Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft
File: PShwiOOGgqTkudgoRQszZr3q1d0.mft (raw, json)
Hash identifier: UArYDjcZrERs2qH/xo1RHM2wkESZgz/rwltLCCgB6ZM=
Subject key identifier: 9A:E4:2C:D3:D1:32:9C:1A:42:55:12:54:2E:E1:95:5D:4C:EF:85:6D
Authority key identifier: 3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD
Certificate issuer: /CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD
Certificate serial: 0BFC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft
Manifest number: 0BEC
Signing time: Fri 28 Mar 2025 18:57:29 +0000
Manifest this update: Fri 28 Mar 2025 18:57:28 +0000
Manifest next update: Fri 04 Apr 2025 18:57:28 +0000
Files and hashes: 1: PShwiOOGgqTkudgoRQszZr3q1d0.crl (hash: os4ES+vBb4g9JO80XicIZx4AnXhO631FDWA527loPSw=)
2: 7716938A416211EB9B0F3C54C4F9AE02.roa (hash: SaoXuslBHecNHa04UZ0EBB+W8ns+FIPHvzYnnMHMCbU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F02EA
Validity
Not Before: Mar 28 18:57:28 2025 GMT
Not After : Apr 4 18:57:28 2025 GMT
Subject: CN=67e6f118-a87b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7f:85:53:aa:4b:4a:b1:c2:73:b2:5e:f9:e8:
25:ac:ff:20:ff:06:b2:45:f9:b2:b8:ac:27:20:0e:
3e:49:7b:c0:6f:e5:17:00:69:8e:5f:ba:39:fe:2f:
b8:fb:14:db:de:43:9f:8f:d4:cb:70:b6:d1:85:77:
90:53:bb:95:08:ae:4b:04:36:94:06:dd:7e:ab:51:
2c:21:25:9f:d2:7c:6c:47:fa:2a:6d:dd:e8:e5:04:
e6:d0:84:aa:6f:0d:40:0b:06:ab:00:57:d2:7c:5f:
67:48:3f:ee:1d:09:6b:88:fa:c6:8d:55:65:a9:a0:
eb:03:24:e3:52:83:75:65:80:4a:99:a4:35:00:80:
d4:d7:60:7c:dd:25:9c:e9:3b:2f:77:86:cd:90:91:
5b:90:65:ba:d0:65:1a:15:71:da:b4:45:1d:98:a7:
62:cd:a0:f2:4e:31:b1:46:6d:e2:25:73:ff:0c:c1:
a5:50:11:91:24:30:11:2a:a5:e6:8a:2a:22:aa:6d:
a6:9f:b0:32:52:86:24:2c:97:67:3b:2f:6d:a7:ed:
37:fa:43:de:d7:ff:bf:df:43:c6:ae:eb:ae:c1:4a:
ef:19:b6:6f:49:1d:b8:f5:03:48:0e:01:40:d2:47:
2c:6a:c9:24:f0:2f:d9:dd:0c:1c:07:06:8c:0d:1e:
fe:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:E4:2C:D3:D1:32:9C:1A:42:55:12:54:2E:E1:95:5D:4C:EF:85:6D
X509v3 Authority Key Identifier:
keyid:3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
43:e1:d5:25:41:8e:42:e9:e7:2f:1f:8e:77:f8:51:e7:d6:5a:
f8:4b:2b:53:a6:e9:e6:5d:63:02:74:55:e9:b0:1c:5b:ba:01:
79:eb:74:92:6f:e6:65:2a:a9:18:55:5b:80:56:44:a2:f4:58:
8f:b8:55:f6:8c:e5:bb:c7:44:77:30:6a:dc:7b:7c:af:4b:68:
9e:81:74:cc:07:58:22:e1:0c:6d:8c:06:a0:cb:0f:f4:5d:a2:
fa:68:e7:e2:64:ac:9c:c3:78:d1:77:bf:b0:f9:86:28:28:38:
4f:e3:40:5f:53:40:98:74:10:c8:19:9c:c5:79:95:ba:b5:32:
5a:d7:6c:5e:1c:1b:2f:58:56:ac:ea:4b:77:c0:29:4d:87:cc:
d3:7e:ac:9b:02:0a:5e:0a:0c:54:d6:76:82:74:c0:a5:e9:df:
4f:ea:94:7b:8d:c7:24:21:2b:fc:bb:13:1c:d4:c5:ce:71:f6:
18:9f:bf:d4:02:b6:b3:dc:04:70:7d:81:d5:f4:ac:11:d4:85:
9a:17:4d:04:0c:72:89:d2:b1:95:f3:b2:00:5f:d2:3f:65:af:
d5:03:cb:59:50:ba:77:98:2b:6d:e9:8d:23:02:fb:0d:f8:c7:
69:9e:a4:17:81:0c:a5:71:a4:69:9d:e5:3e:80:da:b7:6c:cc:
85:6b:5d:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:21:55 2025 by rpki-client