Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft
File: QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft (raw, json)
Hash identifier: 4rfOIktVNc74OvZsn4hlAbtQcpAiNQXkAECH+5DNDYo=
Subject key identifier: 0C:84:77:91:9B:42:10:C8:A1:F4:0A:F2:4E:5C:7E:64:59:E3:0C:D7
Authority key identifier: 42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1
Certificate issuer: /CN=A91FCEB1/serialNumber=4267CF5D03004A8FEFDF21395D0FE824548B13C1
Certificate serial: 206A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft
Manifest number: 274B
Signing time: Fri 28 Mar 2025 16:04:36 +0000
Manifest this update: Fri 28 Mar 2025 16:04:36 +0000
Manifest next update: Fri 04 Apr 2025 16:04:36 +0000
Files and hashes: 1: QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl (hash: V8tUKFBzkE/W+8AUnnjv9qyg1KZcJg3FWorTiVeIXvw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8298 (0x206a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FCEB1
Validity
Not Before: Mar 28 16:04:36 2025 GMT
Not After : Apr 4 16:04:36 2025 GMT
Subject: CN=67e6c894-f167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:34:64:18:35:6e:75:df:25:1b:86:f1:33:0b:
8e:ee:22:19:92:ac:e3:fd:27:31:41:d5:c8:7a:57:
84:c2:ca:5b:13:22:fa:88:7f:8c:9e:3a:0b:c4:59:
bc:19:05:e6:6a:c6:ea:48:b9:c7:36:cf:09:e4:eb:
60:1e:d6:8d:73:85:b2:9d:79:75:da:c6:90:a4:0c:
92:1d:38:fa:25:7d:3d:c6:bf:b5:16:b7:35:8c:c4:
23:f3:56:69:ce:75:f3:21:c8:df:33:5a:77:c2:9f:
8b:d0:04:7e:be:db:41:af:86:c4:58:b0:38:af:5f:
cc:b1:d3:f6:b4:b3:1e:64:63:48:8c:b3:6e:f8:ab:
46:cb:72:20:df:51:c3:63:d4:20:79:63:91:0f:11:
92:dc:ab:11:cc:4f:f0:75:94:f1:53:5c:e8:d8:31:
b3:ce:40:c3:05:02:e4:e2:d6:1e:27:7e:25:3e:e9:
45:c9:12:d3:85:69:be:30:cc:8a:27:18:4e:65:7d:
a0:07:0d:21:a8:aa:2b:09:88:35:41:91:37:87:e4:
91:30:ee:15:dd:42:a8:4f:b6:9b:d7:c3:33:2e:c8:
90:4d:a0:e1:09:3c:41:ea:e4:8d:c3:38:85:04:dc:
cc:74:11:f1:a7:44:5c:12:9f:4f:6a:6e:f6:bf:43:
3a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:84:77:91:9B:42:10:C8:A1:F4:0A:F2:4E:5C:7E:64:59:E3:0C:D7
X509v3 Authority Key Identifier:
keyid:42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
38:8d:d2:94:f1:b1:e5:2c:d3:23:75:17:07:d6:64:7e:af:55:
5b:0e:60:dd:4a:a3:14:51:b0:e0:3b:4e:f5:bb:be:37:10:0a:
35:b2:68:bd:11:32:99:e8:1e:01:d2:a5:01:8e:d2:6f:c5:bc:
35:5b:f2:4e:36:83:5e:6d:7e:ed:16:7d:8b:25:62:81:7d:8d:
4f:3d:cb:d4:85:1b:2a:28:e5:86:9b:d5:49:78:1d:bd:36:06:
59:bb:12:f8:fc:ee:32:f3:bb:80:9c:cd:37:22:d0:e0:08:5a:
9f:b2:62:c4:71:a9:d7:02:4f:36:be:b8:df:af:44:b5:2a:9f:
79:b1:98:1c:0b:e8:93:06:58:b3:e7:88:a8:35:41:09:f8:bd:
c7:68:d1:03:7b:6d:d7:9e:48:ed:60:30:7a:5f:cf:82:6e:4a:
d4:23:31:e3:e0:61:51:50:5c:49:bf:12:8c:86:58:b5:89:e1:
70:c2:c4:0c:b5:b9:8a:4c:76:fa:32:7e:da:eb:ec:69:7e:09:
02:bd:21:a7:4f:2a:93:91:cc:14:d7:46:f2:0b:46:95:b0:bd:
d7:cc:39:11:b2:c7:0b:1c:73:84:bd:b3:37:13:6b:59:b9:be:
f9:ef:ff:68:be:ff:69:c3:eb:4a:58:04:05:1b:13:e8:5b:66:
85:cc:08:ca
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICIGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RkNFQjExMTAvBgNVBAUTKDQyNjdDRjVEMDMwMDRBOEZFRkRGMjEzOTVEMEZFODI0
NTQ4QjEzQzEwHhcNMjUwMzI4MTYwNDM2WhcNMjUwNDA0MTYwNDM2WjAYMRYwFAYD
VQQDEw02N2U2Yzg5NC1mMTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqzRkGDVudd8lG4bxMwuO7iIZkqzj/ScxQdXIeleEwspbEyL6iH+MnjoLxFm8
GQXmasbqSLnHNs8J5OtgHtaNc4WynXl12saQpAySHTj6JX09xr+1Frc1jMQj81Zp
znXzIcjfM1p3wp+L0AR+vttBr4bEWLA4r1/MsdP2tLMeZGNIjLNu+KtGy3Ig31HD
Y9QgeWORDxGS3KsRzE/wdZTxU1zo2DGzzkDDBQLk4tYeJ34lPulFyRLThWm+MMyK
JxhOZX2gBw0hqKorCYg1QZE3h+SRMO4V3UKoT7ab18MzLsiQTaDhCTxB6uSNwziF
BNzMdBHxp0RcEp9Pam72v0M6+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyEd5Gb
QhDIofQK8k5cfmRZ4wzXMB8GA1UdIwQYMBaAFEJnz10DAEqP798hOV0P6CRUixPB
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS9FRkI4NzVDODA4
QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNvX3YzeUU1WFFfb0pGU0xF
OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1FtZlBYUU1BU29fdjN5RTVYUV9vSkZTTEU4RS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
Q0VCMS9FRkI4NzVDODA4QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNv
X3YzeUU1WFFfb0pGU0xFOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQA4jdKU8bHlLNMjdRcH1mR+r1VbDmDdSqMUUbDgO071u743EAo1smi9
ETKZ6B4B0qUBjtJvxbw1W/JONoNebX7tFn2LJWKBfY1PPcvUhRsqKOWGm9VJeB29
NgZZuxL4/O4y87uAnM03ItDgCFqfsmLEcanXAk82vrjfr0S1Kp95sZgcC+iTBliz
54ioNUEJ+L3HaNEDe23XnkjtYDB6X8+CbkrUIzHj4GFRUFxJvxKMhli1ieFwwsQM
tbmKTHb6Mn7a6+xpfgkCvSGnTyqTkcwU10byC0aVsL3XzDkRsscLHHOEvbM3E2tZ
ub757/9ovv9pw+tKWAQFGxPoW2aFzAjK
-----END CERTIFICATE-----
Generated at Sat Apr 5 13:07:27 2025 by rpki-client