Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft
File: Hhb4PQxAM115a-W6IckMvumXWbw.mft (raw, json)
Hash identifier: FWhdPolUSYhb+7fgfM6ct4S/D1T2c0SN/ZDyt7/rC0c=
Subject key identifier: E7:FF:51:0D:96:FE:FD:C6:B8:8B:2A:F0:EE:0D:B4:6A:B4:49:88:A4
Authority key identifier: 1E:16:F8:3D:0C:40:33:5D:79:6B:E5:BA:21:C9:0C:BE:E9:97:59:BC
Certificate issuer: /CN=A91D5606/serialNumber=1E16F83D0C40335D796BE5BA21C90CBEE99759BC
Certificate serial: 0681
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft
Manifest number: 0662
Signing time: Thu 30 Jan 2025 22:27:34 +0000
Manifest this update: Thu 30 Jan 2025 22:27:34 +0000
Manifest next update: Thu 06 Feb 2025 22:27:34 +0000
Files and hashes: 1: Hhb4PQxAM115a-W6IckMvumXWbw.crl (hash: VzMkW24QUaOBS/ZjnuOIv5RaIMqKFk/N7QeEz10Tcmc=)
2: 1745A0504D7F11EE8487CA3CC4F9AE02.roa (hash: WlNZrvGXgnz0t+pLb+IM+mQV0E2lUXQrFk9V5C1tTxI=)
3: 7E11B25E632A11EEA4BAF91FC4F9AE02.roa (hash: esYzOM6x3rTjSVPd+sklzPIKZ0x1omlKMKmuJr2N5EA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1665 (0x681)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D5606/serialNumber=1E16F83D0C40335D796BE5BA21C90CBEE99759BC
Validity
Not Before: Jan 30 22:27:34 2025 GMT
Not After : Feb 6 22:27:34 2025 GMT
Subject: CN=679bfcd6-2141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:db:19:c5:c5:43:09:0d:90:7a:22:a3:78:18:
57:c8:2f:16:84:ff:a8:26:93:0a:c3:ea:4c:5e:c3:
6c:e7:42:12:a0:04:4b:a7:e0:21:3d:0f:78:4b:1c:
b8:f7:c2:be:c5:da:c8:8c:07:0c:87:46:38:3b:2a:
87:8f:fc:5a:60:49:26:24:bd:1b:93:30:66:fc:91:
62:d7:b2:e7:05:4b:04:57:51:db:10:c4:e8:f5:4c:
37:d7:9c:5a:89:b0:6c:f9:9d:3f:de:3c:8a:25:ac:
73:56:0e:51:fb:5c:aa:45:77:9e:41:9b:b2:70:9b:
f5:0f:34:00:c3:97:91:05:d6:e3:75:40:d5:9c:d6:
cd:09:4b:5c:11:88:e0:17:65:e3:34:cb:a7:3f:c1:
41:b5:17:e6:bb:41:2a:07:31:2b:f5:ad:4b:e7:47:
d5:80:4d:ef:e3:43:a4:7b:5d:88:b1:d3:79:99:10:
67:b4:ad:b0:53:8d:df:b8:e1:35:4c:8e:67:8a:23:
c4:52:b9:e5:b8:3d:7a:30:cd:cf:e9:af:14:d8:80:
61:14:97:57:3d:6e:d8:a9:59:e5:ed:32:f5:b1:0c:
16:c6:df:f1:c2:0c:0b:80:54:b0:e1:12:d0:54:36:
ae:bc:f2:cf:12:c0:ba:8b:b8:60:1e:1d:c9:e2:82:
d7:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:FF:51:0D:96:FE:FD:C6:B8:8B:2A:F0:EE:0D:B4:6A:B4:49:88:A4
X509v3 Authority Key Identifier:
keyid:1E:16:F8:3D:0C:40:33:5D:79:6B:E5:BA:21:C9:0C:BE:E9:97:59:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
74:75:e5:4e:6a:c4:48:f6:81:86:90:67:07:e9:e9:83:89:78:
a6:89:7e:a5:52:33:24:24:be:0a:94:aa:92:ca:15:0a:ca:fc:
8f:cc:77:ef:45:65:b5:e7:4e:28:e3:22:9d:4a:f0:d2:c2:5e:
c1:49:84:75:0a:56:32:94:cf:25:d6:70:d8:04:e8:9b:77:a9:
a4:3f:5c:5f:83:4e:2e:39:70:25:af:3d:04:0c:b3:d0:e9:81:
be:3b:97:39:57:e1:34:e1:00:a6:70:e7:b3:03:4d:33:eb:cb:
5f:48:5e:1d:0d:62:8b:1c:6d:c6:11:60:8a:1b:17:63:e4:28:
37:a5:53:6c:75:78:f1:ab:4f:4f:14:d2:5d:25:37:ae:96:db:
ca:52:9c:2e:f7:e1:3f:52:25:ec:cd:2f:9d:d5:8a:5f:37:3d:
42:1b:4d:f6:8e:e6:bb:46:4c:a3:b1:9c:69:1a:db:ab:ab:cd:
9a:5a:c7:45:ac:85:d6:a0:bf:27:ee:bd:16:5a:1e:01:77:13:
c3:d4:5c:8e:cf:95:40:05:ab:c2:35:7a:a3:22:d2:ef:92:8b:
39:2d:5d:e8:ce:fb:d8:be:eb:14:f2:52:9f:1b:0d:ea:03:3a:
b1:31:cc:fd:da:fd:cf:c7:56:49:52:87:59:3f:9a:1c:0e:9a:
52:18:cc:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:50:56 2025 by rpki-client