Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft
File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json)
Hash identifier: 46sqzQNm28dJXzyOZSGF/laye1bRfqt8IwrLfuEH54M=
Subject key identifier: 01:A3:8E:F3:B0:B8:B5:7A:1A:95:44:AA:01:68:12:8A:BE:0A:D3:39
Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Certificate serial: 081E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft
Manifest number: 0783
Signing time: Fri 28 Mar 2025 22:15:55 +0000
Manifest this update: Fri 28 Mar 2025 22:15:54 +0000
Manifest next update: Fri 04 Apr 2025 22:15:54 +0000
Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: MjZol2InnyVCW1hK5UQR9b7tYW5C9dJn8tNjiK/N+m0=)
2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: JCIJiRdjoJPwGnugBIK3v/SX30S5Hj97puNSPDnZHa0=)
3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: aBs0HSQclxaDqKZvgHQYQl981j8saXju4dpMEUuQAU4=)
4: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: Rtf4SCa2SLq1aWm8pt96fKW5kPl75H0zBH9P2CmsGlU=)
5: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: xyRyhhQBvFg1P0171dGNRFnwuXqCBoYXwtzjvJ6IHcw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2078 (0x81e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CB7AB
Validity
Not Before: Mar 28 22:15:54 2025 GMT
Not After : Apr 4 22:15:54 2025 GMT
Subject: CN=67e71f9a-242e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a4:75:5f:3a:b9:bd:6b:87:97:84:7f:f2:19:
b0:67:4f:b3:ed:ad:e5:7f:b3:b4:12:0c:4d:b0:48:
5d:a3:23:06:77:b4:47:32:93:81:9b:84:5c:af:f0:
2b:4f:29:4d:4f:be:52:63:a8:e9:e8:72:09:40:9c:
15:4a:a1:d6:46:a1:c5:58:08:4b:19:d3:4d:72:ae:
a0:37:79:d8:71:db:0b:44:8f:26:ce:86:81:ba:d7:
de:c2:70:af:8e:4d:d2:11:7f:32:50:c8:a6:e9:97:
22:8a:06:a8:ab:11:a7:11:f1:6c:10:38:5d:15:a1:
c5:84:c2:27:1e:cf:97:9e:be:89:08:f0:a5:15:68:
b3:de:ef:bd:cc:b7:cf:15:6b:f7:ef:89:84:36:ba:
c0:86:f5:dd:d3:c8:ca:e5:ea:6c:a4:32:ad:de:28:
89:28:ab:0f:1f:62:00:a8:f3:46:8d:01:bc:cf:5d:
d0:5c:4e:57:e6:42:d8:0d:82:44:8d:29:3f:3d:0c:
a8:dd:ed:51:e4:68:b4:37:4e:35:2f:65:e3:4e:57:
89:18:18:e6:78:2a:52:35:33:28:27:a8:29:35:80:
c9:55:33:18:d3:07:af:ab:a6:7b:2a:08:44:de:dd:
51:5e:4d:7a:e7:84:fe:5e:68:2b:18:42:35:b8:9e:
47:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A3:8E:F3:B0:B8:B5:7A:1A:95:44:AA:01:68:12:8A:BE:0A:D3:39
X509v3 Authority Key Identifier:
keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
cf:e1:1f:f2:e8:d6:09:61:fd:04:84:a6:cb:fa:1a:5b:8d:65:
89:0e:65:a8:b9:8f:f3:5b:ad:d6:16:cc:7f:31:70:1f:5b:d0:
07:82:46:28:a9:af:5e:9e:b4:d4:31:02:0a:97:43:0a:41:2a:
c1:5e:7d:fb:6c:86:c6:e9:de:34:77:bd:af:47:67:fe:7a:36:
c2:9e:16:d6:e6:d5:e9:84:02:c9:49:93:ff:4a:0e:71:5a:35:
c4:0b:8c:03:8a:25:c0:1a:53:ad:4f:09:3f:ab:a1:17:30:6c:
c2:e7:4e:75:d0:c0:70:cb:6e:b4:e3:d4:30:e0:75:ca:a0:7c:
05:85:1e:63:2b:86:ff:60:5b:66:14:e4:5b:92:8f:52:a5:6e:
0d:f6:75:ee:dc:d4:d2:95:04:07:2a:f8:e0:3b:6c:69:73:f1:
8a:91:dc:20:3f:90:2f:73:0f:30:48:b7:c8:fd:b4:01:6f:84:
40:16:18:71:82:b3:84:a2:57:83:73:eb:97:bc:9a:2c:06:ce:
6e:f0:60:ad:fe:03:29:f3:0a:39:4c:ff:72:ba:d9:d3:a8:7c:
0a:6e:8f:49:54:7e:e5:6c:a5:47:4a:1e:ba:51:90:0d:b4:40:
f3:91:77:4c:e5:cf:58:7d:62:89:bc:6a:d3:5a:ea:c4:e2:10:
c4:87:2b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:17:52 2025 by rpki-client