Identifier:
keyid:4A:2F:BB:46:0D:1B:D8:F3:16:F6:64:2D:9E:B5:F4:C3:B2:20:18:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2d:68:81:7f:37:3d:3e:c4:cc:7c:16:e7:85:c4:8f:be:dc:69:
ef:d9:b4:7e:dd:0d:a4:05:f7:9c:e3:51:3b:bd:d6:b7:a7:20:
5e:a6:4d:b1:49:f5:5d:63:97:42:64:31:ae:0e:a7:95:b1:bf:
42:19:ee:6c:cf:1b:ef:4c:ee:bb:94:3b:05:6d:dd:33:29:16:
1c:53:44:0c:4d:b5:df:02:8f:3c:f0:3b:56:e3:50:77:21:d9:
95:00:86:4f:a8:89:4c:87:07:df:b3:32:a6:7a:b3:ea:c1:a0:
78:e6:cb:66:c9:44:9a:a4:57:42:40:13:08:b9:7f:ef:4e:a3:
ac:c0:4e:dd:ab:8a:6c:03:63:1e:a3:9e:58:88:62:d7:ba:c3:
cf:ce:46:68:65:f4:34:88:e9:0e:01:80:7f:61:1d:ca:06:05:
dc:e1:5e:d2:2c:29:7d:4b:28:54:9d:6e:6e:36:2a:54:3a:6d:
af:8d:ba:b6:bb:ac:ec:12:eb:86:df:81:63:17:99:65:75:9a:
2f:a4:90:c5:87:44:f0:3f:d9:10:bb:3c:83:fb:4a:da:81:75:
9b:c0:00:27:5a:d7:76:2c:c8:72:ca:b3:ef:00:ae:8d:a3:50:
7d:27:8b:f0:0d:b8:e9:ab:9b:38:66:4a:d4:ec:bf:14:49:33:
4d:2f:e8:fd
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUUwQTAxMTAvBgNVBAUTKDRBMkZCQjQ2MEQxQkQ4RjMxNkY2NjQyRDlFQjVGNEMz
QjIyMDE4OUQwHhcNMjUwMzI5MDIwNzI1WhcNMjUwNDA1MDIwNzI1WjAYMRYwFAYD
VQQDEw02N2U3NTVkZS01ZTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqDBZQpjBlbyGlP+Y8nnWtUZIjk2nk7iQnW0EkMV8fBW3fQgvKpuIazxmsFD7
EurGtTslMrv6akTNn05Vyn8nWk+rFoa3FE1qF2YCjK0JQcNd0cUyhRyYLPa7spGN
cZZ+/+qGRAKrQgfVqQG3PggDwSHs0BsMsfJTrMv/Ahx4pilL9nONrvs9fF1ayf0t
8EiVcgxMqZQb+uvjTGo/eaPd0WlwyDRTHc+5qAs67c9qL1dFFVIylTJ7BgPYuoOV
KFPmmcdIYryHu7ncBcdOjVxaNI82iUNgI7BtL4F5IHOavvNX8cnPl6Ys9M3konBR
Lan4k+JphMsY2j+gvVvslxtAqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnx/YZ8
ZbI3u9Q5dCVRVIQc1xKnMB8GA1UdIwQYMBaAFEovu0YNG9jzFvZkLZ619MOyIBid
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTBBMC9BNDI1NzU2MjE2
QTQxMUVEOEUzN0M3MENDNEY5QUUwMi9TaS03UmcwYjJQTVc5bVF0bnJYMHc3SWdH
SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1NpLTdSZzBiMlBNVzltUXRuclgwdzdJZ0dKMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
RTBBMC9BNDI1NzU2MjE2QTQxMUVEOEUzN0M3MENDNEY5QUUwMi9TaS03UmcwYjJQ
TVc5bVF0bnJYMHc3SWdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAtaIF/Nz0+xMx8FueFxI++3Gnv2bR+3Q2kBfec41E7vda3pyBepk2x
SfVdY5dCZDGuDqeVsb9CGe5szxvvTO67lDsFbd0zKRYcU0QMTbXfAo888DtW41B3
IdmVAIZPqIlMhwffszKmerPqwaB45stmyUSapFdCQBMIuX/vTqOswE7dq4psA2Me
o55YiGLXusPPzkZoZfQ0iOkOAYB/YR3KBgXc4V7SLCl9SyhUnW5uNipUOm2vjbq2
u6zsEuuG34FjF5lldZovpJDFh0TwP9kQuzyD+0ragXWbwAAnWtd2LMhyyrPvAK6N
o1B9J4vwDbjpq5s4ZkrU7L8USTNNL+j9
-----END CERTIFICATE-----
Generated at Fri Apr 11 15:49:06 2025 by rpki-client