Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft
File: aLP_FmWJyEQaRP3KYfQrOmOuESk.mft (raw, json)
Hash identifier: +hK7dSmHN0AGlXvW1XtQwywQHrgw+yZ40K2Q9jijlFg=
Subject key identifier: 4E:10:19:F4:A7:19:EE:8F:78:9C:C4:71:59:79:C2:74:54:85:CF:C2
Authority key identifier: 68:B3:FF:16:65:89:C8:44:1A:44:FD:CA:61:F4:2B:3A:63:AE:11:29
Certificate issuer: /CN=A91A2C5D/serialNumber=68B3FF166589C8441A44FDCA61F42B3A63AE1129
Certificate serial: 0125
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft
Manifest number: 011F
Signing time: Wed 21 May 2025 04:02:07 +0000
Manifest this update: Wed 21 May 2025 04:02:07 +0000
Manifest next update: Wed 28 May 2025 04:02:07 +0000
Files and hashes: 1: aLP_FmWJyEQaRP3KYfQrOmOuESk.crl (hash: Uwk68yHDs4qt/G4iia6NbW2lZHeF/Yfh71R7zwAR0nY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293 (0x125)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A2C5D, serialNumber=68B3FF166589C8441A44FDCA61F42B3A63AE1129
Validity
Not Before: May 21 04:02:07 2025 GMT
Not After : May 28 04:02:07 2025 GMT
Subject: CN=682d503f-cbea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7b:92:ff:28:75:d5:cc:3c:3e:59:31:b4:77:
9e:88:10:83:ec:e0:48:c9:fe:9e:71:28:0f:90:ea:
ce:42:db:28:60:27:dd:ad:ca:73:08:28:9f:45:04:
ce:0a:4a:c1:97:7e:26:76:06:fe:c8:61:c0:82:86:
f3:98:05:84:22:96:27:2a:30:69:a5:0a:be:2e:28:
d6:9c:c7:6f:fc:65:17:3b:3b:48:ac:d2:33:d5:e6:
eb:ef:8a:92:ce:c8:32:5e:a0:7e:d3:d5:11:62:4a:
28:7c:70:fd:c9:1e:08:6c:61:24:eb:ba:bc:18:0a:
07:81:48:85:57:da:91:e6:e3:95:7d:73:25:78:ee:
7f:dd:2a:1d:50:d3:e4:86:06:96:63:b7:d9:8b:80:
8d:d5:c0:96:e4:9c:8f:a6:ba:05:6e:6d:02:a9:b1:
ae:ad:88:0a:d2:e3:7e:0a:86:86:38:35:a7:b2:10:
7d:a1:aa:89:8a:39:7e:4f:92:40:63:7b:9f:11:0a:
c7:ba:27:12:a8:7d:c6:15:fe:d9:d8:9a:85:4d:56:
3b:2c:52:a3:0b:e2:ee:1b:31:84:bf:70:d1:5c:5a:
9f:e2:14:05:fc:d7:51:07:f3:d0:ea:cb:10:12:6d:
1e:b2:da:86:10:14:37:d0:77:61:f2:0a:18:05:90:
7f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:10:19:F4:A7:19:EE:8F:78:9C:C4:71:59:79:C2:74:54:85:CF:C2
X509v3 Authority Key Identifier:
keyid:68:B3:FF:16:65:89:C8:44:1A:44:FD:CA:61:F4:2B:3A:63:AE:11:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
92:e5:b5:8f:ec:05:aa:f1:ec:dc:8e:bb:7c:8d:27:a2:34:72:
f8:35:18:5f:97:98:ca:b5:e1:e8:24:fc:f7:c1:e7:16:21:5d:
