Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148E9A/03F47D8AC17711EDA039F22FC4F9AE02/5-kErSYVSeMdvVn0azB0xr-m2rI.mft
File: 5-kErSYVSeMdvVn0azB0xr-m2rI.mft (raw, json)
Hash identifier: Bn52H+fu19WEgnxXPFu/j4cmXqN0gKIFDycRkNd3/7I=
Subject key identifier: 9C:AB:9E:1C:4D:42:81:1C:69:3C:BB:ED:0F:43:9D:55:5A:10:D8:7D
Authority key identifier: E7:E9:04:AD:26:15:49:E3:1D:BD:59:F4:6B:30:74:C6:BF:A6:DA:B2
Certificate issuer: /CN=A9148E9A/serialNumber=E7E904AD261549E31DBD59F46B3074C6BFA6DAB2
Certificate serial: 019D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5-kErSYVSeMdvVn0azB0xr-m2rI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9148E9A/03F47D8AC17711EDA039F22FC4F9AE02/5-kErSYVSeMdvVn0azB0xr-m2rI.mft
Manifest number: 019A
Signing time: Wed 14 May 2025 07:01:00 +0000
Manifest this update: Wed 14 May 2025 07:00:59 +0000
Manifest next update: Wed 21 May 2025 07:00:59 +0000
Files and hashes: 1: 5-kErSYVSeMdvVn0azB0xr-m2rI.crl (hash: JAbqbQXYditFTqS3XmqjdVrvTi3vokng4aaWr58leKI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 413 (0x19d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9148E9A, serialNumber=E7E904AD261549E31DBD59F46B3074C6BFA6DAB2
Validity
Not Before: May 14 07:00:59 2025 GMT
Not After : May 21 07:00:59 2025 GMT
Subject: CN=68243fab-0cae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:57:f0:87:33:da:73:af:29:16:a9:c1:2e:9f:
c1:70:95:b9:48:6d:6f:db:a2:08:a6:be:3d:c5:56:
a6:12:a0:60:ea:36:87:b4:9a:5f:61:5c:02:b0:0c:
25:c9:5f:c5:cb:bd:4b:9b:4d:64:2a:9d:5c:fd:67:
94:87:60:b6:9b:35:65:23:0f:d1:a9:0e:76:bf:95:
af:93:53:02:7b:80:6b:a7:9a:fc:d6:0b:c2:47:cf:
69:5c:be:e4:cb:b9:92:26:d9:ad:e4:28:f0:59:53:
70:7f:3c:fe:fb:65:03:21:16:51:ce:51:61:3b:5b:
ab:01:ee:c2:7c:d1:72:9a:9a:f3:fd:26:79:24:76:
6c:53:5b:c4:64:a9:72:de:c5:cb:1f:04:02:c5:e6:
40:57:db:41:36:94:bb:8d:cf:87:34:75:5e:f4:82:
95:bd:57:d1:24:42:c5:b3:19:b4:7d:1d:fb:9d:7c:
d5:b2:73:dc:a8:30:68:38:09:4b:81:54:6a:c4:fa:
e9:2b:60:97:54:b9:08:a9:0d:29:2e:70:4d:a2:c1:
f8:9b:0c:9d:4c:ad:38:b1:3b:df:3d:68:2d:80:18:
97:a0:4b:fc:41:41:20:0f:eb:15:80:a0:cf:be:d7:
56:f7:ae:b6:f7:23:e7:76:fe:53:9c:4f:db:83:4d:
a8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:AB:9E:1C:4D:42:81:1C:69:3C:BB:ED:0F:43:9D:55:5A:10:D8:7D
X509v3 Authority Key Identifier:
keyid:E7:E9:04:AD:26:15:49:E3:1D:BD:59:F4:6B:30:74:C6:BF:A6:DA:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9148E9A/03F47D8AC17711EDA039F22FC4F9AE02/5-kErSYVSeMdvVn0azB0xr-m2rI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5-kErSYVSeMdvVn0azB0xr-m2rI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148E9A/03F47D8AC17711EDA039F22FC4F9AE02/5-kErSYVSeMdvVn0azB0xr-m2rI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a4:18:bf:23:18:07:08:90:bd:57:33:22:37:b0:df:0e:37:b7:
9a:b3:6d:65:57:cd:0b:19:5e:09:09:67:24:2e:48:58:f5:46:
b3:65:e1:f4:e7:2c:2c:a3:4a:f9:d1:ad:a3:50:ad:7e:1d:d8:
31:69:57:df:b9:b0:f6:d4:d6:b9:cd:18:ed:1f:47:7a:50:49:
8d:be:8a:64:11:96:1f:9e:9f:96:26:e3:78:82:9e:8c:41:10:
54:5e:47:19:dd:81:64:af:ea:8f:84:de:b6:e8:29:75:5c:28:
d4:da:76:87:d6:8d:a8:53:ba:fd:97:f1:ed:35:4b:5a:f3:01:
e1:1d:2f:5c:ca:3d:fa:43:91:03:42:66:77:0a:bc:d0:2f:3b:
7f:67:02:fd:2c:5a:1d:48:79:89:bb:b4:da:ef:09:19:c2:e8:
b6:ee:57:9a:82:2f:80:0d:09:e4:54:91:eb:c1:c2:f7:5f:41:
4e:f4:46:e5:2d:a1:07:fe:91:b4:43:48:c1:cc:40:b0:16:6d:
bf:69:3e:8c:c6:02:01:ab:e0:f6:19:26:72:b8:f9:87:9f:89:
6c:4b:63:68:ba:65:49:d2:a0:8b:b1:a8:72:b6:24:c0:02:ba:
66:64:6b:e7:4c:98:3e:d3:b3:01:4d:2e:16:c9:b9:d2:25:44:
78:e3:4c:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 2 06:33:02 2025 by rpki-client