Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json)
Hash identifier: oZR5MpClDFf/bHgXLxuwN9cNLKco9YdFxoepXHnLR7U=
Subject key identifier: A0:FC:D2:6A:5F:3F:A6:13:2C:57:35:ED:67:2E:A9:AD:69:73:63:5B
Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05
Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05
Certificate serial: 0568
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
Manifest number: 0560
Signing time: Fri 28 Mar 2025 23:39:21 +0000
Manifest this update: Fri 28 Mar 2025 23:39:20 +0000
Manifest next update: Fri 04 Apr 2025 23:39:20 +0000
Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: DevBC1cqQxXSLYc4aA4rqLYwj8+L5Cz05zl/RN2zQto=)
2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: tBjtbPJkQLSdN5Mupxr4RXelnuicO0p7Kp/u349fbi0=)
3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: 5yL82AjNiBtE4vdmcnCW/8glBDbdrO2x3U6tcVWP0Uk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1384 (0x568)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E2B66
Validity
Not Before: Mar 28 23:39:20 2025 GMT
Not After : Apr 4 23:39:20 2025 GMT
Subject: CN=67e73328-84c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:30:ab:dc:01:7f:5e:ba:82:04:48:a0:85:22:
9c:bd:4d:21:1e:ec:6a:d6:a4:7f:44:e1:e1:8a:f8:
9c:95:38:20:71:b3:9a:6d:f3:d7:5f:4b:31:52:8f:
3a:de:64:51:89:a7:28:e0:d6:dd:80:f2:e9:5b:77:
01:d5:cd:12:11:25:05:f5:b9:56:8b:cf:bb:74:d4:
67:99:6b:d8:5d:06:d5:bc:5c:f6:41:da:1b:84:7e:
df:1b:ab:b2:c7:2a:99:89:59:e3:4f:ff:4c:94:05:
55:43:19:65:94:7c:c7:84:81:b8:1c:94:01:d3:32:
b0:69:ec:2c:b6:37:51:29:57:44:81:10:85:7e:64:
81:97:3a:a8:b0:00:d0:ed:27:cc:fd:4f:15:21:10:
8e:5c:35:98:97:30:13:47:51:27:3c:39:fb:cf:3e:
9b:18:d3:35:2d:ce:96:d7:a0:53:e1:36:24:49:ed:
79:2f:39:29:48:68:90:76:76:f7:b3:e5:57:3f:ab:
11:fe:73:ff:bc:2c:48:45:1f:60:34:dc:66:4d:a6:
df:9c:3b:29:73:4c:f1:29:f4:6a:be:73:3e:48:00:
c1:62:05:d0:39:04:d9:f2:de:b3:d5:08:02:2a:56:
10:1f:48:07:58:06:ce:07:af:7a:27:01:02:07:7c:
13:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:FC:D2:6A:5F:3F:A6:13:2C:57:35:ED:67:2E:A9:AD:69:73:63:5B
X509v3 Authority Key Identifier:
keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9a:0b:86:49:48:31:26:f1:aa:13:7f:d3:d7:0a:44:cc:07:be:
b0:29:49:21:14:dd:47:3c:a1:f5:d4:5d:b3:c3:f4:6e:01:4c:
05:63:22:a3:d5:13:7e:41:4a:49:5d:b5:2b:1d:68:1a:53:a6:
27:6c:a1:7c:1b:38:c4:c1:c1:b8:71:31:ef:f1:fc:38:25:9a:
56:0b:5b:b5:40:de:37:77:7f:12:21:87:29:8c:ed:90:bc:9f:
df:77:fb:da:df:13:b1:bd:ff:ec:0a:9c:e8:48:e1:33:c2:49:
54:59:51:53:e1:60:e0:b0:e3:53:b3:cd:0f:17:bc:81:9f:15:
71:50:f6:2e:00:57:1a:fd:1c:33:b5:6d:e5:cb:65:bf:1a:fc:
4c:45:01:36:2e:b7:88:b3:33:35:1b:c9:d9:39:de:87:db:71:
0c:31:30:8e:c8:ce:eb:0e:d6:b8:b9:65:b1:1a:f2:13:10:29:
ea:25:11:32:54:bc:63:ab:dc:f6:ed:1b:28:d5:f4:62:c2:ba:
02:26:b6:27:f4:49:64:1a:9e:25:3c:9e:01:d9:d3:b2:89:d2:
33:19:6d:26:69:5b:49:bf:8e:f0:0d:15:28:1e:60:51:4f:9a:
12:80:b3:5b:71:01:b1:89:4b:00:1d:63:33:d5:11:b2:3e:a2:
6b:62:8f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:28:06 2025 by rpki-client