Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft
File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json)
Hash identifier: gbOUS0bBJ24dY+uWUw4pNP1pBe6E7yQiAGztdVgW6aM=
Subject key identifier: B1:22:75:F9:49:2B:C2:BD:A3:35:F1:A6:4F:7A:D1:CF:F3:26:83:49
Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B
Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B
Certificate serial: 3F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft
Manifest number: 3E
Signing time: Sat 29 Mar 2025 06:49:46 +0000
Manifest this update: Sat 29 Mar 2025 06:49:46 +0000
Manifest next update: Sat 05 Apr 2025 06:49:46 +0000
Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: R6CE8Y8Ckq6QBMoQIyajFCQOVYXfFdbj3yiV6aUNSds=)
2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: OnMDRT+B6RI2pySK/GT7zK6sSZU+o29fnWCK2xZrKx8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63 (0x3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F523F
Validity
Not Before: Mar 29 06:49:46 2025 GMT
Not After : Apr 5 06:49:46 2025 GMT
Subject: CN=67e7980a-f115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:38:d0:80:4b:2a:6f:75:b4:99:66:fd:ca:77:
8d:97:a6:c5:4d:16:8e:e0:e0:fe:c4:09:51:af:b0:
7e:bf:68:30:16:2e:81:2f:be:7d:3c:c4:4c:48:56:
15:71:1d:29:25:cc:b8:49:fe:4c:27:05:dc:ba:60:
6c:44:10:65:ec:ea:76:2a:95:9e:59:b5:86:be:8f:
15:22:dd:c5:75:d4:88:16:99:db:60:f2:bf:2c:09:
ad:89:b0:f3:5f:9a:fd:a7:e6:e8:3e:94:34:b7:33:
71:a8:b8:69:c1:ab:5b:a4:c0:df:56:03:77:a8:ee:
e2:93:00:a6:75:73:39:03:06:64:6d:16:9c:5b:63:
7c:34:06:51:b9:64:2f:bc:e1:4f:2a:77:d7:1e:4f:
72:e0:f5:7c:ab:31:35:94:83:ac:f1:82:79:c9:90:
35:4b:94:58:9c:d3:b1:b0:3d:83:52:a3:83:0c:35:
32:fa:76:85:19:b0:7b:e9:87:70:b2:b1:33:78:26:
7b:9d:7e:3e:e9:97:76:19:71:f7:b2:de:b8:2c:06:
b9:cf:1d:41:5e:47:42:5f:bc:6d:b5:91:a3:98:23:
87:ad:1f:ae:cd:ae:03:b9:ea:d7:de:74:ff:ca:ee:
c5:38:81:c9:8e:d4:0a:28:bd:f1:32:6a:a6:ef:bf:
a0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:22:75:F9:49:2B:C2:BD:A3:35:F1:A6:4F:7A:D1:CF:F3:26:83:49
X509v3 Authority Key Identifier:
keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7f:fb:92:61:62:ff:d4:83:9f:c7:15:88:7e:c6:e3:96:fc:7e:
48:a7:c5:e6:b8:b1:71:4a:9f:fd:13:1f:d1:20:0d:49:3e:98:
af:e6:2f:ae:65:ac:78:ae:f3:f6:71:3b:42:97:65:0c:b6:d3:
b2:06:68:17:a4:55:e0:04:5d:b5:9e:d7:54:1e:a3:7d:93:d5:
8b:fd:01:74:e2:fd:5a:c8:62:70:71:75:e3:52:30:28:d6:23:
de:62:79:c1:ad:c6:e6:2f:73:1b:e5:16:8d:8e:ea:ba:09:a6:
bf:31:a1:67:ac:8a:c6:cd:ea:e2:9e:f6:6e:9d:ae:c7:63:71:
ef:fc:dc:9a:58:77:6d:71:76:f2:dd:fd:50:7d:68:db:b2:ab:
69:5f:1f:7f:61:19:89:17:cb:a8:75:9e:21:58:3a:33:8c:1e:
5d:f1:6c:ff:55:62:2a:28:3a:b3:ff:da:e6:6e:1f:cf:77:a0:
bd:35:08:f1:8d:c0:dd:17:f8:f8:df:63:a2:ff:6c:10:93:8c:
d4:11:7c:33:f1:ed:e7:2f:17:f0:11:ff:08:fd:83:0c:c0:a5:
ba:1d:3c:51:12:55:5d:13:e3:d8:66:e2:c0:3f:cc:03:97:a4:
b1:ef:22:1e:88:7d:bf:b4:32:f8:c8:03:0f:2d:cb:2f:8d:fd:
ce:07:43:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:04:06 2025 by rpki-client