Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft
File: jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft (raw, json)
Hash identifier: C4fjDO7zHRylAKUDOE1jh77ioAsnj8o/PqDQ8vgLQuI=
Subject key identifier: 5A:81:0E:44:89:C5:F6:9B:42:54:22:58:2E:FC:C4:01:75:79:88:5C
Authority key identifier: 8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C
Certificate issuer: /CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C
Certificate serial: 1A64
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft
Manifest number: 1A5D
Signing time: Fri 28 Mar 2025 15:48:28 +0000
Manifest this update: Fri 28 Mar 2025 15:48:27 +0000
Manifest next update: Fri 04 Apr 2025 15:48:27 +0000
Files and hashes: 1: jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl (hash: AYF0sbVYu1RoYcO6tQRKbMX/n6XITIfekyD+Gj3QA0I=)
2: AFA37450139811EA807F1A26C4F9AE02.roa (hash: EvR5gfpmDfAVmSaNBVyf31LRk9wTqTU6OTSsCqxA5UQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6756 (0x1a64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C3A74
Validity
Not Before: Mar 28 15:48:27 2025 GMT
Not After : Apr 4 15:48:27 2025 GMT
Subject: CN=67e6c4cc-7c22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cf:a0:4c:41:a8:8f:91:90:5e:56:5a:52:8b:
56:69:77:76:a5:f4:bd:29:6d:c9:a1:0b:bd:8c:44:
f1:1e:2f:fb:60:83:ae:3d:e5:a0:bd:95:40:4c:e6:
0c:0e:9e:7d:e1:23:5b:1f:2a:2d:d3:ea:fe:4f:8d:
ff:b6:8c:2f:8a:8d:51:e1:56:f5:28:4f:f4:9e:ef:
a9:fe:a5:23:07:79:b5:e5:84:a1:07:8e:7f:cb:fa:
de:c2:b6:45:74:c6:13:77:e2:0a:97:0e:97:f4:69:
8c:cc:55:27:fc:9d:5c:81:9b:09:da:c3:28:3e:3a:
5a:44:53:9a:76:37:c8:b7:b6:93:18:3b:19:4c:e1:
ca:03:a8:e7:8f:dc:21:d4:88:72:3f:d7:02:63:65:
18:9f:e9:cf:84:54:e1:8e:da:8b:0e:49:3a:6c:cd:
27:db:d4:ae:d6:5b:53:b5:45:ed:6c:04:bf:2d:0c:
bb:eb:49:9c:71:00:fb:44:b8:71:39:67:cf:6d:89:
7a:7d:f5:97:61:bf:cd:8c:f7:53:1b:d9:59:f2:fc:
0e:9f:8c:92:c1:6c:bd:5e:80:bf:0f:b5:6b:02:f0:
80:a3:26:6f:b2:fb:ff:73:36:60:69:3e:89:dc:6b:
75:1e:ef:16:5c:f0:a9:9f:02:1d:bb:ce:19:77:22:
eb:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:81:0E:44:89:C5:F6:9B:42:54:22:58:2E:FC:C4:01:75:79:88:5C
X509v3 Authority Key Identifier:
keyid:8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
38:3b:23:89:15:b0:b9:ca:ba:27:95:d9:f1:11:3c:e5:02:44:
c6:ed:b2:1e:be:b8:96:5e:6f:42:9e:11:1a:f3:48:ab:99:1f:
a5:fc:76:79:2e:00:8d:39:5b:7e:c3:08:0c:49:87:d0:bf:76:
c9:d8:86:77:49:05:fd:98:70:ef:c8:bd:bb:3f:bf:2c:2f:b6:
f0:1b:bb:fa:4f:95:fe:13:4e:fa:19:b4:03:0f:da:98:09:fd:
96:6a:66:7e:dd:a8:79:96:43:33:73:1b:b8:8e:76:ed:29:3e:
5f:09:c1:33:fd:5d:dd:6f:60:fb:b6:de:de:30:4c:be:9b:32:
0e:ac:fb:88:a4:46:c3:16:ef:e5:2b:44:9f:98:62:5c:75:9f:
e2:80:53:8d:49:57:46:ae:21:10:a9:fc:45:1b:e4:c9:ce:e4:
e1:c9:b2:f7:ac:0c:04:01:55:51:8a:90:17:d6:ed:e5:d2:4c:
29:d5:84:d4:e0:ba:5e:3b:fb:67:78:70:5c:b3:08:b8:c1:c9:
92:6e:04:5a:4c:20:19:bb:9b:b0:a6:11:1a:89:37:45:04:4b:
c2:1d:6c:e1:c5:86:0a:92:35:68:19:9f:2e:61:1b:1d:de:21:
df:96:d4:16:5b:3e:24:2c:fa:cf:09:3f:a5:6d:5c:a7:70:62:
39:90:61:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:25:09 2025 by rpki-client