Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft
File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json)
Hash identifier: K5ZRaX8zmjNlWbk9oJ4LBEbQYhPKJUkwMdOgROMOLH8=
Subject key identifier: D6:F5:6A:E0:3E:F0:EA:20:6D:FF:99:6A:FE:C9:4C:D3:76:71:20:BB
Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE
Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE
Certificate serial: 02CE
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft
Manifest number: 02CA
Signing time: Fri 31 Jan 2025 01:30:59 +0000
Manifest this update: Fri 31 Jan 2025 01:30:58 +0000
Manifest next update: Fri 07 Feb 2025 01:30:58 +0000
Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: +1V/mstWo5Tot/RNvho3KO2+dd5GQqa6nDw+XkG81ZY=)
2: 7704C7B0D65111EC8F5E2576C4F9AE02.roa (hash: tyU81tqa4w/chmwWDtJ/kbfsyW9fGaL62+VlH2ZbK30=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 718 (0x2ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE
Validity
Not Before: Jan 31 01:30:58 2025 GMT
Not After : Feb 7 01:30:58 2025 GMT
Subject: CN=679c27d3-8d45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:32:b3:00:34:3d:ca:2c:ab:a9:b9:77:ac:ea:
03:df:d5:d9:e7:4d:80:e0:4b:31:fe:60:68:f4:92:
45:a5:e8:8c:14:b4:b1:67:03:e7:24:23:3d:21:1d:
eb:2d:92:a1:1e:7c:8d:76:ea:83:90:c4:ea:11:9d:
e4:bb:0b:4e:c7:54:20:59:02:cb:a0:1d:a4:49:b1:
0a:b4:b3:85:ba:e1:d8:18:83:e0:52:d1:d0:ec:42:
22:75:75:aa:1b:8e:0d:43:41:4d:cb:9b:48:3f:9f:
5b:34:5b:95:11:21:f3:41:4f:b9:a2:1f:0e:ab:0a:
50:4c:78:66:8d:be:3a:d0:16:0a:fc:c8:80:33:63:
50:5f:04:cb:7b:98:97:26:59:46:5d:14:6f:a8:0c:
96:72:13:e5:b9:b8:ee:1f:8d:79:41:42:f4:ff:a0:
72:8a:7f:b6:b5:df:1d:40:b9:61:17:66:42:57:9d:
dc:1e:7f:3e:93:99:bb:ea:25:13:1f:96:18:7a:38:
3c:e2:2f:3a:81:4b:80:a3:65:c0:fd:e6:84:12:bb:
ee:48:62:21:d8:c8:77:6f:73:92:56:33:1f:43:81:
aa:07:b2:7c:ec:78:46:fc:e4:75:cc:51:3c:36:47:
fe:98:df:fc:9a:e9:e3:71:c3:8f:5c:a8:18:c4:ff:
1c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F5:6A:E0:3E:F0:EA:20:6D:FF:99:6A:FE:C9:4C:D3:76:71:20:BB
X509v3 Authority Key Identifier:
keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
68:95:e6:c0:14:72:f2:f3:27:08:d7:69:7e:4d:87:24:84:ac:
3c:23:fc:ed:7f:08:51:0c:56:9a:2a:98:a1:a4:92:32:93:7f:
ca:ad:36:ed:5f:2e:8d:e6:91:0d:ac:f3:3c:75:6b:62:23:bd:
5c:3b:69:c9:88:58:eb:25:a6:33:46:83:f1:97:5f:60:86:ed:
4b:e1:8e:ef:49:ff:22:d7:1e:f3:f5:64:2d:5d:ad:e7:b6:1c:
ea:53:da:be:73:11:c5:97:80:87:dc:f9:55:f1:72:96:89:b8:
76:dc:83:bc:4c:bb:de:e6:f2:05:70:5c:20:86:7b:f4:02:17:
4d:78:8c:f5:17:8e:01:d8:fc:79:fc:d7:7a:8b:99:07:01:86:
8d:25:78:e0:a2:ad:24:c9:35:82:dd:95:70:57:73:a1:e3:7d:
a9:73:d4:fb:76:0f:79:d2:2c:a6:09:6e:72:dc:dd:25:e5:16:
9a:b1:dd:ca:33:29:99:a8:40:83:8b:e3:9e:04:44:d4:f1:5d:
96:37:de:2e:fb:7d:db:9e:a4:c5:f7:44:fd:8a:cd:ac:3b:99:
da:b8:9d:d0:ea:31:b6:3b:50:a7:59:e4:bd:34:93:3c:19:60:
b1:ee:98:7b:30:96:90:6e:52:ca:e1:fb:ca:47:e0:e8:9f:f7:
a5:b2:59:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 20:38:01 2025 by rpki-client