Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft
File: 8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft (raw, json)
Hash identifier: kbsxFcoyNxwrvGCy4CIB34inKFCsJwCaKKGEpFTmJEw=
Subject key identifier: A1:E8:FB:A8:BA:C8:D7:CC:08:58:0D:60:B8:F8:F5:C9:9D:1D:50:79
Authority key identifier: F2:8D:6D:11:C3:C5:54:6E:42:41:81:8A:73:B4:70:EE:CA:6D:72:83
Certificate issuer: /CN=A9114CE7/serialNumber=F28D6D11C3C5546E4241818A73B470EECA6D7283
Certificate serial: 0233
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft
Manifest number: 022F
Signing time: Mon 03 Nov 2025 01:53:29 +0000
Manifest this update: Mon 03 Nov 2025 01:53:29 +0000
Manifest next update: Mon 10 Nov 2025 01:53:28 +0000
Files and hashes: 1: 8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl (hash: 0B++g+CxUeaMF4HmLVbYGF40X0GWoKZ57e6Z8zLI3Vs=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 563 (0x233)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9114CE7, serialNumber=F28D6D11C3C5546E4241818A73B470EECA6D7283
Validity
Not Before: Nov 3 01:53:29 2025 GMT
Not After : Nov 10 01:53:28 2025 GMT
Subject: CN=69080b19-2276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:65:81:67:16:6c:27:8b:e5:9f:05:06:01:2a:
e7:2b:f2:8d:d1:44:a5:c4:ec:a6:39:ce:78:2c:e2:
5f:4c:74:9b:50:c1:d2:f7:0e:57:e2:4b:9d:f2:73:
a8:c5:32:cf:96:2f:b4:0f:43:61:b2:12:27:43:85:
c6:85:8c:19:8c:6e:bc:dd:06:2e:38:f4:58:57:16:
6c:67:01:bd:76:f7:d2:a5:d6:98:1f:13:53:4a:93:
f4:c1:06:df:eb:f5:2c:ce:d1:0e:0b:1e:ba:16:58:
5f:5e:ab:71:fb:5c:55:63:a2:e6:21:a5:fb:83:35:
97:35:06:a7:6d:8a:ca:e4:09:75:4a:a8:79:c7:0b:
10:91:ef:7b:d3:0f:f2:7f:af:a5:d6:4a:52:75:74:
7a:7f:55:e9:dd:62:6e:41:45:5a:4a:f3:10:73:e7:
08:97:c0:c8:e2:2b:2e:42:f1:c3:17:84:1f:9f:14:
8c:c4:40:a0:16:ab:81:92:6d:1a:09:61:a7:ce:7f:
be:9f:7b:c8:a0:36:8d:ac:77:7d:49:f9:36:65:32:
09:fc:7f:58:11:45:68:d6:b6:ae:be:78:d0:72:15:
79:fc:36:cf:da:b8:99:d4:a2:21:cc:bf:03:aa:47:
ab:56:be:b2:1f:15:45:5c:49:f8:49:72:ea:95:83:
48:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:E8:FB:A8:BA:C8:D7:CC:08:58:0D:60:B8:F8:F5:C9:9D:1D:50:79
X509v3 Authority Key Identifier:
keyid:F2:8D:6D:11:C3:C5:54:6E:42:41:81:8A:73:B4:70:EE:CA:6D:72:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
35:6a:c6:e7:13:da:e4:e1:05:1d:b5:cb:56:85:a9:29:f2:cb:
80:52:5e:6a:48:e8:26:ff:33:b1:f0:96:76:2f:ff:70:81:f8:
75:46:4e:2c:a7:99:da:ba:c0:91:0c:3b:57:18:e4:b0:1c:88:
2e:4b:55:ae:3a:73:96:dd:a5:62:ec:6a:dc:5e:b3:d6:90:c8:
4c:5b:64:c7:9c:2e:11:68:d4:f5:ba:f0:93:b7:ba:82:f1:47:
79:52:9a:ca:f0:8f:bd:10:25:c4:09:79:32:6d:c2:42:cf:60:
78:7d:9b:d9:e4:dc:f7:89:cc:17:d5:c6:34:30:4d:ff:22:89:
11:70:d2:8b:6d:c2:b8:4e:85:f6:25:f1:5a:7d:35:37:c4:53:
73:9f:50:82:38:b2:95:07:f2:ce:fc:34:df:e6:6f:a0:25:b1:
42:93:18:29:0b:28:df:6b:28:cf:89:f7:ee:7f:90:e0:ff:b9:
32:ec:dc:26:ab:4d:cb:79:58:c9:5c:83:19:a5:c3:85:35:23:
94:b7:8d:40:94:c9:80:64:87:f8:3b:94:2f:2e:08:e6:9e:e7:
e4:4d:bb:96:d0:c5:56:e5:9f:33:f0:66:4c:cf:74:00:5d:bf:
71:a6:59:53:3b:ce:4f:fc:a4:a1:4d:9d:fd:8e:69:75:3d:b6:
40:fb:8c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 18:18:48 2025 by rpki-client