Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft
File: 4OynvFsloMo3TZqDzEz5DdbPIgk.mft (raw, json)
Hash identifier: cw9miNW/5P1JZ67iA4IwdEzG1cc1BAq6kvuIH5Mj/GQ=
Subject key identifier: 9E:EE:51:34:53:CD:AB:3A:F0:B4:9F:4D:FB:13:70:8D:8B:A8:23:EC
Authority key identifier: E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09
Certificate issuer: /CN=A91C74B5/serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209
Certificate serial: 0147
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft
Manifest number: 0139
Signing time: Sat 29 Mar 2025 03:54:41 +0000
Manifest this update: Sat 29 Mar 2025 03:54:40 +0000
Manifest next update: Sat 05 Apr 2025 03:54:40 +0000
Files and hashes: 1: 4OynvFsloMo3TZqDzEz5DdbPIgk.crl (hash: mYvZUUZEuk3MUnIaIQ/+DJK0IQIMD8bUJJrDivP2HKk=)
2: FBCA5E628A4E11EE8EFFA44BC4F9AE02.roa (hash: n7d+wfVovpgFh/VPuHK0Be+tZJiAokXkxVBH6z58Cdo=)
3: 23E0203034AF11EE90E6263DC4F9AE02.roa (hash: qRwojUTlxnLhuw/Mk800h2tw73R4wHeoNMLoVaIWLSQ=)
4: FE53F0DE34AA11EE85FF0735C4F9AE02.roa (hash: FSryM40tOFsx9/9SakfMh/QfDHk+qmxC9WGqNR/nxQA=)
5: 2343647034AF11EE90E6263DC4F9AE02.roa (hash: O7wU5uPOsDFh8TlK1r/cSTqhuO+kftwlxz4zNibCfJw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 327 (0x147)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C74B5
Validity
Not Before: Mar 29 03:54:40 2025 GMT
Not After : Apr 5 03:54:40 2025 GMT
Subject: CN=67e76f00-937c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b5:aa:35:3d:00:d1:9e:58:fd:93:82:af:bb:
22:00:d7:f5:08:59:53:c5:27:ed:ef:9b:9f:1e:d0:
bd:f2:2b:d7:69:9c:2c:0d:a4:4e:51:6a:e8:8c:b0:
c3:38:3d:17:6d:6d:2a:77:5a:61:79:ef:64:4c:24:
e1:d1:ec:70:40:5e:93:d9:61:cf:39:55:ac:2a:f0:
fa:aa:3b:c9:b7:da:2d:67:61:45:b2:6b:d6:56:d4:
df:66:91:0b:01:d5:36:c1:bc:4b:fb:ba:83:4e:f5:
0e:b7:4f:e6:8f:0b:fd:76:d7:31:3c:3b:4d:7b:76:
72:01:e1:2c:7d:1c:18:64:d8:7f:73:a4:e1:cf:bd:
fb:fc:33:0b:e9:c7:fb:10:36:80:88:75:0b:f8:6f:
07:3e:a9:4b:50:41:7f:b9:80:a2:cf:13:c9:72:61:
02:5c:16:72:e9:c1:fb:50:af:e2:6c:f4:c0:d8:f6:
e1:1f:2d:fa:13:87:b2:40:b9:9f:17:fe:d9:e4:33:
65:f2:c7:05:69:84:d9:c6:8a:3d:31:06:be:34:06:
b6:7f:7d:8f:31:70:35:3b:f2:22:22:5e:00:9d:4f:
11:29:8c:f3:cf:64:7c:7b:2e:af:86:2c:16:d6:3e:
c2:f5:56:f0:0b:91:ac:0a:28:57:22:33:59:dd:6f:
b6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EE:51:34:53:CD:AB:3A:F0:B4:9F:4D:FB:13:70:8D:8B:A8:23:EC
X509v3 Authority Key Identifier:
