Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft
File: x8kdlvp-jS2SIZUipkBEI3UR4FE.mft (raw, json)
Hash identifier: jo2v8LLihnvs5xpboDKYRC7yh/0Z3bscblysv9qSA+0=
Subject key identifier: 93:77:AB:C6:30:BE:44:FC:79:62:8B:89:6C:D3:99:04:EA:5C:17:30
Authority key identifier: C7:C9:1D:96:FA:7E:8D:2D:92:21:95:22:A6:40:44:23:75:11:E0:51
Certificate issuer: /CN=A91F52E8/serialNumber=C7C91D96FA7E8D2D92219522A64044237511E051
Certificate serial: 0355
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft
Manifest number: 034E
Signing time: Sat 29 Mar 2025 01:16:27 +0000
Manifest this update: Sat 29 Mar 2025 01:16:27 +0000
Manifest next update: Sat 05 Apr 2025 01:16:27 +0000
Files and hashes: 1: x8kdlvp-jS2SIZUipkBEI3UR4FE.crl (hash: 6LHlU7GfBHHxHDWkYQZ9F06hW6fhUsk3fHKgc3JRBEA=)
2: 89F6EEC4C82711EEBCC49737C4F9AE02.roa (hash: AArq8t/jhxU12JazlbbWzfn6Htlf8feOYH1MiOaqv2s=)
3: C0BBFCC003A911EF9DE2F919C4F9AE02.roa (hash: a3TV3Qr98YNHe55DJ7WbLvKYcURrK12GnbhFOXLtRjc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 853 (0x355)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F52E8
Validity
Not Before: Mar 29 01:16:27 2025 GMT
Not After : Apr 5 01:16:27 2025 GMT
Subject: CN=67e749eb-a1bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:3b:7b:27:0c:a1:c7:38:27:0a:cc:e5:83:b3:
67:b3:c0:f5:ec:7a:05:5f:b6:22:ae:13:4e:ef:39:
b7:96:26:38:14:ac:f8:37:96:0d:43:87:47:46:d3:
7b:b6:35:ba:1a:82:6f:dc:13:f3:d1:97:51:48:af:
41:a5:67:77:e0:f7:e8:86:22:4d:30:08:32:2a:83:
f6:9a:75:89:1e:10:66:1b:2c:d8:87:86:96:72:e6:
84:e0:3f:04:7f:5e:64:28:73:60:62:22:42:b3:05:
1b:d5:0a:bf:42:8a:a8:26:c5:6f:71:47:02:35:a0:
58:b2:a0:1a:dd:32:ed:cb:e4:a1:91:33:59:c1:7f:
4d:69:e9:fd:1b:45:e7:c8:06:89:98:9b:f5:60:08:
fb:46:af:87:96:64:47:df:22:0a:fb:cb:0b:c6:5a:
4e:0e:b7:60:7d:3a:ef:8c:92:bd:07:52:24:71:32:
24:1d:c9:91:87:43:67:b8:e0:12:a5:35:73:fc:e7:
c0:ad:d5:16:2c:c4:4f:1f:c8:42:c0:1e:c6:4f:d6:
f5:bc:09:41:e7:fc:5a:6b:c9:cd:ee:c7:f4:85:a3:
f0:b4:19:63:7e:e5:40:4f:a9:45:e7:ec:a1:3b:02:
ee:b1:3f:2f:b1:9b:cd:e8:0d:59:f8:99:2f:6a:18:
32:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:77:AB:C6:30:BE:44:FC:79:62:8B:89:6C:D3:99:04:EA:5C:17:30
X509v3 Authority Key Identifier:
keyid:C7:C9:1D:96:FA:7E:8D:2D:92:21:95:22:A6:40:44:23:75:11:E0:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
17:6a:0f:2c:8c:1a:aa:c0:d2:15:fa:6c:08:df:bc:6e:0b:12:
