Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft
File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json)
Hash identifier: d96VeCyVVJet/UF+J30MJflSuUR6cPo/9VDLJIMmM44=
Subject key identifier: 22:1D:CB:8D:1A:AC:AA:C1:D3:45:9C:F0:9C:55:69:97:75:C5:0D:CF
Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27
Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627
Certificate serial: 0B9F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft
Manifest number: 0B98
Signing time: Thu 30 Jan 2025 18:58:06 +0000
Manifest this update: Thu 30 Jan 2025 18:58:05 +0000
Manifest next update: Thu 06 Feb 2025 18:58:05 +0000
Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: 3KZxPSG2A/b9WRtmoVZpsmOysK83/exYA//nxafGkFY=)
2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: oYtKqIUNSIUuh/+KpPti5KOAL0KI5TmVO0WB52ytTkI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2975 (0xb9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627
Validity
Not Before: Jan 30 18:58:05 2025 GMT
Not After : Feb 6 18:58:05 2025 GMT
Subject: CN=679bcbbe-5e96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:39:29:f4:3e:ad:9c:b4:6c:92:ce:ac:74:55:
e7:eb:23:c7:a4:dd:bd:e9:53:42:ab:49:bf:1a:6f:
ce:ea:25:e5:f4:87:84:c5:d6:e1:30:30:59:dc:6c:
e8:eb:77:76:4a:ad:05:a7:36:58:13:c8:b0:f1:e4:
31:cd:1b:21:f1:d4:6f:0a:0d:93:e6:40:20:42:54:
d5:93:af:c5:f9:3d:11:01:54:5f:5f:4b:c4:d1:3d:
82:4f:6a:ec:d7:85:c4:a5:fa:97:78:40:1c:fb:9d:
6b:29:34:d4:5c:67:e5:a4:61:cc:e0:33:5c:a4:07:
fe:81:4e:e0:f0:48:89:7b:b7:db:5e:f3:df:9f:30:
80:85:12:e5:ff:53:f4:c9:33:ce:fd:64:71:7d:55:
e7:ab:d7:53:ba:b8:29:ec:4d:b9:ae:f7:c7:59:19:
55:27:28:18:4e:d2:a8:23:1d:7d:60:7f:3a:1e:cc:
97:35:50:b1:23:49:ce:6c:9b:78:b2:08:ae:15:04:
c6:dd:63:d6:14:43:80:d1:c3:d8:8c:f8:58:e1:e3:
e8:0c:38:74:1b:8b:7e:4b:12:ae:09:68:cc:43:32:
59:5c:2f:64:5f:2b:3e:ae:62:1f:ba:be:c2:8b:13:
9c:0f:43:b9:5d:22:d2:ef:9a:d1:3d:f9:75:62:0b:
66:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:1D:CB:8D:1A:AC:AA:C1:D3:45:9C:F0:9C:55:69:97:75:C5:0D:CF
X509v3 Authority Key Identifier:
keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
bb:d7:ef:2e:e4:a3:42:f6:f7:5c:5f:01:6d:f8:9e:b2:4b:28:
3a:5d:49:9b:fb:9e:7a:a9:a0:fb:a7:7c:7b:d8:db:54:88:ff:
51:94:31:69:cd:82:86:42:70:06:a9:8a:5a:46:fc:8f:10:16:
a7:32:50:86:f1:ae:d3:1a:aa:12:70:bb:5d:ef:9b:5c:e3:fd:
b0:de:3b:c5:8e:61:f2:90:e2:56:ce:04:1a:06:a9:82:ac:3b:
b7:dc:ab:c2:14:7d:98:24:8e:b5:98:c4:f4:43:61:2c:85:b3:
20:0f:ff:77:7a:d5:32:f1:c1:75:e3:c7:47:7e:40:33:59:5e:
bc:c2:0a:2f:2d:97:63:29:86:e8:15:9e:8b:83:5b:87:dc:2e:
62:cf:b5:c9:ef:06:ca:d9:a2:43:a7:0b:fc:c0:5b:dd:ae:47:
c7:f9:f6:8a:38:c9:d4:de:79:3a:e2:33:e6:86:0f:d5:12:e0:
53:5f:45:52:30:3c:09:d6:b9:6f:c7:88:bc:c5:37:63:dc:93:
6b:78:e5:e2:4c:53:71:48:9f:75:16:87:6b:ae:f0:e6:86:f6:
b6:e4:16:57:03:99:f5:6b:53:ab:4e:3b:9f:52:9d:75:30:b5:
50:8e:c5:9e:df:c2:36:f1:3e:66:7a:71:08:05:0c:dc:b7:0d:
cd:77:b6:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:57:54 2025 by rpki-client