Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft
File: YOVPYFHttB6nqVCJbNm71nASDWM.mft (raw, json)
Hash identifier: cb9lOUTgRfqYrjCuTGgO+MmOYSofRo/xma66m7v5tmw=
Subject key identifier: BB:4A:7D:D5:43:40:1E:9C:E3:13:B0:82:42:4E:76:12:47:91:15:D7
Authority key identifier: 60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63
Certificate issuer: /CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63
Certificate serial: B6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft
Manifest number: B4
Signing time: Sat 29 Mar 2025 05:22:15 +0000
Manifest this update: Sat 29 Mar 2025 05:22:15 +0000
Manifest next update: Sat 05 Apr 2025 05:22:15 +0000
Files and hashes: 1: YOVPYFHttB6nqVCJbNm71nASDWM.crl (hash: wQn7p9bz8epdJVcjaXLxLevyFn5tPY9Qmcam1YrVfi8=)
2: 99AA3580F88611EE8E9B3E71C4F9AE02.roa (hash: 5sqOGBsF1ucCZYwk5F1J19/8HxFnGjHNBCogN/tCysY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182 (0xb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FF89A
Validity
Not Before: Mar 29 05:22:15 2025 GMT
Not After : Apr 5 05:22:15 2025 GMT
Subject: CN=67e78387-d8d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:67:6f:97:c5:e9:a8:4d:e2:4d:7b:af:b2:79:
5d:42:85:3d:4a:db:4d:3b:d2:ee:2a:49:70:46:86:
86:bd:aa:ab:ae:1e:30:75:d5:60:e0:53:5b:cc:cf:
8d:fc:bd:58:5c:41:3c:37:f4:fa:48:46:07:dc:e5:
86:49:17:49:58:08:64:a2:ff:7f:29:eb:89:9c:81:
1e:37:1b:0b:cb:bd:a2:68:77:d3:a7:d7:0c:94:65:
c9:80:0a:c0:97:39:2c:e1:26:33:72:ed:1d:eb:1a:
4a:d5:48:64:f3:73:e2:43:00:f9:d9:5b:be:93:dd:
a8:0a:bf:57:76:b4:31:de:8a:2c:d8:8a:f4:ef:66:
39:b4:60:2a:c2:c7:02:02:ae:55:92:57:1a:48:af:
6d:b6:f3:f4:c7:5f:00:fd:86:2d:39:54:43:e8:22:
c5:40:43:a5:f4:e4:90:92:10:45:0e:11:ef:bc:c5:
74:1a:40:0a:50:97:dc:31:31:52:5f:c7:6d:9c:b3:
4a:10:ef:59:b9:ad:8c:64:7e:bb:b5:1d:b8:7c:17:
3d:4e:09:8f:e8:91:a1:85:b7:11:04:a1:cf:c1:eb:
0a:cd:68:49:a8:d1:64:1c:23:b7:a0:e1:2e:e4:24:
22:99:59:40:67:42:12:13:00:e0:c4:87:5e:a1:10:
e1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:4A:7D:D5:43:40:1E:9C:E3:13:B0:82:42:4E:76:12:47:91:15:D7
X509v3 Authority Key Identifier:
keyid:60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
24:b4:7b:6a:42:d7:78:5d:4c:25:dc:b5:95:e4:10:53:e2:c0:
89:c0:16:00:93:46:a0:fa:1c:45:25:6a:8e:7d:43:41:7b:74:
04:15:7d:da:b7:fc:6b:7f:dd:81:3c:df:d0:1d:9c:d7:1f:36:
bf:8a:60:fa:38:4d:92:b2:9e:e5:b7:74:46:2c:dc:5f:06:5e:
97:a7:23:50:3f:d5:4e:60:b3:19:dd:89:90:61:1f:4a:ae:f3:
04:60:e3:8b:f6:b2:72:e9:27:82:71:6a:12:95:7c:04:e3:f6:
a3:0c:cf:81:70:37:ad:67:dc:9d:96:a3:63:1b:35:f0:6e:0c:
1c:58:a8:98:96:4e:4c:ed:24:00:7a:cc:d5:67:36:a9:fa:e9:
c5:47:ad:94:5b:49:78:09:05:05:99:71:82:af:ae:35:3c:80:
f2:ff:20:32:ca:4a:55:36:f3:86:bc:1b:8f:cd:18:91:f3:fe:
be:73:36:09:7f:47:87:d4:dd:18:66:ea:60:2b:cd:85:35:a3:
0a:ae:c5:c6:23:b5:ca:60:2f:ed:17:f0:3e:09:58:01:96:b7:
bb:ff:7f:bf:a3:a3:88:49:3b:f4:b4:4d:cc:94:bc:08:76:49:
00:40:27:53:e9:20:c5:29:3a:38:3b:22:f4:80:f2:d3:3e:cd:
6f:0d:aa:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:17:57 2025 by rpki-client