Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft
File: NCaEGmQGa3hlW77KDAH9CfZXBTY.mft (raw, json)
Hash identifier: kVfFEK/fRlq9UegcApccmcb4IUebwBBZn8b4Ldecxp8=
Subject key identifier: A0:27:4E:C7:16:07:A8:13:F6:D2:66:22:ED:81:61:92:27:24:56:41
Authority key identifier: 34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36
Certificate issuer: /CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536
Certificate serial: 0170
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft
Manifest number: 0170
Signing time: Fri 28 Mar 2025 17:15:00 +0000
Manifest this update: Fri 28 Mar 2025 17:15:00 +0000
Manifest next update: Fri 04 Apr 2025 17:15:00 +0000
Files and hashes: 1: NCaEGmQGa3hlW77KDAH9CfZXBTY.crl (hash: hBq0PSCfbhdBrfh6zAqkPN1CIMaGjgj0JAzJgvNyH9A=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 368 (0x170)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9157DAE
Validity
Not Before: Mar 28 17:15:00 2025 GMT
Not After : Apr 4 17:15:00 2025 GMT
Subject: CN=67e6d914-02f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2c:aa:0f:b2:6b:48:be:5a:84:d7:6f:85:f7:
e1:4c:cb:7a:3a:88:c0:da:23:4a:16:af:3b:da:86:
d5:da:db:0a:aa:28:b7:04:55:47:24:60:ce:f7:27:
53:30:77:22:56:a2:aa:f9:f8:94:32:c9:fe:30:c7:
11:36:e4:f8:35:83:32:6f:3d:2a:64:61:65:bf:dc:
fd:e2:ce:8a:27:85:b6:e3:06:d3:c2:3a:87:c1:b1:
63:03:37:c7:1f:19:e1:44:a2:5c:6f:15:49:3c:bf:
05:6b:85:99:6f:6b:79:61:94:a8:77:c4:18:93:5d:
72:c8:55:fc:ad:e9:88:bb:2f:14:1e:56:0b:f2:1e:
54:37:65:60:54:37:b5:23:f8:e4:53:d8:cc:fe:cd:
57:d6:4f:80:b7:5e:5b:80:85:59:01:31:83:7d:08:
7c:8a:ec:ad:20:6e:14:7c:9c:38:a7:e6:61:af:61:
f3:a4:02:21:c1:ad:bf:ef:d9:4f:a0:52:ae:9e:a8:
c2:66:a6:bc:ff:e2:49:b8:ac:b2:20:f5:21:8f:38:
8f:62:e7:9d:11:ea:c4:df:db:12:88:ed:9e:76:5a:
84:ff:6d:a3:7c:02:d8:94:a3:ac:d7:8f:29:27:f1:
a7:d7:a6:81:14:ef:9d:ea:13:80:f8:38:42:25:c4:
91:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:27:4E:C7:16:07:A8:13:F6:D2:66:22:ED:81:61:92:27:24:56:41
X509v3 Authority Key Identifier:
keyid:34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
61:fe:2c:f1:5a:85:35:ad:18:88:c8:80:44:8d:29:39:11:50:
2e:ba:4a:db:8c:00:6a:44:d0:41:95:09:7b:d3:98:fb:78:80:
ac:af:ac:fe:f8:a1:57:ef:14:7d:d5:0e:ee:ea:37:f7:79:6c:
e1:18:9b:00:21:3d:7d:b4:0e:90:0d:33:ad:69:82:9e:ea:c0:
65:2b:dd:be:a9:9f:bc:0c:96:0d:de:5c:c3:30:0f:df:f4:49:
48:a8:e6:bc:22:ab:f8:ee:e1:9c:5c:d2:c6:43:d8:8d:0a:ad:
f1:77:01:05:3f:ad:71:6a:35:37:36:53:a1:bd:50:48:74:45:
e5:db:35:b8:b5:ad:f7:53:b2:1b:c2:bd:64:bb:be:bc:8b:dd:
35:8e:d8:2b:7e:a5:37:10:a8:58:3c:6f:d7:bf:10:b6:1e:e3:
dc:d0:ca:b3:17:ed:dd:96:95:91:22:5e:e2:6e:84:43:83:e0:
9c:3d:5f:30:3e:d9:0b:59:5e:26:45:e4:47:c1:61:10:6f:b1:
a8:49:23:9b:cf:bb:76:14:3a:18:e6:89:03:f0:88:12:fa:6a:
2c:fb:7c:f8:69:bd:1a:c0:19:4a:7c:71:d2:7c:e0:0c:42:a9:
7e:8b:96:ca:8f:ae:06:c4:dc:de:d3:f9:1d:55:92:c0:6b:cd:
c7:94:d6:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:00:45 2025 by rpki-client