Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft
File: X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json)
Hash identifier: CbLMoPfEwlqjO8b71D2FKmvksaUHJYx1luW1zEiUzcM=
Subject key identifier: 7C:FC:D8:5F:87:E7:A2:24:A3:A6:08:A9:5B:65:F3:2D:CB:58:CC:18
Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0
Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0
Certificate serial: 0114
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft
Manifest number: 0111
Signing time: Sat 29 Mar 2025 04:18:43 +0000
Manifest this update: Sat 29 Mar 2025 04:18:42 +0000
Manifest next update: Sat 05 Apr 2025 04:18:42 +0000
Files and hashes: 1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: s848g/qjNMDdkT0pmOkw9729iZ0dx7Z2LzcD2kxK7/8=)
2: B7E86E0C6D8711EEB912BD62C4F9AE02.roa (hash: 1i4x5btwBoyVs/bOkBs3utfiU+YxigrlqpfcPAr0jaw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276 (0x114)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F0D86
Validity
Not Before: Mar 29 04:18:42 2025 GMT
Not After : Apr 5 04:18:42 2025 GMT
Subject: CN=67e774a2-f94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:07:1b:0c:27:cf:24:de:74:0b:35:36:b7:ed:
86:b9:c3:4c:96:3d:26:1a:f9:eb:41:2b:d6:fa:66:
2c:4d:6e:0e:93:a4:28:b5:76:9c:a8:af:a8:70:b1:
5b:f2:46:3f:29:94:f3:36:de:fd:2e:63:5d:1d:dc:
6a:a1:9b:d8:5d:98:a1:dc:44:80:a9:f5:de:6a:44:
15:ec:85:df:f6:73:48:e4:15:57:e5:87:94:00:cf:
98:0c:0c:6e:6d:2b:52:9f:b4:88:44:55:e3:81:12:
36:0d:67:73:91:a6:78:e1:72:cb:8d:33:32:bb:e5:
b4:e7:59:b5:fd:06:bf:0e:b8:b4:ed:05:92:8c:8e:
c5:58:2b:bf:c6:3f:6b:a5:c1:71:d9:9c:71:20:49:
3e:d6:3d:4c:43:a8:9c:c4:d9:3d:c5:b0:7f:4c:95:
92:1b:15:25:19:36:5e:9f:68:33:06:04:c1:98:d2:
cc:a6:84:d5:3b:04:13:6a:3c:a0:1d:3e:b3:ad:4a:
b6:c6:ae:2b:73:96:94:6c:fb:a2:8d:93:5a:dc:3e:
61:6e:f5:c5:9d:2b:c6:f9:3f:9d:0a:ed:1c:5a:1f:
9f:f3:3d:7f:a6:dd:7f:24:07:ed:d9:66:00:c7:66:
b8:f7:88:71:4a:8f:57:13:dc:df:b2:37:30:43:f5:
df:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FC:D8:5F:87:E7:A2:24:A3:A6:08:A9:5B:65:F3:2D:CB:58:CC:18
X509v3 Authority Key Identifier:
keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a4:e7:f7:44:b0:4c:ed:9a:61:75:6f:c4:29:ed:68:95:eb:4e:
61:07:ff:f8:51:12:04:4c:aa:56:c7:1d:0d:7c:9e:7d:6e:33:
01:2f:75:d8:68:72:80:86:8f:d5:b0:30:e6:8c:8f:b4:3e:8f:
c4:8e:a5:1c:46:d9:96:20:11:93:8a:db:b3:b3:9d:9c:76:60:
ce:8d:48:a8:13:73:88:bc:e8:6a:df:cd:bc:ac:91:ba:12:22:
43:dc:02:88:c6:e5:58:21:0b:a5:31:b4:15:8e:42:2b:cc:25:
a4:68:da:50:90:a9:8f:06:66:11:fc:03:8d:40:18:86:0d:bd:
35:1e:12:00:13:35:35:76:a0:86:fa:77:42:00:1b:c1:3b:19:
83:f0:ba:8b:8b:d6:7f:2b:a9:d1:28:f2:4f:17:1b:7d:af:9b:
eb:88:3c:46:ca:8e:22:44:a0:56:2e:ab:26:88:60:b2:9d:a9:
5d:a0:43:18:b6:06:4b:08:a6:cb:b1:39:e4:51:0d:43:4f:e5:
90:1f:1f:94:55:55:83:9b:e0:44:67:1e:b8:9a:fe:68:50:f9:
22:20:ae:57:ea:df:bb:85:bf:20:69:48:c4:ca:b0:0c:7e:94:
df:4e:7c:52:f4:16:47:00:41:f9:a9:56:40:28:91:6c:82:26:
57:45:51:a9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4
M0QzOTU2RDAwHhcNMjUwMzI5MDQxODQyWhcNMjUwNDA1MDQxODQyWjAYMRYwFAYD
VQQDEw02N2U3NzRhMi1mOTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtwcbDCfPJN50CzU2t+2GucNMlj0mGvnrQSvW+mYsTW4Ok6QotXacqK+ocLFb
8kY/KZTzNt79LmNdHdxqoZvYXZih3ESAqfXeakQV7IXf9nNI5BVX5YeUAM+YDAxu
bStSn7SIRFXjgRI2DWdzkaZ44XLLjTMyu+W051m1/Qa/Dri07QWSjI7FWCu/xj9r
pcFx2ZxxIEk+1j1MQ6icxNk9xbB/TJWSGxUlGTZen2gzBgTBmNLMpoTVOwQTajyg
HT6zrUq2xq4rc5aUbPuijZNa3D5hbvXFnSvG+T+dCu0cWh+f8z1/pt1/JAft2WYA
x2a494hxSo9XE9zfsjcwQ/Xf+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHz82F+H
56Iko6YIqVtl8y3LWMwYMB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD
QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW
dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
MEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJw
VU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCk5/dEsEztmmF1b8Qp7WiV605hB//4URIETKpWxx0NfJ59bjMBL3XY
aHKAho/VsDDmjI+0Po/EjqUcRtmWIBGTituzs52cdmDOjUioE3OIvOhq3828rJG6
EiJD3AKIxuVYIQulMbQVjkIrzCWkaNpQkKmPBmYR/AONQBiGDb01HhIAEzU1dqCG
+ndCABvBOxmD8LqLi9Z/K6nRKPJPFxt9r5vriDxGyo4iRKBWLqsmiGCynaldoEMY
tgZLCKbLsTnkUQ1DT+WQHx+UVVWDm+BEZx64mv5oUPkiIK5X6t+7hb8gaUjEyrAM
fpTfTnxS9BZHAEH5qVZAKJFsgiZXRVGp
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:45:06 2025 by rpki-client