Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft
File: TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json)
Hash identifier: tCLN4B/zjciErf/1uK3SbS2rhtgR9xMAaHkEx4X8LEY=
Subject key identifier: CD:F7:7B:B6:1B:DD:A9:42:BC:EF:E5:D7:A2:EC:9E:99:05:B3:A7:37
Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53
Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53
Certificate serial: 0A7F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft
Manifest number: 0A78
Signing time: Fri 28 Mar 2025 19:49:33 +0000
Manifest this update: Fri 28 Mar 2025 19:49:32 +0000
Manifest next update: Fri 04 Apr 2025 19:49:32 +0000
Files and hashes: 1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: 8top9AtJ6C+anqQMMfngP7F7zYt2+FAYsQEcar/TbmM=)
2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: ZDs2CUVgufghQf+Lc8A/Bot+97mQvkMQ7xGXz6nIftU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2687 (0xa7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F104D
Validity
Not Before: Mar 28 19:49:32 2025 GMT
Not After : Apr 4 19:49:32 2025 GMT
Subject: CN=67e6fd4c-1e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ab:21:c4:6d:f3:01:e6:61:0c:34:87:24:a4:
18:65:ea:a4:8a:64:e1:4f:f0:12:c1:05:77:0d:d7:
38:2f:63:9f:c6:f7:2c:08:1d:ba:4f:e2:7f:62:19:
f9:d1:4f:86:e8:87:59:bf:49:8c:57:c2:c5:b9:b1:
dd:f5:ee:45:51:16:fa:02:da:53:09:f1:43:9b:3b:
19:49:65:5a:62:7e:9c:d4:5c:d7:8e:6f:39:09:56:
c8:65:3b:cd:29:06:4b:40:8d:5c:31:9b:2f:31:0f:
7f:25:f3:d3:b0:cf:67:15:0f:40:76:ad:04:2b:19:
fb:0b:8f:fa:0d:c2:99:13:79:45:36:8c:38:96:f7:
d9:5e:8d:9e:05:1b:5d:f2:ca:8f:8f:89:85:14:ce:
98:be:85:86:21:e5:7b:eb:a8:77:c9:32:3c:f2:f9:
67:55:e6:9c:fb:5a:ae:34:f4:1e:ae:a4:e8:b8:fc:
f2:4d:4a:f8:34:d8:70:36:95:39:53:0d:79:59:16:
ee:d2:19:28:4e:c9:f7:4a:67:4f:96:26:4d:29:af:
c0:8a:36:b0:40:90:d0:c9:1d:9f:bb:01:63:a2:e9:
6e:17:f8:fd:87:84:1b:ff:ae:cc:95:c6:b8:71:a7:
e9:e6:8f:6d:d7:f2:cf:f3:88:ec:05:be:10:bf:71:
3c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F7:7B:B6:1B:DD:A9:42:BC:EF:E5:D7:A2:EC:9E:99:05:B3:A7:37
X509v3 Authority Key Identifier:
keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
55:95:04:f1:f1:90:3a:ea:22:e8:99:a6:3b:77:70:50:71:29:
c3:78:ca:33:87:05:5e:a6:74:94:bf:a6:68:1a:65:6c:8e:09:
37:de:61:e4:b1:7c:63:2b:a2:97:d1:34:75:43:e1:aa:a2:09:
8d:11:da:6f:b0:b0:e4:08:4b:c0:8c:37:bf:7e:b5:a9:c2:fe:
2f:17:a7:74:06:9f:ad:c1:af:68:76:46:a1:29:e7:0c:ab:7d:
94:05:c6:bb:32:b0:4f:14:64:ef:92:82:25:24:d4:c9:10:c1:
e4:3e:b0:03:cd:8c:14:ce:41:2f:87:96:0e:07:54:df:65:95:
39:45:80:b1:f2:13:62:38:a0:e3:ee:18:43:53:3d:12:16:d1:
14:12:f6:b5:41:70:9a:80:37:6c:1b:8d:16:fd:8a:ef:4b:0f:
ca:cf:91:88:75:e1:96:27:8c:32:69:c5:36:af:3c:1f:c3:22:
23:a5:f7:72:92:ac:a7:e9:51:d6:32:87:17:70:df:bc:a3:dc:
a7:75:cf:a7:3b:9f:d3:90:a0:35:1e:81:44:96:33:c6:87:91:
a0:6f:f7:2b:f9:4d:53:25:cb:1d:f7:67:1d:7e:49:ec:f8:89:
d1:d1:f3:2e:b1:cf:a0:80:2b:2a:47:73:62:ed:1f:4b:53:c0:
63:b6:64:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 15:49:06 2025 by rpki-client