Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft
File: MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft (raw, json)
Hash identifier: C6csjioSswMPMvlocHPiqNY7QfiiI55JYkzUERENsUY=
Subject key identifier: 26:34:C0:7F:24:60:0D:45:B2:95:83:C7:92:45:BB:E4:03:78:B3:55
Authority key identifier: 31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90
Certificate issuer: /CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890
Certificate serial: 014A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft
Manifest number: 013A
Signing time: Sat 29 Mar 2025 03:56:24 +0000
Manifest this update: Sat 29 Mar 2025 03:56:23 +0000
Manifest next update: Sat 05 Apr 2025 03:56:23 +0000
Files and hashes: 1: MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl (hash: a0ml+P5Cv0XyuQViEfxLglk9vfgwDY+0yAvfUeJORJQ=)
2: 268DF20A940C11EE9B034255C4F9AE02.roa (hash: kgaZFM6PEa7OxBpQNYQJyC2BXzh6kZmUunDtbxoanho=)
3: 2732E7CE940C11EE9B034255C4F9AE02.roa (hash: vxzRpo3gFHIybngZJMla9i3xRZ+JSBWrRy4xi4ckalM=)
4: D29109C4EC6E11EEAEF9610BC4F9AE02.roa (hash: D8dAG/9CmCMBEAtiY945ZqCN3MyX7EsagCsHQSrxDDU=)
5: 7474F998377111EE8AFEB74DC4F9AE02.roa (hash: uxmO0Zu81b9ijLgJWFAnqvmhDLc0ZfCAbuCH6EbXLi0=)
6: B0562E7AEC6E11EEB7FC060BC4F9AE02.roa (hash: SpJD8GcSBoUz5MPi6PJr9VjMBRC58LFgHcmGttoe0yo=)
7: D2093EF4EC6E11EEAEF9610BC4F9AE02.roa (hash: G4Dla87V8rtQVoFrowa7K0BJ1dHwJVBSq0/2lBCHVpo=)
8: E9874B2A16D011EF90793868C4F9AE02.roa (hash: ViBEiXsjPtwDWgjWAoRfyKQaAhEvEFxJcWrERgHGyz4=)
9: AFDF1A1AEC6E11EEB7FC060BC4F9AE02.roa (hash: sVe/dlsdpYGwjAAFXOmmuTaA1ya2H4hHFG6dxtS3qXc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330 (0x14a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A7B94
Validity
Not Before: Mar 29 03:56:23 2025 GMT
Not After : Apr 5 03:56:23 2025 GMT
Subject: CN=67e76f67-98ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:53:a2:cc:e2:b9:2c:02:e3:10:b5:1c:60:ba:
a9:7d:d0:93:86:10:d6:a9:6d:76:9f:54:39:4f:ca:
0d:18:0a:ee:2f:e3:85:41:68:b4:e5:1e:48:be:ad:
9f:52:4d:0c:df:39:50:aa:6e:4a:d7:b0:00:9d:c8:
d0:36:e3:b8:0f:39:89:79:74:2a:5a:c3:3e:8a:55:
c6:b7:e6:da:f7:d5:95:2a:64:59:8b:84:6e:f2:72:
31:4b:17:04:cc:82:7c:ef:77:97:a8:0c:35:6c:88:
22:b1:06:76:27:ed:1d:dd:04:9a:41:46:17:42:7e:
7e:7f:ed:fa:2a:06:dd:c5:10:29:c6:5b:d4:7d:f6:
5d:c6:16:94:a0:93:61:19:65:45:00:2a:ea:f6:b9:
18:31:36:3b:76:ec:ab:f5:28:39:fa:5b:72:0f:9b:
25:0f:65:91:c4:5d:ff:1f:f7:0c:52:0f:49:9b:b0:
95:01:f5:86:21:35:75:f8:4b:d5:0d:46:86:84:ca:
21:32:8c:91:2b:d9:8c:8e:ee:37:6c:cc:55:e9:97:
71:12:f6:dc:7a:75:63:86:c3:5f:24:78:ec:34:36:
74:67:25:2a:11:f1:eb:50:e8:9c:0a:13:0a:d9:09:
01:05:e5:08:32:78:4f:cf:36:63:a4:4d:c9:1d:78:
47:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:34:C0:7F:24:60:0D:45:B2:95:83:C7:92:45:BB:E4:03:78:B3:55
X509v3 Authority Key Identifier:
keyid:31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c7:19:5e:dc:b1:99:e0:30:df:5d:3a:90:e9:84:5b:e3:53:f6:
0b:2c:67:dd:8b:ae:d3:58:f9:60:98:eb:75:76:ec:f7:a1:2f:
a1:e4:16:08:2a:7e:9b:3c:81:a6:17:8e:0b:98:9f:b0:87:ac:
39:e4:5b:f2:43:86:7e:0c:d9:02:37:32:60:db:30:2d:85:91:
ce:1e:c4:dd:0a:d9:6e:13:d0:db:d9:50:2e:77:df:b8:6c:ed:
67:a3:fd:d2:7d:e7:d5:b8:fa:95:ce:7f:a6:cf:e5:4e:51:83:
f8:b5:c2:1d:d2:26:1d:31:ee:ad:f6:ee:2b:cd:49:d5:9c:89:
6d:77:f7:c0:70:75:d1:6e:a2:07:0d:b1:aa:44:dc:af:c4:b9:
e1:ed:1e:c0:f0:48:66:3f:d5:21:c5:ee:d8:89:e0:f5:9c:cd:
0d:e7:7c:9b:31:39:82:77:94:ef:48:d4:9b:3e:bb:70:0e:6b:
ef:ef:79:cc:70:f7:3f:72:7b:76:4c:fc:bd:24:4a:f7:ff:51:
9e:da:1f:26:e0:41:8f:17:fd:7b:1d:8a:ee:bd:a8:6e:b3:b6:
5b:57:b0:a5:12:be:95:84:f5:4e:e0:c8:c0:bd:a2:93:e4:b6:
59:9f:95:63:a1:68:76:f0:1e:9a:05:de:6f:c9:32:40:c7:2f:
9a:43:d3:df
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTdCOTQxMTAvBgNVBAUTKDMxMjZGNEVGMDVFM0FFNzVBMDkxNDRCNjY3RDM5MzQ3
RDREQUE4OTAwHhcNMjUwMzI5MDM1NjIzWhcNMjUwNDA1MDM1NjIzWjAYMRYwFAYD
VQQDEw02N2U3NmY2Ny05OGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAv1OizOK5LALjELUcYLqpfdCThhDWqW12n1Q5T8oNGAruL+OFQWi05R5Ivq2f
Uk0M3zlQqm5K17AAncjQNuO4DzmJeXQqWsM+ilXGt+ba99WVKmRZi4Ru8nIxSxcE
zIJ873eXqAw1bIgisQZ2J+0d3QSaQUYXQn5+f+36KgbdxRApxlvUffZdxhaUoJNh
GWVFACrq9rkYMTY7duyr9Sg5+ltyD5slD2WRxF3/H/cMUg9Jm7CVAfWGITV1+EvV
DUaGhMohMoyRK9mMju43bMxV6ZdxEvbcenVjhsNfJHjsNDZ0ZyUqEfHrUOicChMK
2QkBBeUIMnhPzzZjpE3JHXhHJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCY0wH8k
YA1FspWDx5JFu+QDeLNVMB8GA1UdIwQYMBaAFDEm9O8F4651oJFEtmfTk0fU2qiQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0I5NC9DQzc0MUJCNjM3
NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJuV2drVVMyWjlPVFI5VGFx
SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL01TYjA3d1hqcm5XZ2tVUzJaOU9UUjlUYXFKQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
N0I5NC9DQzc0MUJCNjM3NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJu
V2drVVMyWjlPVFI5VGFxSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQDHGV7csZngMN9dOpDphFvjU/YLLGfdi67TWPlgmOt1duz3oS+h5BYI
Kn6bPIGmF44LmJ+wh6w55FvyQ4Z+DNkCNzJg2zAthZHOHsTdCtluE9Db2VAud9+4
bO1no/3SfefVuPqVzn+mz+VOUYP4tcId0iYdMe6t9u4rzUnVnIltd/fAcHXRbqIH
DbGqRNyvxLnh7R7A8EhmP9Uhxe7YieD1nM0N53ybMTmCd5TvSNSbPrtwDmvv73nM
cPc/cnt2TPy9JEr3/1Ge2h8m4EGPF/17HYruvahus7ZbV7ClEr6VhPVO4MjAvaKT
5LZZn5VjoWh28B6aBd5vyTJAxy+aQ9Pf
-----END CERTIFICATE-----
Generated at Fri Apr 11 14:05:59 2025 by rpki-client