keyid:E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c7:6b:6a:ad:36:63:ae:be:5e:61:4e:74:16:9d:d7:a3:64:34:
cf:9a:8b:2e:ca:fd:59:68:29:4e:21:2d:40:f3:c4:69:b7:31:
70:92:6a:b9:dc:81:e5:c3:b4:1f:4d:4d:e4:20:1e:af:77:e3:
bf:cb:dd:4a:12:12:cd:c2:f7:83:f5:9b:44:a1:c4:46:cb:5a:
5f:6e:1f:18:6f:3d:73:69:92:cb:3d:d3:d3:a6:00:47:2f:8f:
bf:cc:d5:c9:74:e2:ba:2b:7d:42:a1:fe:c0:a8:ec:a1:bf:2a:
87:e6:11:55:44:8a:7c:8a:51:85:72:76:31:2d:ee:e2:e2:a2:
1a:6e:1b:37:4b:2b:9a:eb:9e:4c:63:ec:c1:13:74:ba:e2:0b:
a3:3b:f4:e0:13:ce:bd:6c:77:e8:4f:cf:40:0d:0e:40:f6:7b:
e2:30:38:f8:fc:68:ae:a0:fa:b5:e5:3d:93:79:de:a9:c0:8d:
21:07:13:8c:c5:8c:73:bb:bb:a8:c5:40:cc:6c:c6:02:cf:5a:
47:9e:11:72:93:9d:07:8f:a4:27:29:66:43:d9:0a:38:8d:11:
ba:26:91:1c:da:3f:77:0f:40:fa:f5:44:a2:cf:e0:b4:ad:9e:
6b:b7:e8:c5:39:92:48:3f:52:05:36:7b:95:28:b8:67:43:cb:
9f:11:80:d4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Qzc0QjUxMTAvBgNVBAUTKEUwRUNBN0JDNUIyNUEwQ0EzNzREOUE4M0NDNENGOTBE
RDZDRjIyMDkwHhcNMjUwMzI5MDM1NDQwWhcNMjUwNDA1MDM1NDQwWjAYMRYwFAYD
VQQDEw02N2U3NmYwMC05MzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAs7WqNT0A0Z5Y/ZOCr7siANf1CFlTxSft75ufHtC98ivXaZwsDaROUWrojLDD
OD0XbW0qd1phee9kTCTh0exwQF6T2WHPOVWsKvD6qjvJt9otZ2FFsmvWVtTfZpEL
AdU2wbxL+7qDTvUOt0/mjwv9dtcxPDtNe3ZyAeEsfRwYZNh/c6Thz737/DML6cf7
EDaAiHUL+G8HPqlLUEF/uYCizxPJcmECXBZy6cH7UK/ibPTA2PbhHy36E4eyQLmf
F/7Z5DNl8scFaYTZxoo9MQa+NAa2f32PMXA1O/IiIl4AnU8RKYzzz2R8ey6vhiwW
1j7C9VbwC5GsCihXIjNZ3W+2HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7uUTRT
zas68LSfTfsTcI2LqCPsMB8GA1UdIwQYMBaAFODsp7xbJaDKN02ag8xM+Q3WzyIJ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzRCNS85ODA0MzU2RTM0
QUExMUVFQTA2QUUxMzNDNEY5QUUwMi80T3ludkZzbG9NbzNUWnFEekV6NURkYlBJ
Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyLzRPeW52RnNsb01vM1RacUR6RXo1RGRiUElnay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
NzRCNS85ODA0MzU2RTM0QUExMUVFQTA2QUUxMzNDNEY5QUUwMi80T3ludkZzbG9N
bzNUWnFEekV6NURkYlBJZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQDHa2qtNmOuvl5hTnQWndejZDTPmosuyv1ZaClOIS1A88RptzFwkmq5
3IHlw7QfTU3kIB6vd+O/y91KEhLNwveD9ZtEocRGy1pfbh8Ybz1zaZLLPdPTpgBH
L4+/zNXJdOK6K31Cof7AqOyhvyqH5hFVRIp8ilGFcnYxLe7i4qIabhs3Syua655M
Y+zBE3S64gujO/TgE869bHfoT89ADQ5A9nviMDj4/GiuoPq15T2Ted6pwI0hBxOM
xYxzu7uoxUDMbMYCz1pHnhFyk50Hj6QnKWZD2Qo4jRG6JpEc2j93D0D69USiz+C0
rZ5rt+jFOZJIP1IFNnuVKLhnQ8ufEYDU
-----END CERTIFICATE-----
Generated at Sat Apr 5 05:07:50 2025 by rpki-client