Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.mft
File: IHyMoVvzGwa9xuxD_3V51L-6TPY.mft (raw, json)
Hash identifier: 5NN0VyQhh6SRbIKWmyZqrLKK8hms2X7v/1tN/7822K0=
Subject key identifier: C3:8E:6E:4F:AE:F1:00:24:83:77:48:BB:3D:7A:2A:45:6F:7D:C0:BA
Authority key identifier: 20:7C:8C:A1:5B:F3:1B:06:BD:C6:EC:43:FF:75:79:D4:BF:BA:4C:F6
Certificate issuer: /CN=A9166261/serialNumber=207C8CA15BF31B06BDC6EC43FF7579D4BFBA4CF6
Certificate serial: 134A
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IHyMoVvzGwa9xuxD_3V51L-6TPY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.mft
Manifest number: 1343
Signing time: Wed 24 Apr 2024 15:43:44 +0000
Manifest this update: Wed 24 Apr 2024 15:43:43 +0000
Manifest next update: Wed 01 May 2024 15:43:43 +0000
Files and hashes: 1: IHyMoVvzGwa9xuxD_3V51L-6TPY.crl (hash: K4dvCtzKJ+ME0hD+XijJoV+Hz+/eYWjKWqhKIM21QHM=)
2: E9E3F1A823C511E9920FD80FC4F9AE02.roa (hash: 82ds4gDxUhSuEM0F+mz4GI4QNnQGEZ9sfC/aw/oaNLg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4938 (0x134a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9166261/serialNumber=207C8CA15BF31B06BDC6EC43FF7579D4BFBA4CF6
Validity
Not Before: Apr 24 15:43:43 2024 GMT
Not After : May 1 15:43:43 2024 GMT
Subject: CN=662928b0-4c09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:99:bb:7b:fb:43:dc:70:1f:e6:09:e9:4c:d8:
8b:88:28:a4:e9:5e:76:fb:83:38:51:ce:5b:22:5b:
f8:75:2d:91:d8:d1:1c:b9:f0:d6:51:23:e4:6e:9d:
ac:0f:9f:8b:8f:5d:e1:13:fd:9f:bc:8b:9a:de:27:
45:2c:70:af:f0:a5:07:fa:40:22:e4:54:a0:c8:3a:
32:54:5e:23:d9:ee:7d:a4:c7:ef:c3:0b:3d:87:77:
b8:32:c0:24:da:c9:6f:d4:66:1b:36:03:1e:62:99:
35:37:56:a3:3a:8a:d8:81:1c:b5:85:7b:0e:31:e8:
ab:f9:09:d6:bb:16:1d:60:2c:8e:d7:08:6f:90:c7:
1e:02:30:2f:9c:eb:64:57:3c:8e:ad:69:71:92:1f:
38:87:22:8c:61:8a:a2:82:b8:1b:7b:b1:b4:9d:ca:
5c:48:3d:02:e3:0a:f2:41:8f:a1:1c:30:fc:28:0d:
25:4d:fb:dc:25:33:4e:22:e9:cf:9c:ca:f4:f5:83:
81:0b:84:ad:25:a4:62:e0:70:be:61:ab:d7:73:46:
9e:c1:13:11:67:15:7e:cf:2a:11:28:fd:d5:2e:77:
92:3f:de:d4:00:ff:a7:8a:fc:fc:e1:4d:42:3e:b2:
5d:1c:b6:57:6f:18:35:3f:28:22:15:ed:f9:4e:6c:
83:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:8E:6E:4F:AE:F1:00:24:83:77:48:BB:3D:7A:2A:45:6F:7D:C0:BA
X509v3 Authority Key Identifier:
keyid:20:7C:8C:A1:5B:F3:1B:06:BD:C6:EC:43:FF:75:79:D4:BF:BA:4C:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IHyMoVvzGwa9xuxD_3V51L-6TPY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2a:9f:62:03:50:41:7d:ac:07:e4:00:d6:f3:f0:07:a2:fd:f5:
24:76:d3:1f:62:67:83:b1:65:9a:fb:26:94:cf:9c:ee:24:ca:
3b:7b:f2:d3:1d:b8:29:92:9c:01:3d:10:67:1d:bc:c6:dc:57:
5e:be:71:65:01:d1:de:bd:4b:d3:a7:f3:f4:12:72:6e:a5:08:
64:71:37:ce:ef:eb:76:eb:eb:75:62:b5:fd:5d:89:48:76:64:
eb:1d:95:4b:db:54:b1:b1:a2:fe:04:8c:31:18:d4:80:35:7b:
06:2d:48:57:e4:9a:d8:30:14:e9:c3:d0:bd:62:db:bc:27:93:
6c:66:d1:58:d8:f6:e5:24:c1:ee:9b:5e:fc:99:64:83:bf:77:
1c:b7:4c:33:6b:d5:41:88:f2:7c:aa:11:0b:35:99:a6:6d:7a:
7d:a6:f7:0d:ad:86:b2:9b:ac:40:6d:aa:ac:74:60:dc:24:19:
36:b1:1f:fd:9d:d9:51:3a:ca:07:38:1a:89:c6:ac:76:4b:f9:
81:45:a8:0d:fe:b4:53:55:20:4b:bb:25:0a:09:db:0b:09:e2:
f8:e2:0f:82:f3:51:42:cb:55:40:9d:8d:7e:38:47:24:45:11:
28:9f:ba:93:76:73:40:06:9f:07:1f:45:7b:6d:1e:88:83:1a:
f6:d3:f0:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:10 2024 by rpki-client on console-fra.rpki-client.org