f6:c7:20:8d:f0:a6:f0:d3:39:9a:0b:77:b0:71:0e:c4:36:49:
ec:48:b9:60:28:cf:9c:4c:cc:ac:2d:03:92:fa:7c:7c:d6:36:
8c:6b:f7:4d:46:48:30:ea:27:56:e3:51:09:84:ed:dd:b1:88:
9e:4d:9d:3c:c6:9e:ff:61:0f:e9:27:6d:44:05:a2:0f:d8:b2:
35:62:9e:88:1c:78:ce:5f:f4:27:d8:59:ee:81:8b:2f:f5:03:
5a:d0:89:5c:e9:4f:7c:8b:ca:60:4c:5d:39:b5:a3:b2:eb:79:
fb:41:ec:05:f3:74:ba:4d:bd:28:7d:d9:ea:80:4c:93:d2:da:
ee:72:f2:bb:5b:e4:85:70:a9:e2:66:b6:11:20:3a:0b:dc:66:
bf:b0:b3:09:6e:31:3a:8f:e2:39:3f:68:83:20:9c:35:40:64:
41:e6:dd:cf:a8:bd:dc:cd:14:c5:2b:d9:3c:d1:83:95:bb:1d:
24:f0:09:a4:54:b9:70:bb:09:ca:f5:94:05:c0:9c:bc:ef:47:
d4:e1:83:25:29:f5:5b:fb:d2:d0:84:ef:ea:b1:98:72:7e:0c:
5a:4c:7d:88:b9:b0:00:85:11:a6:89:cb:6f:2d:73:ed:c9:4d:
1c:80:be:51
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICA1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjUyRTgxMTAvBgNVBAUTKEM3QzkxRDk2RkE3RThEMkQ5MjIxOTUyMkE2NDA0NDIz
NzUxMUUwNTEwHhcNMjUwMzI5MDExNjI3WhcNMjUwNDA1MDExNjI3WjAYMRYwFAYD
VQQDEw02N2U3NDllYi1hMWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0Tt7JwyhxzgnCszlg7Nns8D17HoFX7YirhNO7zm3liY4FKz4N5YNQ4dHRtN7
tjW6GoJv3BPz0ZdRSK9BpWd34PfohiJNMAgyKoP2mnWJHhBmGyzYh4aWcuaE4D8E
f15kKHNgYiJCswUb1Qq/QoqoJsVvcUcCNaBYsqAa3TLty+ShkTNZwX9Naen9G0Xn
yAaJmJv1YAj7Rq+HlmRH3yIK+8sLxlpODrdgfTrvjJK9B1IkcTIkHcmRh0NnuOAS
pTVz/OfArdUWLMRPH8hCwB7GT9b1vAlB5/xaa8nN7sf0haPwtBljfuVAT6lF5+yh
OwLusT8vsZvN6A1Z+JkvahgyzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJN3q8Yw
vkT8eWKLiWzTmQTqXBcwMB8GA1UdIwQYMBaAFMfJHZb6fo0tkiGVIqZARCN1EeBR
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJFOC8xMTI3Q0QzRUFF
NjUxMUVDQkNGOEM2NENDNEY5QUUwMi94OGtkbHZwLWpTMlNJWlVpcGtCRUkzVVI0
RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3g4a2RsdnAtalMyU0laVWlwa0JFSTNVUjRGRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
NTJFOC8xMTI3Q0QzRUFFNjUxMUVDQkNGOEM2NENDNEY5QUUwMi94OGtkbHZwLWpT
MlNJWlVpcGtCRUkzVVI0RkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAXag8sjBqqwNIV+mwI37xuCxL2xyCN8Kbw0zmaC3ewcQ7ENknsSLlg
KM+cTMysLQOS+nx81jaMa/dNRkgw6idW41EJhO3dsYieTZ08xp7/YQ/pJ21EBaIP
2LI1Yp6IHHjOX/Qn2FnugYsv9QNa0Ilc6U98i8pgTF05taOy63n7QewF83S6Tb0o
fdnqgEyT0trucvK7W+SFcKniZrYRIDoL3Ga/sLMJbjE6j+I5P2iDIJw1QGRB5t3P
qL3czRTFK9k80YOVux0k8AmkVLlwuwnK9ZQFwJy870fU4YMlKfVb+9LQhO/qsZhy
fgxaTH2IubAAhRGmictvLXPtyU0cgL5R
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:39:04 2025 by rpki-client