Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft
File: 8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft (raw, json)
Hash identifier: t7laraCgZt66TiV88GZaOLfZBg+OgbSJD4sAbaCzSp0=
Subject key identifier: DB:5B:A0:62:F1:FD:B3:C2:99:ED:9B:39:20:46:8E:4D:21:B5:9E:BB
Authority key identifier: F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17
Certificate issuer: /CN=A91329C1/serialNumber=F259B8AC9CF43BD7C59454E5C83ECF48F9FB8717
Certificate serial: 02DE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft
Manifest number: 02DA
Signing time: Sun 19 Oct 2025 22:10:22 +0000
Manifest this update: Sun 19 Oct 2025 22:10:21 +0000
Manifest next update: Sun 26 Oct 2025 22:10:21 +0000
Files and hashes: 1: 8lm4rJz0O9fFlFTlyD7PSPn7hxc.crl (hash: HWXbI2tkZe5czIBPLpadbnVJsfv1/fMuVKBUccXVeCU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 734 (0x2de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91329C1, serialNumber=F259B8AC9CF43BD7C59454E5C83ECF48F9FB8717
Validity
Not Before: Oct 19 22:10:21 2025 GMT
Not After : Oct 26 22:10:21 2025 GMT
Subject: CN=68f561ce-1b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ee:3a:de:7b:32:29:31:40:10:bf:52:f0:76:
fd:fb:82:d7:ec:04:8e:62:c7:c6:fa:f8:3e:b2:e8:
d2:fd:d3:84:23:17:ab:59:1e:e2:ad:cc:7d:c5:ab:
2d:e2:70:3b:16:07:b3:8f:9a:35:9b:a7:96:e2:11:
2b:b2:53:0a:aa:4a:5f:69:2b:db:9b:7a:ec:de:c9:
2b:07:c7:99:bd:0a:f3:7f:3a:e5:7d:da:40:b3:0c:
a7:0a:37:e0:bf:dd:70:4e:8d:d8:05:fb:94:83:f4:
b2:f9:d4:05:45:92:45:51:5a:35:c3:91:cb:da:2f:
6a:f6:f5:6d:05:cb:91:2c:b0:80:8f:2f:6b:01:da:
20:f3:cb:c8:6e:95:3c:59:dc:a7:97:26:52:78:8f:
98:e3:0a:2c:c4:d9:71:25:4e:f0:80:90:32:7b:b1:
10:84:51:6c:37:63:12:07:32:ee:46:14:fa:c1:3c:
dc:99:2a:6f:48:57:6d:f7:b2:b0:48:f6:1a:02:89:
b5:e1:92:83:bd:16:45:57:75:e6:b7:00:e8:09:d3:
e3:8a:08:a3:3c:9c:eb:af:a7:d3:de:00:ba:05:55:
4d:94:f1:f2:96:14:88:c6:67:f6:0e:51:bf:78:26:
03:99:7d:76:fb:a5:c2:d5:ab:18:62:ac:43:95:13:
24:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:5B:A0:62:F1:FD:B3:C2:99:ED:9B:39:20:46:8E:4D:21:B5:9E:BB
X509v3 Authority Key Identifier:
keyid:F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
51:41:d6:2c:f5:90:b6:6f:74:17:05:f4:1c:f6:03:89:5f:c3:
82:71:4f:ec:f2:39:c4:c7:83:c6:8c:d3:36:75:68:72:87:24:
69:68:c6:a0:03:6a:43:a7:b0:ec:9e:bf:cd:a5:49:90:25:30:
49:15:e7:51:93:82:63:69:66:67:cc:57:bc:61:2a:a1:86:98:
81:17:f3:30:db:d8:3b:f5:16:60:63:68:e3:21:ba:35:d8:02:
4c:58:a0:a1:33:fa:ff:bf:18:08:b2:62:40:2a:d7:fb:b6:8e:
a7:e0:c3:e4:b9:c0:eb:ae:2a:52:73:73:8a:07:68:5a:e5:ef:
03:f5:a0:0f:ef:72:59:3d:93:8b:3a:94:87:bb:02:46:14:5e:
17:6b:cf:8f:df:0d:e3:7e:10:ff:41:82:df:0e:30:b9:51:66:
00:d5:89:61:83:ff:aa:f0:c0:95:bf:07:0b:95:e1:7b:25:7c:
bc:2b:b6:4d:2b:c7:2f:42:3a:4a:42:71:ab:22:68:6a:e0:18:
66:15:ff:1a:56:cd:12:32:77:f5:e5:46:49:3e:a6:85:25:fe:
96:63:49:2b:f2:9d:e3:2d:a4:88:1d:12:38:83:f1:92:b9:b6:
19:c0:ec:dd:4c:4f:c9:ee:40:c9:6f:2a:e4:78:2b:07:30:a7:
ad:06:f0:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:24:50 2025 by rpki-client