Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft
File: nuqkUJudasqRzaQCHxBekhA363Q.mft (raw, json)
Hash identifier: P+gZNa8DsZHaYVYspUCxNN3okkD2kAAx/ip7Bcf30YU=
Subject key identifier: D4:9D:DC:56:71:52:53:5B:C8:64:E1:0E:7A:E6:FC:FD:FF:35:87:9F
Authority key identifier: 9E:EA:A4:50:9B:9D:6A:CA:91:CD:A4:02:1F:10:5E:92:10:37:EB:74
Certificate issuer: /CN=A91F2BA6/serialNumber=9EEAA4509B9D6ACA91CDA4021F105E921037EB74
Certificate serial: 0985
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft
Manifest number: 097A
Signing time: Fri 28 Mar 2025 20:25:30 +0000
Manifest this update: Fri 28 Mar 2025 20:25:29 +0000
Manifest next update: Fri 04 Apr 2025 20:25:29 +0000
Files and hashes: 1: nuqkUJudasqRzaQCHxBekhA363Q.crl (hash: MCXJFRS87DJ22UfRQRWR2L45tRUBADssxA/AZ8jcZ5E=)
2: 5A7E13CA8C2B11EA90152018C4F9AE02.roa (hash: mjCI51z49d/ZR6NIO/Fc5BsNeBRLESAiodQLOKBux1k=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2437 (0x985)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F2BA6
Validity
Not Before: Mar 28 20:25:29 2025 GMT
Not After : Apr 4 20:25:29 2025 GMT
Subject: CN=67e705b9-cffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bb:a1:6b:ea:90:25:83:91:2b:26:7a:7b:04:
a0:ab:20:a5:5b:be:5f:65:ef:df:05:b6:5b:5f:44:
2b:ed:f3:ee:6a:0d:20:14:4d:d2:c3:ab:36:0b:27:
a3:9c:e6:96:75:06:e0:ea:90:4a:a8:e8:c8:14:32:
df:5f:bc:a3:9b:76:fa:1b:d4:a0:d4:8d:66:e8:14:
ec:0a:9e:92:ed:7d:c6:54:02:9d:af:97:ea:b6:cb:
a8:fc:7c:59:36:3f:a3:4e:97:62:58:89:53:66:0f:
99:d2:75:c3:39:4c:b2:bd:f1:06:87:d6:fb:e1:a4:
1b:27:5a:58:90:77:51:a3:4f:ae:70:ec:56:68:06:
ff:a0:d2:9e:4c:ff:c2:55:0f:5a:32:dd:7d:77:a1:
dd:d3:74:b0:04:fc:b4:1c:4e:03:4c:7d:6e:ed:05:
88:df:7d:56:82:46:81:85:ae:b0:87:95:48:fb:0d:
f9:86:b5:cd:f8:26:92:d9:18:82:8e:8a:45:e1:64:
7d:9e:5c:db:01:40:b4:76:5b:db:74:eb:49:9e:3b:
e4:d1:48:ea:5d:92:b0:0d:5a:a0:04:3b:de:3c:3a:
be:5d:1c:51:e7:29:73:19:5d:95:a0:0d:19:33:49:
90:71:56:0f:66:64:49:40:c1:16:61:fc:23:3d:6a:
0b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:9D:DC:56:71:52:53:5B:C8:64:E1:0E:7A:E6:FC:FD:FF:35:87:9F
X509v3 Authority Key Identifier:
keyid:9E:EA:A4:50:9B:9D:6A:CA:91:CD:A4:02:1F:10:5E:92:10:37:EB:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
15:ca:1d:0c:a5:50:55:ba:40:e3:ab:db:cf:48:a5:6f:b6:d2:
ce:2a:95:f2:f0:2f:52:0e:76:8c:43:fc:14:5d:ee:40:41:5b:
ca:f9:d7:3e:b1:61:5a:1b:77:1f:ac:d5:13:0e:fa:85:17:9d:
e6:4f:27:b9:12:d5:ed:b9:3a:b3:52:82:ea:4f:8a:79:ce:3b:
19:cc:0d:59:31:7f:b4:80:9d:0f:34:26:4c:d5:38:34:24:c0:
72:1f:33:6e:45:4b:a1:22:9d:2b:4d:47:e2:d3:97:45:2c:10:
f1:45:ff:75:41:70:a1:08:1d:5d:cc:fa:66:00:8f:9a:08:7c:
c8:7b:02:10:60:e8:ed:25:e5:90:c6:8c:9c:a4:95:8c:a7:5c:
9b:7a:bb:86:b6:5c:07:90:35:f1:76:b5:c4:32:3f:b7:26:20:
d2:3b:35:3f:65:3b:a1:c6:6e:d9:5d:fe:56:9e:79:56:8d:6a:
3e:db:03:f7:a7:fe:24:b5:2d:cf:a7:e1:93:3f:d1:c9:1d:e5:
8c:c2:ff:a5:5f:05:32:b8:e3:d8:62:7e:eb:a6:34:7d:30:c9:
ff:4e:64:3e:40:38:e4:e4:c7:5f:2d:69:be:44:c6:d2:d4:d8:
d0:94:83:fe:25:ea:bc:63:c1:51:f4:57:83:c5:e1:ad:e5:81:
31:4c:63:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:06:45 2025 by rpki-client