Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json)
Hash identifier: t3+CEHUvejFw4ueo6JUwaj7yC9N7myAGe6TSPc93ibU=
Subject key identifier: 59:47:D9:D2:AD:EB:02:90:8E:24:27:67:2C:F6:BE:EF:8F:D4:91:D5
Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7
Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7
Certificate serial: 016E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
Manifest number: 0168
Signing time: Sat 29 Mar 2025 03:25:06 +0000
Manifest this update: Sat 29 Mar 2025 03:25:05 +0000
Manifest next update: Sat 05 Apr 2025 03:25:05 +0000
Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: oLzUJ87xXOAHAptI5VZT8Du6iCFb0ExcZMIU7rAASCg=)
2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: YCQgXX3rn1VYOPR234XDjqwFnKone0kRhynQvA6PZ44=)
3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: zPUrUv1ZIaP+6eaUv+2E/NI861UxRFU1+jsH4LfcFNQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 366 (0x16e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FEFBB
Validity
Not Before: Mar 29 03:25:05 2025 GMT
Not After : Apr 5 03:25:05 2025 GMT
Subject: CN=67e76811-2fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:9e:57:2f:5c:08:a9:bf:47:93:8f:38:ac:d6:
4b:ff:f4:81:92:dd:d0:1f:ea:24:17:f1:7b:65:ba:
29:f8:f1:1b:9e:7c:4c:53:e8:31:b1:99:93:4c:b4:
18:83:f5:6d:dc:11:84:d8:60:b7:99:5e:e1:78:ef:
57:df:c7:2b:a1:f0:5f:db:d9:55:9e:33:b7:da:d4:
46:2d:52:ce:6c:c6:7a:d0:fa:8e:c7:ef:40:2b:20:
db:37:47:28:a8:16:34:7a:90:5c:53:c2:6d:60:53:
52:b7:6e:ed:b2:d8:97:16:aa:98:ef:59:47:dc:9c:
ea:13:04:17:cf:88:d9:6d:40:62:88:d1:ad:14:48:
16:68:29:36:04:d9:80:5a:4d:6b:4d:2a:9a:48:83:
db:39:55:11:ae:47:6d:24:6f:1f:a1:ba:32:32:d6:
19:f6:88:d7:8d:ec:62:ee:f4:da:e1:6c:3b:8c:53:
ee:93:6d:48:33:f4:67:36:22:10:49:07:b5:ae:f1:
46:da:91:7e:95:a7:8b:69:36:89:68:f8:07:2c:f8:
94:dc:2f:61:b8:5b:1d:7e:77:ba:f9:6a:d0:4b:1f:
cd:8d:64:56:0e:fd:f2:1c:88:dd:57:11:d3:cc:a1:
01:f0:21:4f:ee:51:0c:18:bc:a7:7e:f9:60:e2:14:
33:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:47:D9:D2:AD:EB:02:90:8E:24:27:67:2C:F6:BE:EF:8F:D4:91:D5
X509v3 Authority Key Identifier:
keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
03:6e:43:a7:65:cc:4e:b9:f2:a5:d2:e0:d4:38:7b:ad:ea:6c:
00:cb:a2:37:79:ca:a0:d2:de:70:ff:23:a1:88:9a:c5:76:93:
ae:d6:e3:5a:94:ba:6a:dd:d3:4a:6b:f1:bc:b5:6e:98:f4:7f:
65:6a:9d:88:b4:60:74:8b:20:f3:45:d2:89:21:44:a7:f1:25:
b5:28:16:8f:b5:ea:da:b0:08:63:74:e3:e0:22:67:b1:65:72:
f3:89:8e:cd:e1:67:5a:42:ea:ed:40:11:22:1a:c5:5e:b4:0b:
99:04:00:85:0c:15:13:4e:38:13:18:8a:ea:3b:3f:35:15:14:
a2:8e:4a:cc:8c:4a:ef:e0:0b:d1:14:e8:ce:8a:8d:38:94:94:
74:51:d8:3f:bb:e9:d7:ad:54:99:05:12:72:f1:06:b5:b0:3c:
3e:56:25:e6:fd:0d:02:b7:5c:4d:30:24:2f:aa:73:be:08:a2:
81:31:69:d1:3f:49:2f:94:ef:57:03:d9:3a:45:49:77:a1:ba:
6e:d0:1f:40:d5:8b:fd:6f:37:be:b3:d7:7d:36:b6:13:c8:6a:
ed:09:aa:a7:73:58:1f:26:7e:4d:8c:96:16:cf:26:41:47:43:
53:13:fa:09:d5:ec:66:d6:28:49:1c:dc:d2:b9:30:39:fa:ea:
8a:8d:22:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 12:34:54 2025 by rpki-client