Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.mft
File: C5I347CGtYw82c5v1JrCYffVJaM.mft (raw, json)
Hash identifier: OG2m3vb2rUzXLGVZrL50ksRMnJAw4AjXp0PS/AVIAXU=
Subject key identifier: F4:E8:AE:24:CD:00:48:53:DB:CD:28:C5:2C:1B:A0:A3:82:22:E3:AC
Authority key identifier: 0B:92:37:E3:B0:86:B5:8C:3C:D9:CE:6F:D4:9A:C2:61:F7:D5:25:A3
Certificate issuer: /CN=A91F08FA/serialNumber=0B9237E3B086B58C3CD9CE6FD49AC261F7D525A3
Certificate serial: 20
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C5I347CGtYw82c5v1JrCYffVJaM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.mft
Manifest number: 1D
Signing time: Sat 29 Mar 2025 07:14:14 +0000
Manifest this update: Sat 29 Mar 2025 07:14:14 +0000
Manifest next update: Sat 05 Apr 2025 07:14:14 +0000
Files and hashes: 1: C5I347CGtYw82c5v1JrCYffVJaM.crl (hash: Wym/UigdgskRt9xVG7y1m4BplLp7ITZK+gDf8pwn28E=)
2: B4F27262FA2911EFA783CE2DC4F9AE02.roa (hash: bP9/t2AlBY53g2t6Q5eQ3rldZs73eo2gwKpDvHbyV4Y=)
3: 9C9C1046F7CD11EF9245601CC4F9AE02.roa (hash: DqTJbrCn4Uj3CYLjBwjQvRunEdKhXtsy8A7Y63yZ9r4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32 (0x20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F08FA
Validity
Not Before: Mar 29 07:14:14 2025 GMT
Not After : Apr 5 07:14:14 2025 GMT
Subject: CN=67e79dc6-a45b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:32:07:50:37:04:25:c1:47:28:0f:55:e9:b4:
b9:f7:23:a6:e0:7d:7d:62:26:58:5e:d1:f8:86:86:
27:9e:48:d1:4f:e1:c0:56:55:7c:a8:11:71:c1:15:
e9:a6:14:8e:e5:b2:20:ab:80:0f:b4:da:7f:45:c0:
0e:04:19:b9:57:36:64:f7:30:6c:dd:47:33:97:a8:
10:88:ca:75:f0:25:14:c0:a5:0e:55:57:ab:cc:95:
dc:42:ff:2e:35:d0:5e:32:20:f5:0c:75:6d:47:ee:
aa:6c:e6:c9:9b:d4:cb:8f:74:3e:d4:bd:b1:23:59:
b1:40:fd:d4:c8:5d:71:a8:da:2f:d3:d1:3a:2c:16:
4f:e3:d8:48:8c:83:81:fb:08:3b:43:84:1a:89:59:
57:6c:ae:dd:54:29:4a:96:4c:a5:83:59:2d:f6:d7:
b5:cf:06:95:1c:0b:36:45:5f:aa:75:1c:d8:a0:4c:
72:14:a6:a2:57:ba:bf:76:c0:e5:94:44:ea:97:3f:
a2:01:b7:e4:4b:ac:9a:d1:e8:52:3f:55:ae:6a:bc:
35:85:29:90:30:60:94:b1:77:14:f0:fc:af:5e:dc:
20:0b:47:14:bd:70:4b:06:bb:78:55:00:82:a4:68:
80:50:28:83:30:8f:00:84:f1:99:fd:d7:6d:e6:76:
9f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E8:AE:24:CD:00:48:53:DB:CD:28:C5:2C:1B:A0:A3:82:22:E3:AC
X509v3 Authority Key Identifier:
keyid:0B:92:37:E3:B0:86:B5:8C:3C:D9:CE:6F:D4:9A:C2:61:F7:D5:25:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C5I347CGtYw82c5v1JrCYffVJaM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0e:95:33:1a:e5:67:50:43:f7:8e:18:e9:32:14:ee:6a:26:bf:
