Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft
File: 1bScAI9ih18VJth200lAoJsOnW0.mft (raw, json)
Hash identifier: oakHV/h6vzVlK4cdQIZAB7PGJBnEUU5CeIvZpIwXSak=
Subject key identifier: 7C:98:4E:6B:BF:47:73:CC:02:35:9D:E5:E7:01:9B:3B:6B:13:19:C9
Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D
Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D
Certificate serial: 152C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft
Manifest number: 151A
Signing time: Fri 28 Mar 2025 16:55:16 +0000
Manifest this update: Fri 28 Mar 2025 16:55:15 +0000
Manifest next update: Fri 04 Apr 2025 16:55:15 +0000
Files and hashes: 1: 1bScAI9ih18VJth200lAoJsOnW0.crl (hash: 40iMwFg1lZqsxkB9oHttRVdJAItlp6xFNLTVuUDGbvY=)
2: EC796D6C42D411E88EC29742C4F9AE02.roa (hash: fttFYbQ36BNhaDw4KkKJxxNjWTmLtF2Lj6rIn6jBjOw=)
3: EB843B92329A11EE89CD8544C4F9AE02.roa (hash: 1pX1xgZiUndMELmZkTsenLOVPD7ayPzn9r1F8xRSN8U=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5420 (0x152c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FB434
Validity
Not Before: Mar 28 16:55:15 2025 GMT
Not After : Apr 4 16:55:15 2025 GMT
Subject: CN=67e6d473-f720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1e:58:a2:5f:dd:68:b1:3a:0a:eb:b6:22:bc:
50:7a:06:77:c2:93:f8:d1:54:30:10:61:7d:94:14:
1e:0d:f5:8c:b5:0a:70:cc:1f:e5:6d:c3:3b:e5:59:
18:c5:9c:6c:a8:f7:6b:89:81:d4:90:de:2b:00:41:
4f:12:27:46:0b:d2:a8:15:25:81:53:d3:03:d4:d9:
27:e1:cd:a1:c1:b5:70:cc:36:5e:14:93:91:25:c3:
d0:fe:dc:72:ae:68:74:c3:e5:a8:dd:b4:2b:b8:9a:
0b:a3:d7:03:a0:a6:0d:63:26:01:fc:3a:af:b3:b7:
33:9b:cc:7f:18:f4:df:db:7f:ab:ec:c4:a0:fa:f1:
a7:36:9f:c7:96:b5:8e:79:91:a6:bc:5d:77:67:33:
9b:b9:67:62:87:75:9f:4b:38:b9:a1:72:32:1a:d7:
e8:32:4a:2e:30:b0:80:ae:f5:2b:33:93:40:89:7a:
9e:54:13:95:d6:83:60:3f:73:1f:4f:47:38:b5:23:
1f:c9:16:26:0d:a8:b8:c2:7e:1d:ec:28:1f:25:d5:
90:63:75:60:61:76:21:59:ce:be:26:27:bc:93:6b:
03:97:01:37:4d:fa:34:4b:5d:19:a0:ca:e5:c9:73:
e1:6e:9d:ff:5a:78:25:64:86:4b:ea:66:53:71:f1:
6b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:98:4E:6B:BF:47:73:CC:02:35:9D:E5:E7:01:9B:3B:6B:13:19:C9
X509v3 Authority Key Identifier:
keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6c:90:9d:a4:3f:14:58:67:36:18:66:c2:48:70:92:f3:54:a3:
6f:27:a0:b3:d4:1d:37:d8:2f:24:02:0a:ad:11:20:b4:9b:a2:
ac:38:61:f8:1f:1d:76:54:86:86:8b:06:5b:c8:fa:db:45:26:
99:cf:ac:5f:a7:93:18:cc:14:18:c6:2e:ac:3c:6f:dd:78:bc:
57:a6:db:f2:ce:82:86:2f:b3:5e:fb:86:a4:80:a6:55:fc:c4:
2d:4a:ec:4b:4f:00:dd:6b:81:e9:8e:95:ff:80:2d:ed:6b:8d:
6b:bb:a6:a1:c2:a7:3a:33:2a:cc:17:c8:7a:ed:93:dc:7d:11:
66:e9:74:be:f2:45:0d:18:71:27:f2:8c:87:5a:2c:d6:66:4a:
f6:5b:95:2c:2f:1b:40:ee:26:45:a3:ec:8b:64:d5:3a:8a:18:
35:07:bf:de:a3:0b:7b:bc:8e:ff:a9:19:e6:76:be:22:aa:21:
6f:b6:0c:e9:8f:d7:d5:42:d9:b2:0a:9a:e0:3a:37:c2:be:ba:
e4:b3:f7:60:14:5e:44:17:b3:51:14:a4:6e:c0:84:5b:c2:d8:
59:f2:31:f7:91:ea:88:e1:d7:95:a8:dc:c8:0b:f3:ba:6a:95:
4d:6d:0b:dd:e9:da:9e:ff:cc:4e:f0:c3:32:cd:bb:7f:92:03:
5c:19:f9:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:03:47 2025 by rpki-client