Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft
File: ER6YG60wGDD3weWQzBqotIImDtg.mft (raw, json)
Hash identifier: upzGpX705CaaisjOki2Ep2+WTapmnSTkGaWi0fKJMpA=
Subject key identifier: 34:E8:AA:EC:C6:E8:DD:51:87:3C:ED:EE:71:0F:18:45:5D:E0:AB:88
Authority key identifier: 11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8
Certificate issuer: /CN=A91F0FE2/serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8
Certificate serial: 1C17
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft
Manifest number: 1C00
Signing time: Fri 28 Mar 2025 16:19:09 +0000
Manifest this update: Fri 28 Mar 2025 16:19:08 +0000
Manifest next update: Fri 04 Apr 2025 16:19:08 +0000
Files and hashes: 1: ER6YG60wGDD3weWQzBqotIImDtg.crl (hash: uXD1bK/JCqLcFZWw7CK6qAAc7xTxSDWp38NxulT9JmI=)
2: 14564AB0E83311E6A72DC543C4F9AE02.roa (hash: NUz4kB3CyIG2IBuDbo+UA9LBpVU0SpPOT0o+emRtCgw=)
3: 20C4803669A011EA9055BD0EC4F9AE02.roa (hash: FnUaKoThOa5+XgHVHWe2uhUGOR/oiQOVc+Zdq2BOUUM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7191 (0x1c17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F0FE2
Validity
Not Before: Mar 28 16:19:08 2025 GMT
Not After : Apr 4 16:19:08 2025 GMT
Subject: CN=67e6cbfc-ca68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c8:a1:09:31:da:16:10:cd:0e:7f:c7:06:d5:
d0:a8:e3:7d:fa:1d:cd:54:8c:22:f9:80:d9:a5:20:
e0:c5:24:a7:29:ec:14:8a:8a:06:66:1d:f6:24:5e:
de:c0:f4:61:b0:c3:65:72:ea:24:d7:e2:d0:9c:ab:
28:c5:9e:1d:a6:f6:78:d4:ad:b5:ff:4d:4c:71:0e:
38:39:42:7c:39:45:12:da:36:47:66:57:07:b9:b9:
c1:01:2f:08:3c:e5:02:1b:68:7b:f0:f7:a3:35:35:
1e:2d:00:5a:1c:6a:ab:54:11:59:13:2e:ff:a9:02:
37:55:d5:77:b6:bb:5a:39:58:b0:40:f1:46:ac:b5:
11:be:e5:06:78:89:59:2f:5b:58:bc:fe:e4:d4:8c:
d0:bc:1f:a0:1c:8c:82:27:44:17:a4:38:f5:f5:0e:
ac:37:e9:3a:3f:59:c4:66:ee:65:60:42:6e:c7:74:
f9:56:25:88:e8:96:c1:e2:70:b7:2a:fd:5e:f7:63:
41:6f:2e:f5:ee:f4:d5:ec:38:60:49:3c:39:56:06:
b2:10:f8:6a:a7:fa:7c:43:f7:8f:3b:33:64:57:c8:
36:b8:9c:e7:3c:f3:44:01:20:68:13:b1:ae:b2:9d:
d8:98:38:62:0d:9e:69:3e:4d:18:02:89:46:1b:84:
f7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E8:AA:EC:C6:E8:DD:51:87:3C:ED:EE:71:0F:18:45:5D:E0:AB:88
X509v3 Authority Key Identifier:
keyid:11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
22:aa:2c:6d:bc:63:f7:9d:24:39:bd:2c:34:8e:89:af:1e:02:
5a:63:fe:a5:e3:88:7e:2b:be:97:13:99:92:ab:e0:3f:a8:1e:
19:eb:0a:b7:72:09:0f:24:74:53:e8:ea:a5:af:73:09:e2:5e:
18:2d:0a:3b:c5:91:5d:cd:77:5b:c5:fe:eb:df:58:f5:9d:fa:
0a:3b:77:08:b8:88:be:cf:3e:06:f9:f3:41:42:58:2b:51:6c:
bf:04:b1:ff:a6:86:a7:c1:90:99:a6:b4:f9:7b:07:e9:09:32:
e5:1b:6a:76:cb:dc:37:5e:af:2c:76:94:34:b3:e1:9f:a0:9e:
a9:30:0c:bd:de:64:52:b7:af:1e:3f:3b:dd:21:5b:c4:0f:cd:
28:97:15:da:f4:7e:6d:a8:1f:13:02:81:98:55:dc:25:38:8b:
bb:d8:7e:1a:ef:ec:5d:b6:76:2e:25:66:0a:e9:9b:0d:c9:2b:
85:79:74:d4:11:dc:1a:80:30:f4:b4:e1:af:eb:be:28:7b:30:
97:e8:ae:15:bb:72:78:81:36:0f:04:66:ce:4d:f6:e8:c3:26:
7a:17:ed:38:cd:93:34:bd:5b:a3:37:55:26:1f:fd:29:cf:05:
2d:34:17:39:2e:19:3b:3f:7b:16:5f:09:02:2c:bc:c6:c8:53:
3c:a4:98:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 15:35:40 2025 by rpki-client