Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft
File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json)
Hash identifier: QijgsqaWovrmBnXg4eLSW5YsmkqLVy+dgemda2k5JQA=
Subject key identifier: 44:65:77:FB:AD:45:AF:0F:57:34:89:8D:4B:45:B0:DB:CC:85:45:5A
Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0
Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0
Certificate serial: 134C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft
Manifest number: 1339
Signing time: Fri 31 Jan 2025 17:00:49 +0000
Manifest this update: Fri 31 Jan 2025 17:00:48 +0000
Manifest next update: Fri 07 Feb 2025 17:00:48 +0000
Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: wdAqm6NrK+hfF3UMAySV5rQnnVFNXfR747tTmRNoWlc=)
2: 7DB1A01E769511EBBF193769C4F9AE02.roa (hash: 5XbFDEbqdzdfK6bXl6kTUlRCISf9y8xCl7Mg0GE6eCE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4940 (0x134c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0
Validity
Not Before: Jan 31 17:00:48 2025 GMT
Not After : Feb 7 17:00:48 2025 GMT
Subject: CN=679d01c0-f193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b7:f0:38:91:f5:90:7c:e1:48:9c:0d:37:6d:
fc:87:0b:78:c0:de:0c:12:89:2a:d2:c9:bc:45:50:
07:18:c5:fd:ef:4e:1e:27:b0:b1:f7:64:cc:cb:73:
69:38:66:c8:01:12:af:db:83:83:17:dc:5a:82:6d:
e2:9e:55:9c:7a:b3:af:52:0c:27:99:4b:93:b5:d3:
66:a3:34:22:fe:32:11:4c:88:4d:35:05:82:d1:d7:
35:10:94:38:81:e2:a5:70:0b:bf:91:2e:8c:98:5e:
6b:22:d9:1c:a0:fa:b2:8e:97:97:e1:f3:77:2a:ea:
a7:3a:fc:82:f7:9e:f1:45:1d:e4:c2:c6:79:88:9e:
25:6e:1b:12:87:82:da:fb:c3:a3:55:77:6f:cb:6c:
73:29:fc:06:e6:1d:58:82:f9:ed:98:6e:4c:be:3a:
40:79:5b:0e:b0:4c:12:89:43:69:98:b0:be:19:f7:
66:15:28:1f:c5:84:bc:e9:35:8a:a2:fb:79:50:ae:
24:0d:bd:91:3b:4a:72:e3:6d:36:75:20:c0:a1:a6:
ea:5a:4a:7e:0e:78:74:41:41:d7:6b:d6:0d:70:f1:
b0:36:fd:68:a6:bf:29:35:86:83:5e:be:24:b4:2f:
53:3c:b2:6b:b3:c6:94:a5:70:a4:cc:84:18:4b:78:
a2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:65:77:FB:AD:45:AF:0F:57:34:89:8D:4B:45:B0:DB:CC:85:45:5A
X509v3 Authority Key Identifier:
keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ba:8c:3a:fa:7d:64:b8:5a:32:0e:b3:a3:0a:06:6f:1f:8a:15:
a1:1b:fe:99:18:7c:f1:89:c2:42:98:fa:94:78:de:93:6c:70:
19:1f:f5:3e:f4:04:2d:ef:4e:aa:f2:b3:f8:23:64:eb:9f:59:
32:d0:35:bb:b4:e5:60:68:02:8b:d9:57:06:87:7e:40:6c:ad:
ee:03:8e:88:2f:8c:fd:84:31:97:fd:7c:f6:ae:c4:1d:02:24:
e3:42:05:c0:f5:c4:ed:10:60:38:84:89:81:42:3f:96:d1:55:
97:30:48:92:af:4a:22:30:7b:68:10:82:34:52:82:b9:b7:52:
a6:4b:bd:60:6a:e1:44:21:3a:3d:81:91:87:99:e1:6b:c6:cf:
ed:cd:25:1b:37:69:fa:16:a7:37:10:21:0e:24:39:12:94:5b:
62:c6:f1:e2:5d:06:32:a8:84:b0:50:24:b8:05:ba:7b:b3:b2:
84:58:48:f4:f6:58:1f:77:4c:07:f0:8a:35:3b:f0:c6:06:48:
bb:74:f3:89:a9:43:86:9e:53:36:48:a5:68:f3:0b:1a:31:d1:
b7:02:fb:82:88:c8:c4:fc:4d:43:e7:a1:5e:8b:75:b7:1f:6c:
68:e7:4f:18:da:cc:85:08:19:86:64:0a:84:fe:54:d9:af:c9:
89:f5:4a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:08:26 2025 by rpki-client