Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft
File: 2MHMikY6MVDL7AhlTmF4ANZuU-k.mft (raw, json)
Hash identifier: cntFmDNh90DFvPGcolRn/ei53/r9xiMpB2lgStuJpoc=
Subject key identifier: A9:C2:11:08:21:5E:F5:A8:06:07:D2:0F:AE:E4:74:F4:7B:70:17:2A
Authority key identifier: D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9
Certificate issuer: /CN=A91F89C1/serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9
Certificate serial: 0658
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft
Manifest number: 064C
Signing time: Fri 28 Mar 2025 22:47:44 +0000
Manifest this update: Fri 28 Mar 2025 22:47:43 +0000
Manifest next update: Fri 04 Apr 2025 22:47:43 +0000
Files and hashes: 1: 2MHMikY6MVDL7AhlTmF4ANZuU-k.crl (hash: e90QyFlPXLI/G2jlMK3vJrAHk4dV5rBtguMzsU+UJt8=)
2: F00A66308A9C11EB9B2E044BC4F9AE02.roa (hash: 6WUJgqskzShx2CRmJsEzW4Lp5E25NIFa3cIFrPQTpQE=)
3: 88A31320809211EB938F4016C4F9AE02.roa (hash: bchSnNZ1JAHUbuS+ZuP7bZtOW8CbMzZJlPlo9vXpT60=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1624 (0x658)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F89C1
Validity
Not Before: Mar 28 22:47:43 2025 GMT
Not After : Apr 4 22:47:43 2025 GMT
Subject: CN=67e7270f-3e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3a:17:65:0d:4d:a4:51:56:ff:70:71:46:89:
07:6f:3b:6b:eb:aa:fa:6d:71:e2:22:69:79:93:22:
ff:7f:a4:14:ff:67:5b:3e:08:ca:30:cf:3b:cf:ee:
53:58:35:01:ab:e1:f6:a7:02:83:49:36:4a:b6:32:
c8:0d:0c:69:79:37:61:bd:8b:30:c2:e0:6f:12:47:
c8:07:24:f6:25:57:b3:4a:fb:70:e9:b5:32:c4:80:
aa:e9:ac:a9:39:e1:1d:a2:14:90:d9:a6:8f:f7:12:
59:f2:7a:b3:44:3a:d0:0c:b7:79:ca:90:89:50:6e:
f2:f5:be:8b:1a:80:65:7d:0c:30:82:47:bd:41:0a:
3f:26:d6:ff:89:b4:37:3e:14:4d:a8:59:fc:20:91:
7e:0f:69:8b:68:45:34:f2:10:83:e1:77:1a:79:ce:
ca:19:b7:b1:0d:e1:de:98:6d:98:48:a8:95:a5:22:
66:58:c2:6f:2c:9c:69:06:c1:52:a6:e6:b2:74:88:
e5:16:0b:e9:9b:9d:37:bd:ca:89:6a:6b:7e:d7:da:
e6:30:48:79:dd:bd:c1:8d:2b:3f:b2:38:34:8b:e5:
2d:04:a7:47:e2:22:d2:35:ea:6b:1f:34:aa:09:23:
c3:42:af:95:e2:aa:26:84:b5:ea:c5:1b:d4:34:ee:
2b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:C2:11:08:21:5E:F5:A8:06:07:D2:0F:AE:E4:74:F4:7B:70:17:2A
X509v3 Authority Key Identifier:
keyid:D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7e:69:7b:fe:66:fb:c7:79:a6:24:c0:d6:a1:41:6f:5f:27:03:
18:a8:c5:ab:ad:03:08:e6:e3:18:1e:99:74:f4:cc:13:3b:90:
7f:18:9c:0c:b9:c9:0e:b1:53:ae:01:0b:fb:d1:bc:ac:ea:13:
45:12:66:9d:ad:0f:75:dd:82:9d:8b:d7:13:bc:52:5c:35:80:
2c:fa:0b:7a:49:0c:48:01:7d:2c:ba:3f:0a:e5:98:0d:32:e9:
ef:6f:62:45:44:96:2b:35:b2:16:c6:17:a0:8f:da:d3:e8:c0:
da:e4:c0:5b:bc:6f:1a:2a:18:46:3b:39:00:55:6b:0f:4b:12:
47:1c:67:17:7e:a1:6f:a6:02:6c:c7:49:7d:c5:7e:d6:13:67:
a8:30:f8:53:f8:db:ca:ab:5e:e8:42:a9:c3:29:d7:56:59:f1:
35:45:36:ab:58:b1:76:c3:e0:0b:d0:67:cb:fc:01:2d:d3:06:
93:0d:84:2a:c0:cf:79:30:f3:4b:6a:31:48:dc:bf:fc:c0:08:
12:05:ad:93:b5:ea:b8:ae:17:e2:f7:4c:0a:6a:15:d8:dc:25:
e2:f9:e2:b3:f1:da:53:21:e1:6f:92:0c:76:e0:f0:57:21:8c:
78:92:f5:e3:0f:34:98:ba:72:04:83:32:4a:33:ad:e5:7e:0a:
d7:e5:e1:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:04:49 2025 by rpki-client