Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft
File: 4mhztF-I0fXYg8F-TM9wokUWIUI.mft (raw, json)
Hash identifier: b1dnMP5VZQ3CGreo0m/Chg4X7U0wllJns4fjt1SuHic=
Subject key identifier: 46:88:14:3E:29:08:AF:3A:41:70:8F:00:80:0C:2F:AF:57:3B:1B:5C
Authority key identifier: E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42
Certificate issuer: /CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142
Certificate serial: 08AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft
Manifest number: 08A1
Signing time: Fri 28 Mar 2025 20:49:38 +0000
Manifest this update: Fri 28 Mar 2025 20:49:38 +0000
Manifest next update: Fri 04 Apr 2025 20:49:38 +0000
Files and hashes: 1: 4mhztF-I0fXYg8F-TM9wokUWIUI.crl (hash: UttDo9Wx/AZ/niioqt6p9XbWLGYr/xTcCZrl5CJLi7s=)
2: E146B994B51F11EA9146DD58C4F9AE02.roa (hash: LQpBHD/6AS6W0OQnBLuqSE1x8/uA+xxXkzDajQvXSSM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2223 (0x8af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F4C6B
Validity
Not Before: Mar 28 20:49:38 2025 GMT
Not After : Apr 4 20:49:38 2025 GMT
Subject: CN=67e70b62-4dec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e1:88:2b:fb:54:fb:34:4d:d3:3f:2f:5e:3d:
65:ba:f8:46:c1:5f:09:99:8a:b4:d1:a5:38:64:4b:
87:90:e0:18:75:d8:6d:d8:89:da:f8:30:04:bb:f2:
e0:bc:87:86:19:32:44:a6:6f:70:42:43:c8:c4:2f:
c6:a7:69:d5:4e:4a:0f:f1:aa:d0:a4:00:fa:c9:7c:
2b:ee:7a:83:d2:26:89:b3:f1:35:39:43:af:48:34:
e9:9d:55:7e:ae:4c:70:90:fc:1b:ea:31:03:84:a6:
b9:80:f8:ef:c3:b8:6a:ea:f1:c8:d7:77:81:12:fc:
32:86:49:e0:6a:8c:aa:b8:91:c1:3e:0a:2d:21:c1:
3a:9d:f8:53:d1:8e:33:db:ce:1d:4a:fe:28:fb:bb:
69:b0:a8:8b:6c:0e:46:68:51:a6:a2:65:86:78:76:
66:4c:44:ab:bf:c5:eb:e5:c5:54:47:d1:7a:a2:9b:
dd:3d:59:f2:fd:e3:26:28:40:21:d5:99:3f:e5:0c:
2a:3c:ff:6f:62:89:b8:2b:5d:ba:1d:b3:f7:61:05:
58:43:f9:41:55:9c:5d:a9:bc:95:e6:91:01:c8:b8:
b4:09:c8:09:1f:06:9f:3f:7d:01:7e:d1:e5:61:7e:
f3:95:e9:72:b2:d5:bf:a8:49:b6:48:69:8c:b4:5f:
3e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:88:14:3E:29:08:AF:3A:41:70:8F:00:80:0C:2F:AF:57:3B:1B:5C
X509v3 Authority Key Identifier:
keyid:E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
46:ce:a5:51:55:20:92:ac:a4:71:58:7a:dd:87:13:8f:99:dc:
26:2f:c6:e4:59:38:f0:02:73:86:2f:52:de:d4:fc:ed:be:3b:
2e:33:93:d3:9d:1c:c7:a8:0d:43:4d:4a:24:d5:bc:8c:12:38:
73:44:ec:a6:18:ea:97:69:63:93:d6:b8:86:2b:08:13:23:59:
fb:23:c6:70:3a:98:c5:43:0d:fd:6e:99:d6:e5:11:a2:31:19:
07:92:4a:2c:e9:13:a1:6d:d2:c6:2c:95:24:11:06:8a:0d:27:
a0:fb:78:e6:e8:6e:ce:0b:38:29:cc:d0:d7:01:6d:21:29:31:
06:08:d2:98:9b:19:2e:77:20:6e:8a:69:d3:a0:a5:a1:33:6b:
51:c3:8e:29:cc:65:7c:a9:23:d4:cf:0d:03:99:d7:b8:93:15:
34:03:1c:d8:93:8d:44:ad:60:19:d5:a3:9b:7b:43:a7:9a:c4:
1e:e8:fb:20:50:64:5b:e6:c2:d5:db:37:d1:0b:85:6e:c6:c1:
b2:80:1a:72:0c:12:d5:cc:e4:be:8b:7c:8a:87:2b:92:59:12:
48:2d:e6:bc:2a:f2:ec:e3:50:eb:e1:30:e6:fb:37:08:3b:20:
8b:2d:c4:32:7c:47:b9:83:5a:60:65:6e:7e:0d:98:d6:34:c6:
0a:14:52:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:19:42 2025 by rpki-client