45:d3:9d:f2:b0:ba:1b:bc:9d:b8:de:b9:e5:93:e6:dc:76:29:
f8:6e:ac:f6:93:e9:18:96:8f:86:81:f9:13:3e:45:83:9f:13:
08:f6:1c:28:9c:d1:4c:d1:3e:f3:ba:d6:7c:4d:e5:84:f1:b2:
0b:37:8f:a5:8e:73:61:0d:5a:9e:c2:c5:a4:70:0e:ea:bf:87:
f2:1a:fc:98:89:ba:ab:6e:4f:29:ea:9b:34:a7:2f:50:77:e1:
34:9e:52:2b:95:92:24:bc:fd:04:db:d8:38:f1:73:0a:f3:17:
c8:bc:0a:e7:83:d8:e6:d8:b4:f7:14:22:d4:73:29:2b:cb:f7:
76:be:d5:86:76:01:dd:c5:92:90:1e:f3:55:b0:79:87:13:de:
71:36:bf:84:e7:57:21:05:78:72:95:79:a6:d5:22:80:db:32:
35:1a:f1:b8:f8:ec:d3:02:40:22:ba:8c:cf:24:61:c4:94:e8:
d5:d8:60:14:2b:e1:ab:5a:59:39:9c:1b:a9:9e:51:9f:66:75:
48:3c:7a:56:6d:65:41:8f:78:64:1f:93:0b:49:fc:80:b8:97:
f4:7d:d6:0d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTJDNUQxMTAvBgNVBAUTKDY4QjNGRjE2NjU4OUM4NDQxQTQ0RkRDQTYxRjQyQjNB
NjNBRTExMjkwHhcNMjUwNTIxMDQwMjA3WhcNMjUwNTI4MDQwMjA3WjAYMRYwFAYD
VQQDEw02ODJkNTAzZi1jYmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4XuS/yh11cw8PlkxtHeeiBCD7OBIyf6ecSgPkOrOQtsoYCfdrcpzCCifRQTO
CkrBl34mdgb+yGHAgobzmAWEIpYnKjBppQq+LijWnMdv/GUXOztIrNIz1ebr74qS
zsgyXqB+09URYkoofHD9yR4IbGEk67q8GAoHgUiFV9qR5uOVfXMleO5/3SodUNPk
hgaWY7fZi4CN1cCW5JyPproFbm0CqbGurYgK0uN+CoaGODWnshB9oaqJijl+T5JA
Y3ufEQrHuicSqH3GFf7Z2JqFTVY7LFKjC+LuGzGEv3DRXFqf4hQF/NdRB/PQ6ssQ
Em0estqGEBQ30Hdh8goYBZB/EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4QGfSn
Ge6PeJzEcVl5wnRUhc/CMB8GA1UdIwQYMBaAFGiz/xZlichEGkT9ymH0KzpjrhEp
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkM1RC8zQjlERDQxMDky
QzQxMUVFQjUyMUJCNDlDNEY5QUUwMi9hTFBfRm1XSnlFUWFSUDNLWWZRck9tT3VF
U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2FMUF9GbVdKeUVRYVJQM0tZZlFyT21PdUVTay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
MkM1RC8zQjlERDQxMDkyQzQxMUVFQjUyMUJCNDlDNEY5QUUwMi9hTFBfRm1XSnlF
UWFSUDNLWWZRck9tT3VFU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCS5bWP7AWq8ezcjrt8jSeiNHL4NRhfl5jKteHoJPz3wecWIV1F053y
sLobvJ243rnlk+bcdin4bqz2k+kYlo+GgfkTPkWDnxMI9hwonNFM0T7zutZ8TeWE
8bILN4+ljnNhDVqewsWkcA7qv4fyGvyYibqrbk8p6ps0py9Qd+E0nlIrlZIkvP0E
29g48XMK8xfIvArng9jm2LT3FCLUcykry/d2vtWGdgHdxZKQHvNVsHmHE95xNr+E
51chBXhylXmm1SKA2zI1GvG4+OzTAkAiuozPJGHElOjV2GAUK+GrWlk5nBupnlGf
ZnVIPHpWbWVBj3hkH5MLSfyAuJf0fdYN
-----END CERTIFICATE-----
Generated at Mon Jun 2 06:38:01 2025 by rpki-client