Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
File: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft (raw, json)
Hash identifier: X+IJeFULigoB/zRT/bS1gL4VKtpxRC9HfS5ELCWE7HQ=
Subject key identifier: 6D:6C:A8:7C:7A:4C:D7:D7:48:58:12:0F:BE:45:4A:F3:8B:40:96:62
Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89
Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189
Certificate serial: 1D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
Manifest number: 1C
Signing time: Mon 17 Feb 2025 08:56:31 +0000
Manifest this update: Mon 17 Feb 2025 08:56:31 +0000
Manifest next update: Mon 24 Feb 2025 08:56:31 +0000
Files and hashes: 1: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl (hash: HA553DeGeclHeUmvYbjYJlf7/0m7AqF6Ehy3QrubdoU=)
2: 8C293C92C6AA11EF8BCD0A11C4F9AE02.roa (hash: MuD/wPLuVqCwHXluDzMMjr5sOZ3G8oyIiZ4H3JFgaA0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29 (0x1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A8B67
Validity
Not Before: Feb 17 08:56:31 2025 GMT
Not After : Feb 24 08:56:31 2025 GMT
Subject: CN=67b2f9bf-b166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a2:d8:ac:7f:9b:ca:39:bf:c6:57:bd:8f:7b:
6c:39:c1:f8:3d:e7:27:94:ec:2b:13:be:04:b4:86:
d0:9f:4f:68:98:1f:24:60:06:6b:e9:d8:cb:4c:7c:
e4:53:ec:0e:d0:f6:7d:ca:c0:f8:91:74:aa:20:65:
01:98:d8:2f:bc:16:d6:90:6f:20:ef:a9:72:3e:db:
b5:fe:1f:c0:6b:8d:08:83:07:92:c6:8b:bf:6a:87:
37:6c:12:50:5e:a0:07:36:9c:63:4d:40:2c:a4:44:
dd:a4:6b:3b:03:80:81:74:f8:81:ef:95:e2:76:0a:
32:b0:dc:b0:57:b5:c7:55:b0:52:6b:f7:8c:f9:a8:
b0:d2:01:51:36:19:f5:6d:3f:ea:ab:30:6b:3f:7e:
ec:9b:04:bb:a3:31:56:fe:73:39:18:69:d0:50:7b:
27:63:63:a5:f5:74:b4:46:ac:d5:0a:61:e3:a3:b7:
96:72:33:b2:c4:53:30:be:1e:ff:44:67:de:8c:ba:
39:0b:ea:f8:50:4c:47:c7:fa:ce:de:0b:09:71:02:
ca:16:49:3c:80:83:64:fc:ee:5b:46:c6:ef:3d:77:
19:d3:5c:20:19:16:83:e2:7c:ce:b6:ca:e8:f2:25:
f3:99:e2:a0:a6:b6:8a:40:40:73:99:c5:0c:9a:9a:
8e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:6C:A8:7C:7A:4C:D7:D7:48:58:12:0F:BE:45:4A:F3:8B:40:96:62
X509v3 Authority Key Identifier:
keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
48:07:61:e0:35:b9:94:53:d2:19:2c:b3:a3:d4:14:87:b7:b0:
9e:6b:e1:15:f2:58:db:1f:06:4c:5e:ca:61:90:3a:e1:28:d4:
ae:c3:76:cb:13:21:93:a6:b0:ed:fe:8c:97:db:59:db:c0:90:
db:8d:4f:65:2a:3c:af:a5:ea:80:cf:75:b0:a2:b4:e3:e1:d1:
18:cd:28:59:23:4c:66:70:6f:50:fc:d5:73:81:f3:46:a7:e0:
d8:63:3d:2c:94:97:22:35:2b:4a:b2:72:51:cf:f8:56:42:a8:
c7:fd:b3:a2:37:97:16:36:a8:22:83:a7:17:66:14:e9:47:83:
38:92:06:a9:ca:04:c5:5e:1f:d2:f2:e3:ad:ec:95:5f:93:52:
85:b8:d9:49:a1:31:cf:45:08:67:af:47:2d:75:e1:d4:ae:e5:
97:78:69:6e:fb:fd:3b:7d:01:6e:3e:44:22:ab:af:aa:12:9f:
69:63:f3:d6:46:cc:a0:7a:d6:1d:e7:d8:7a:a2:e5:f1:f1:08:
24:67:42:9c:fa:33:cc:7d:d2:a5:57:8a:73:5d:6a:48:0c:3e:
15:38:8f:b4:15:92:49:7c:fc:fa:4f:0a:f7:3a:9b:b6:af:e2:
9f:7b:22:36:36:c9:79:7d:80:3c:de:7e:11:a3:87:f2:6d:31:
28:5d:49:bf
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB
OEI2NzExMC8GA1UEBRMoRDQ1OUQyNjc1MjUyMzRBMDUzNUVDMzhEOENDQzg5OTAx
OTRERTE4OTAeFw0yNTAyMTcwODU2MzFaFw0yNTAyMjQwODU2MzFaMBgxFjAUBgNV
BAMTDTY3YjJmOWJmLWIxNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC3otisf5vKOb/GV72Pe2w5wfg95yeU7CsTvgS0htCfT2iYHyRgBmvp2MtMfORT
7A7Q9n3KwPiRdKogZQGY2C+8FtaQbyDvqXI+27X+H8BrjQiDB5LGi79qhzdsElBe
oAc2nGNNQCykRN2kazsDgIF0+IHvleJ2CjKw3LBXtcdVsFJr94z5qLDSAVE2GfVt
P+qrMGs/fuybBLujMVb+czkYadBQeydjY6X1dLRGrNUKYeOjt5ZyM7LEUzC+Hv9E
Z96MujkL6vhQTEfH+s7eCwlxAsoWSTyAg2T87ltGxu89dxnTXCAZFoPifM62yujy
JfOZ4qCmtopAQHOZxQyamo5rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbWyofHpM
19dIWBIPvkVK84tAlmIwHwYDVR0jBBgwFoAU1FnSZ1JSNKBTXsONjMyJkBlN4Ykw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4QjY3LzJGQTAwRDNFQzZB
QTExRUY4NEZCMEQwREM0RjlBRTAyLzFGblNaMUpTTktCVFhzT05qTXlKa0JsTjRZ
ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvMUZuU1oxSlNOS0JUWHNPTmpNeUprQmxONFlrLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4
QjY3LzJGQTAwRDNFQzZBQTExRUY4NEZCMEQwREM0RjlBRTAyLzFGblNaMUpTTktC
VFhzT05qTXlKa0JsTjRZay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAEgHYeA1uZRT0hkss6PUFIe3sJ5r4RXyWNsfBkxeymGQOuEo1K7DdssT
IZOmsO3+jJfbWdvAkNuNT2UqPK+l6oDPdbCitOPh0RjNKFkjTGZwb1D81XOB80an
4NhjPSyUlyI1K0qyclHP+FZCqMf9s6I3lxY2qCKDpxdmFOlHgziSBqnKBMVeH9Ly
463slV+TUoW42UmhMc9FCGevRy114dSu5Zd4aW77/Tt9AW4+RCKrr6oSn2lj89ZG
zKB61h3n2Hqi5fHxCCRnQpz6M8x90qVXinNdakgMPhU4j7QVkkl8/PpPCvc6m7av
4p97IjY2yXl9gDzefhGjh/JtMShdSb8=
-----END CERTIFICATE-----
Generated at Sat Feb 22 21:05:33 2025 by rpki-client