a6:89:65:cf:9b:57:31:cc:09:6f:cc:96:66:cb:26:82:86:4e:
54:ee:f5:7d:e2:b5:bd:9e:39:57:db:96:fc:89:f5:71:cd:df:
40:6d:2d:9d:42:13:9a:d8:3c:91:4f:02:df:69:e4:9a:44:a0:
3a:55:eb:3d:9e:75:fe:ad:41:d4:54:85:c8:17:7a:1e:3f:5e:
ee:7e:27:f5:43:a4:29:4d:27:03:0d:40:82:50:61:ad:cb:2c:
0a:55:35:3e:77:a3:67:54:7e:92:68:9f:bf:d0:45:b3:2c:b1:
4c:41:df:f7:94:0e:a3:31:6a:41:1b:5b:bc:2d:01:ea:f0:04:
ac:27:e1:c5:5c:13:7e:ab:00:b3:74:12:a5:b9:1f:1e:8f:74:
82:67:11:cd:2c:37:21:91:b7:04:2a:c3:ab:09:cd:96:46:b0:
b0:f4:54:18:a0:b3:57:60:8d:96:2e:26:21:7e:de:59:16:5c:
de:f9:7f:da:6b:fe:ab:ab:5d:6d:22:d1:79:7e:48:6f:50:9d:
80:ef:75:6c:7c:b4:05:67:84:a0:db:63:f2:05:28:a8:8a:4c:
83:65:d1:25:95:c1:97:3e:85:53:ce:ed:08:fa:1f:5e:66:53:
5d:31:88:d6
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG
MDhGQTExMC8GA1UEBRMoMEI5MjM3RTNCMDg2QjU4QzNDRDlDRTZGRDQ5QUMyNjFG
N0Q1MjVBMzAeFw0yNTAzMjkwNzE0MTRaFw0yNTA0MDUwNzE0MTRaMBgxFjAUBgNV
BAMTDTY3ZTc5ZGM2LWE0NWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDIMgdQNwQlwUcoD1XptLn3I6bgfX1iJlhe0fiGhieeSNFP4cBWVXyoEXHBFemm
FI7lsiCrgA+02n9FwA4EGblXNmT3MGzdRzOXqBCIynXwJRTApQ5VV6vMldxC/y41
0F4yIPUMdW1H7qps5smb1MuPdD7UvbEjWbFA/dTIXXGo2i/T0TosFk/j2EiMg4H7
CDtDhBqJWVdsrt1UKUqWTKWDWS3217XPBpUcCzZFX6p1HNigTHIUpqJXur92wOWU
ROqXP6IBt+RLrJrR6FI/Va5qvDWFKZAwYJSxdxTw/K9e3CALRxS9cEsGu3hVAIKk
aIBQKIMwjwCE8Zn9123mdp/3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9OiuJM0A
SFPbzSjFLBugo4Ii46wwHwYDVR0jBBgwFoAUC5I347CGtYw82c5v1JrCYffVJaMw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOEZBL0QzN0Y2MjVDRTcz
RDExRUY4QTA0NjIxN0M0RjlBRTAyL0M1STM0N0NHdFl3ODJjNXYxSnJDWWZmVkph
TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvQzVJMzQ3Q0d0WXc4MmM1djFKckNZZmZWSmFNLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw
OEZBL0QzN0Y2MjVDRTczRDExRUY4QTA0NjIxN0M0RjlBRTAyL0M1STM0N0NHdFl3
ODJjNXYxSnJDWWZmVkphTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAA6VMxrlZ1BD944Y6TIU7momv6aJZc+bVzHMCW/MlmbLJoKGTlTu9X3i
tb2eOVfblvyJ9XHN30BtLZ1CE5rYPJFPAt9p5JpEoDpV6z2edf6tQdRUhcgXeh4/
Xu5+J/VDpClNJwMNQIJQYa3LLApVNT53o2dUfpJon7/QRbMssUxB3/eUDqMxakEb
W7wtAerwBKwn4cVcE36rALN0EqW5Hx6PdIJnEc0sNyGRtwQqw6sJzZZGsLD0VBig
s1dgjZYuJiF+3lkWXN75f9pr/qurXW0i0Xl+SG9QnYDvdWx8tAVnhKDbY/IFKKiK
TINl0SWVwZc+hVPO7Qj6H15mU10xiNY=
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:56:41 2025 by rpki-client