Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft
File: KtUm39nH6QyjDDH8pOGCUBtwB1M.mft (raw, json)
Hash identifier: dNeDtLf7Qpo5eQDUmXUe9/12X4fRab51jtpMNbYS+cs=
Subject key identifier: 25:58:46:A8:82:1D:CC:A8:91:33:38:61:BC:3A:B7:16:E4:ED:C8:12
Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53
Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753
Certificate serial: 063B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft
Manifest number: 061F
Signing time: Fri 28 Mar 2025 23:03:55 +0000
Manifest this update: Fri 28 Mar 2025 23:03:55 +0000
Manifest next update: Fri 04 Apr 2025 23:03:55 +0000
Files and hashes: 1: KtUm39nH6QyjDDH8pOGCUBtwB1M.crl (hash: BInNU3bVSnNhwxGd5z3SIoVttx+UppMkUwwwF6V3YLo=)
2: 4092F17AE64811EFA0F37560C4F9AE02.roa (hash: MuDOs+UNP3qWV7q9sz+FoRMoZ33SC0+8rektpH4Ht5s=)
3: 698130FEE60411EFA2DC3057C4F9AE02.roa (hash: Vt5tMPro7Yd+AkFJe3Cnn+BsDTWCkJWM0XoIlmggi2I=)
4: 5C75E87C95F511EBA6D31767C4F9AE02.roa (hash: lfQZb+Cu5k1P9aIBAVZr1VIcUuyX72bxEGl/rtrTc0A=)
5: 176E1D3E961411EB80BD4E1DC4F9AE02.roa (hash: guMsQztHXJe0nHYo+3sRzxnbrPq9rNiGro7Edp8V/SQ=)
6: 6CFB0FFCF65711EB8988A924C4F9AE02.roa (hash: 0e9NIIe4Eh6DQ3FvIOOg4nTVMnHbYlzq1N/yU/4pzQY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1595 (0x63b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919AAA0
Validity
Not Before: Mar 28 23:03:55 2025 GMT
Not After : Apr 4 23:03:55 2025 GMT
Subject: CN=67e72adb-a91c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:25:91:b3:35:46:a6:67:38:f6:b7:e4:2b:e6:
d2:98:14:40:ae:c3:75:28:50:92:b0:e9:97:9a:47:
e1:cc:cd:d3:e4:92:16:ba:55:1c:bd:f7:29:30:53:
f1:bc:f4:f0:75:c0:24:b5:fe:37:0d:21:7b:1b:0d:
1c:9e:0f:5b:cc:43:e7:8c:24:f1:c1:98:12:7c:68:
32:77:e3:dd:4d:47:56:c1:87:32:ac:b2:56:7e:87:
3f:cd:6d:3d:e1:9a:f6:80:2a:c0:5e:2f:04:f3:49:
27:8e:79:ea:b5:7f:85:7d:15:d7:22:d9:4b:b0:6b:
e8:d7:3d:af:d1:19:5d:98:33:34:ac:94:19:e9:7c:
43:89:a4:10:68:e0:7a:e9:be:eb:21:ee:f5:98:ab:
49:09:50:e6:75:0a:e3:ed:93:ec:1a:f5:72:a8:7d:
23:79:22:d7:dc:be:ad:26:ee:60:51:23:64:ef:cb:
06:68:80:6e:96:bb:03:d5:e5:39:9f:33:37:fc:1f:
92:05:57:c9:14:68:13:55:41:d4:f2:94:c5:40:a8:
3c:fc:14:a0:76:ce:15:60:e9:9d:31:d0:ca:b3:eb:
d0:0e:c5:42:d9:25:f9:a3:e3:ae:8e:bd:71:a3:2c:
c6:e1:d2:97:39:89:de:96:ab:6b:a9:18:11:ed:e7:
c8:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:58:46:A8:82:1D:CC:A8:91:33:38:61:BC:3A:B7:16:E4:ED:C8:12
X509v3 Authority Key Identifier:
keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
25:95:b8:ff:e0:4a:cb:f1:69:c7:1b:55:56:0f:09:3f:c2:f5:
04:fc:02:8b:78:27:82:4a:57:73:75:0b:f5:1b:e2:62:9b:23:
a8:6f:f9:97:ad:92:0e:f3:9a:ab:80:cc:f4:fc:ab:3d:45:31:
3b:a7:d4:ee:ab:0e:52:90:80:29:6f:8a:12:12:ca:77:41:28:
55:cd:a3:be:b2:f0:89:a4:10:3d:54:5c:f3:9a:55:5d:b9:3e:
84:a0:32:18:20:8a:cd:3b:42:95:b1:11:32:b8:9a:90:9a:ad:
5b:5a:1a:19:35:be:f0:f8:d8:27:1e:89:f5:ed:53:27:90:b6:
bb:e6:56:ee:ff:2a:4b:67:79:63:42:63:3e:04:aa:f1:29:d7:
01:cb:52:7b:55:c3:da:79:e1:7e:44:a9:4c:3c:6a:ef:c1:60:
f3:3e:d3:3c:d1:03:22:31:92:35:3a:c8:ff:2c:22:ed:fe:0d:
7b:95:8c:f9:40:ea:db:dc:98:ca:0e:ef:2b:c5:b8:fc:2e:57:
72:58:3f:ec:a1:d3:99:14:19:a1:16:f1:e3:17:2d:be:f6:8e:
cf:8c:99:a8:fa:c7:dd:bd:0b:c7:ba:ad:d5:6e:12:52:bf:d6:
8e:03:f1:f6:32:8e:58:64:e6:09:e2:1c:c4:ad:d8:33:81:d2:
55:fb:08:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:01:37 2025 by rpki-client