Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft
File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json)
Hash identifier: jFv+9LKlY3z59bv0bpbI+XyRP+YisZPOG6TEVSW+Y3Y=
Subject key identifier: 48:0F:4B:C9:7A:FE:B6:A2:66:69:E2:40:5D:95:7C:C5:08:35:9F:06
Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5
Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5
Certificate serial: 01C0
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft
Manifest number: 01BD
Signing time: Sat 29 Mar 2025 02:35:38 +0000
Manifest this update: Sat 29 Mar 2025 02:35:37 +0000
Manifest next update: Sat 05 Apr 2025 02:35:37 +0000
Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: cJEx8VJkJrQjp2MEa2fhDloc/lDHsZC4tetGfYcCVps=)
2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: EdWi73Mh5xQLy3TivA4ubB2nlEznz8QrqPnUKcwGaiM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448 (0x1c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5CEA
Validity
Not Before: Mar 29 02:35:37 2025 GMT
Not After : Apr 5 02:35:37 2025 GMT
Subject: CN=67e75c7a-a803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:67:3f:dd:df:a3:4b:21:1b:31:ba:a9:d3:da:
c8:6d:62:a6:1b:85:79:da:a3:45:0b:f7:d8:e5:3d:
59:73:cf:b7:58:de:e8:33:ef:ba:c8:91:02:ef:85:
54:08:52:e5:2f:f9:d6:6e:a0:c6:7c:2c:52:8e:63:
a4:54:c9:cd:12:ef:eb:c9:33:dc:b8:30:8b:bc:62:
9f:f0:c6:c4:b9:95:53:d4:6b:7b:1f:f4:19:d3:20:
aa:00:98:78:20:44:9b:6e:74:ad:d6:c1:99:22:f3:
6d:6b:a2:98:e9:c3:ab:4b:87:8c:8a:05:4a:7a:25:
08:9d:b8:66:ac:f5:b0:52:fd:9e:82:04:8d:e6:a4:
2e:ef:b4:92:06:74:89:d6:57:b3:d1:eb:2e:49:43:
3b:30:fd:ab:d8:a5:10:0b:42:62:1d:b4:e2:a0:be:
a8:9e:35:bc:46:d3:36:9d:94:89:bf:e1:0e:08:4c:
1d:21:d2:7b:41:24:80:c1:21:b4:6f:d8:72:c2:65:
f6:8e:07:8c:c1:34:8c:c3:d8:88:22:07:25:69:44:
28:d1:bc:5e:25:88:30:41:e7:3a:ac:e3:01:45:f6:
d0:1e:c6:9d:6b:30:47:a0:dc:77:21:ea:25:84:98:
42:64:3f:60:1f:8c:2d:57:2d:29:df:fc:e4:ea:2a:
86:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0F:4B:C9:7A:FE:B6:A2:66:69:E2:40:5D:95:7C:C5:08:35:9F:06
X509v3 Authority Key Identifier:
keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
67:f9:d3:e4:35:dc:83:9a:fe:99:cc:43:a6:0d:16:24:7f:de:
c9:86:6f:89:01:55:b8:14:95:9d:34:f4:55:89:8c:fd:ec:74:
7c:98:13:e4:df:0e:f0:08:68:9c:48:e2:5c:72:01:79:6a:a4:
98:eb:41:7b:c0:8f:30:f3:f1:a3:2a:99:ca:4d:26:59:28:60:
b8:fe:0e:29:f5:ae:0f:49:7a:80:9b:e8:27:dd:da:0b:17:26:
49:09:30:87:1a:9c:e4:a5:75:f7:df:42:19:c1:a1:b5:99:ba:
43:c0:8c:8f:e7:e0:7f:f8:2b:42:2c:05:a5:4e:77:93:78:db:
bc:61:85:cf:cf:d0:3d:fb:0f:9e:a3:06:cb:4a:d2:b4:e2:95:
cd:1e:ef:6b:67:5a:64:1c:1f:ab:6f:6f:b6:39:bf:07:ea:28:
f6:b7:ab:8e:18:38:9d:8c:93:24:05:9d:bf:7f:c6:12:83:42:
24:fd:7c:2c:d9:82:f0:05:e0:bb:da:43:97:12:d0:66:ba:7e:
29:1d:19:ec:70:5f:83:38:14:64:c8:21:9e:b9:f2:23:0b:f4:
cd:cb:fe:fa:e7:3c:a9:2d:04:e2:1a:25:9b:96:6c:79:20:28:
15:b4:9d:7f:ed:ec:5c:18:4f:5c:8b:db:50:06:41:01:b7:aa:
45:8a:63:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:34:02 2025 by rpki-client