Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft
File: EHo5wcwE8nzHJmPb97rm2SqVA4A.mft (raw, json)
Hash identifier: Sd7FBfARsGBHLt0qLUdvkTlRH+BHP+ATPPUkGzLWixg=
Subject key identifier: 67:40:52:E5:97:FE:B7:7C:3C:BB:FA:BF:FE:A2:93:CC:17:9C:97:6F
Authority key identifier: 10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80
Certificate issuer: /CN=A91AFBDA/serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380
Certificate serial: A8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft
Manifest number: A5
Signing time: Fri 31 Jan 2025 05:20:25 +0000
Manifest this update: Fri 31 Jan 2025 05:20:25 +0000
Manifest next update: Fri 07 Feb 2025 05:20:25 +0000
Files and hashes: 1: EHo5wcwE8nzHJmPb97rm2SqVA4A.crl (hash: aek6K4LaLg9dgSejGtDs9jtMiphm2NVgOswnNA5kdK8=)
2: 62246EC4E67E11EEAD030482C4F9AE02.roa (hash: 6duqYPlVAYgFYXyMYfQRt0UOQZ9fwNVTaTSO3qscAF8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168 (0xa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AFBDA/serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380
Validity
Not Before: Jan 31 05:20:25 2025 GMT
Not After : Feb 7 05:20:25 2025 GMT
Subject: CN=679c5d99-9cf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2e:b4:27:bd:7d:70:c6:0c:de:a3:96:b1:16:
04:b3:38:02:b3:e2:07:45:6a:98:c5:9e:65:53:1b:
89:74:19:83:be:0a:5a:bf:cf:69:35:07:8f:9c:f5:
87:1a:ea:58:16:61:fb:4e:d4:89:74:58:be:af:a9:
af:6a:bf:e7:6e:2a:34:af:49:4d:d0:82:13:cb:d1:
9d:af:fc:08:b6:c8:3f:d9:52:e7:d0:8c:65:a2:ba:
95:0f:15:e2:71:39:ca:76:de:4c:f9:a8:ab:6e:e7:
28:91:f3:1e:09:7e:91:c9:fc:44:f1:c2:c4:61:f0:
69:2b:48:6d:f4:2e:b9:d7:e1:5c:9b:13:73:44:05:
96:76:d9:8c:35:20:79:5b:c6:66:3d:74:c9:e3:fe:
00:80:74:31:4b:1c:50:08:b0:b9:f4:8a:b7:4e:21:
78:96:3b:99:73:2d:b1:3b:00:36:16:05:d3:53:fe:
9f:cd:ed:0d:1e:aa:60:b8:86:78:5a:46:27:d0:56:
1f:b5:85:78:95:94:ae:72:70:74:94:2f:16:6d:6a:
25:a0:79:f1:3c:74:43:b2:6f:c8:ae:15:09:9e:d4:
86:2f:61:67:c7:78:b8:5e:5c:b1:bb:ef:13:b7:2d:
7e:6d:86:9b:6a:7a:d7:be:32:a7:fc:c0:df:d2:69:
0c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:40:52:E5:97:FE:B7:7C:3C:BB:FA:BF:FE:A2:93:CC:17:9C:97:6F
X509v3 Authority Key Identifier:
keyid:10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
36:bc:16:59:f7:44:93:c4:ea:7b:eb:bf:3f:89:b4:af:4a:f5:
ef:03:34:3b:0a:7f:fc:8f:84:8c:6e:42:f8:2f:49:f4:ec:b3:
95:bd:09:ad:ae:be:d7:60:4b:1a:ab:92:e4:0d:93:ff:52:7a:
d6:ea:25:65:fe:cc:87:18:03:6a:4e:19:02:35:6a:eb:b6:70:
e4:a3:4b:20:34:6d:36:b1:77:52:5d:9d:bf:32:d9:42:f7:49:
7a:68:e7:fc:fb:e5:7b:69:87:78:a8:e0:2d:83:22:a1:1a:c6:
34:e3:f8:10:5a:5b:9d:db:a9:22:b8:a3:3f:c2:fe:8e:90:21:
bd:6f:d7:fa:05:22:40:52:ee:07:fd:7e:eb:1b:fc:5e:b2:e0:
32:a3:88:0a:0f:0a:ba:7c:ac:1d:3e:67:59:ce:c2:fd:93:cd:
e2:97:57:e3:d1:d1:f2:5d:18:84:88:5e:33:1a:1a:1d:55:60:
ac:3f:46:b0:86:90:ed:33:6e:78:43:5c:0e:ca:cc:1f:fc:ba:
63:75:7b:14:dd:0c:7f:7c:2d:81:f3:2e:b0:51:32:0f:8c:d5:
2f:1f:61:9f:b5:c7:ff:29:3e:7b:fb:6f:ff:de:b8:d8:b2:8c:
1c:38:2c:fc:76:ec:ff:09:f0:f1:5e:1d:87:7d:2c:9b:4c:e3:
50:ec:0f:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 02:33:01 2025 by rpki-client