Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft
File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json)
Hash identifier: yrZIYnPoOdSHsCgqn9qbT3jA0uwyIad5cD1FjxuNqTM=
Subject key identifier: E2:00:00:DA:A9:0E:B4:DC:05:63:B3:15:93:27:DC:91:D6:A0:A6:E7
Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE
Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE
Certificate serial: 02EB
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft
Manifest number: 02E7
Signing time: Sat 29 Mar 2025 01:36:16 +0000
Manifest this update: Sat 29 Mar 2025 01:36:15 +0000
Manifest next update: Sat 05 Apr 2025 01:36:15 +0000
Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: kUEfVBIg1uS51Y77cxRm9DgcmqrZ3560fB/anwphcdQ=)
2: 7704C7B0D65111EC8F5E2576C4F9AE02.roa (hash: tyU81tqa4w/chmwWDtJ/kbfsyW9fGaL62+VlH2ZbK30=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 747 (0x2eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9176BDB
Validity
Not Before: Mar 29 01:36:15 2025 GMT
Not After : Apr 5 01:36:15 2025 GMT
Subject: CN=67e74e90-2007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:57:57:44:be:8c:2c:96:f2:10:f3:14:b9:a6:
b5:46:b2:25:ba:f1:7c:ef:a6:30:9b:a3:78:2c:ac:
cc:c9:82:9a:3a:2e:c9:a9:03:3b:7a:ab:cb:2b:48:
a0:e0:19:6c:d0:3f:54:9d:c4:a4:60:9a:8d:c4:c4:
62:fd:e4:1d:37:d2:6b:ff:3e:fc:ef:c7:05:46:c6:
00:e3:69:39:e1:14:cc:66:cc:72:d6:a5:7e:9f:66:
ea:d5:04:f8:e9:e4:2c:1f:18:2e:17:52:25:4b:b0:
08:c1:92:a3:00:cb:10:9a:70:29:73:9f:7a:df:e2:
c0:a1:35:d9:97:8f:d3:d8:74:3d:e2:c3:a2:41:1a:
2a:b7:d7:d3:c6:35:90:f0:f7:d1:11:aa:31:ed:fa:
45:8d:aa:47:81:bd:88:f3:f3:a5:a8:bc:c4:d3:5e:
3e:8e:d4:be:e6:e0:da:51:3b:b1:c9:c4:b1:d6:11:
2a:1a:3b:35:66:82:38:a9:21:33:37:b3:9f:42:e5:
de:7a:ef:bf:4d:eb:35:7f:72:a8:fc:6d:6a:34:9c:
ec:5c:97:fb:0b:ea:86:41:57:a1:e6:9d:14:5a:19:
c7:68:2f:ff:aa:ab:25:a7:5f:c7:1d:73:60:97:11:
d7:bf:02:8b:be:5c:dd:91:33:10:a5:ec:45:cd:4c:
24:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:00:00:DA:A9:0E:B4:DC:05:63:B3:15:93:27:DC:91:D6:A0:A6:E7
X509v3 Authority Key Identifier:
keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
07:60:56:44:87:f1:68:56:5e:81:2c:71:bf:0f:b1:d2:8f:b7:
ae:20:23:f2:d6:ca:46:c3:dd:ab:ba:d6:fe:94:e9:41:20:9a:
ad:22:26:5d:00:e6:d3:9f:ba:8d:a4:91:8c:ad:29:e4:78:a9:
13:56:aa:91:53:0b:58:d8:44:eb:2c:6c:7f:5f:fc:b1:1e:ae:
3b:26:c2:8e:6d:fd:04:81:91:8c:d2:9c:22:69:c1:d7:f0:22:
15:7a:84:2b:05:cc:0a:f8:01:b6:61:0a:7b:8d:3a:86:b5:7a:
00:b3:08:be:76:c5:13:5a:de:53:6f:93:a3:c7:f9:af:61:16:
83:13:89:a6:53:24:85:ea:9f:2a:7d:06:6e:89:c5:c4:bd:9a:
7b:14:10:62:79:ed:1d:92:65:f3:36:19:f2:73:3a:aa:ea:6b:
30:49:f5:1a:b0:36:32:8c:de:20:3b:4a:6e:c8:53:46:7d:20:
17:f6:5d:4b:94:f4:68:a7:b1:85:7c:63:3e:6f:98:cc:32:fd:
8c:70:86:c5:df:db:fb:00:6e:de:0b:fd:bc:37:29:63:4d:2f:
3f:2e:f6:b5:12:98:15:4b:cc:b1:02:dd:4d:3e:af:dd:ae:89:
c4:62:5a:ea:45:fe:c0:c0:af:73:4d:c8:7e:be:7d:6e:de:c0:
ce:33:5b:aa
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw
Qzc0NTI1QUUwHhcNMjUwMzI5MDEzNjE1WhcNMjUwNDA1MDEzNjE1WjAYMRYwFAYD
VQQDEw02N2U3NGU5MC0yMDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAoldXRL6MLJbyEPMUuaa1RrIluvF876Ywm6N4LKzMyYKaOi7JqQM7eqvLK0ig
4Bls0D9UncSkYJqNxMRi/eQdN9Jr/z7878cFRsYA42k54RTMZsxy1qV+n2bq1QT4
6eQsHxguF1IlS7AIwZKjAMsQmnApc5963+LAoTXZl4/T2HQ94sOiQRoqt9fTxjWQ
8PfREaox7fpFjapHgb2I8/OlqLzE014+jtS+5uDaUTuxycSx1hEqGjs1ZoI4qSEz
N7OfQuXeeu+/Tes1f3Ko/G1qNJzsXJf7C+qGQVeh5p0UWhnHaC//qqslp1/HHXNg
lxHXvwKLvlzdkTMQpexFzUwkKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIAANqp
DrTcBWOzFZMn3JHWoKbnMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2
NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK
YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw
MUE3VDZVMDhDYklNZEZKYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAHYFZEh/FoVl6BLHG/D7HSj7euICPy1spGw92rutb+lOlBIJqtIiZd
AObTn7qNpJGMrSnkeKkTVqqRUwtY2ETrLGx/X/yxHq47JsKObf0EgZGM0pwiacHX
8CIVeoQrBcwK+AG2YQp7jTqGtXoAswi+dsUTWt5Tb5Ojx/mvYRaDE4mmUySF6p8q
fQZuicXEvZp7FBBiee0dkmXzNhnyczqq6mswSfUasDYyjN4gO0puyFNGfSAX9l1L
lPRop7GFfGM+b5jMMv2McIbF39v7AG7eC/28NyljTS8/Lva1EpgVS8yxAt1NPq/d
ronEYlrqRf7AwK9zTch+vn1u3sDOM1uq
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:09:50 2025 by rpki-client