Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7C1A/1A3C6F0E927711EEA3944E0CC4F9AE02/-X5yAn9yM2RVo2RT-ymx5Fta7UA.mft
File: -X5yAn9yM2RVo2RT-ymx5Fta7UA.mft (raw, json)
Hash identifier: 0bzPumHS6pqhaFxvDCMrGKYocHyeSePxl+EJ3SrFT4w=
Subject key identifier: D1:30:AF:65:4B:19:3F:33:F9:82:0C:67:F2:B4:8B:CD:EF:E9:13:A0
Authority key identifier: F9:7E:72:02:7F:72:33:64:55:A3:64:53:FB:29:B1:E4:5B:5A:ED:40
Certificate issuer: /CN=A91B7C1A/serialNumber=F97E72027F72336455A36453FB29B1E45B5AED40
Certificate serial: CF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-X5yAn9yM2RVo2RT-ymx5Fta7UA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B7C1A/1A3C6F0E927711EEA3944E0CC4F9AE02/-X5yAn9yM2RVo2RT-ymx5Fta7UA.mft
Manifest number: C1
Signing time: Fri 08 Nov 2024 10:49:57 +0000
Manifest this update: Fri 08 Nov 2024 10:49:56 +0000
Manifest next update: Fri 15 Nov 2024 10:49:56 +0000
Files and hashes: 1: -X5yAn9yM2RVo2RT-ymx5Fta7UA.crl (hash: nVNoz3yzqJftEIvud3H5tIMFcM/qyxK6KBip2U5eMZA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 207 (0xcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B7C1A/serialNumber=F97E72027F72336455A36453FB29B1E45B5AED40
Validity
Not Before: Nov 8 10:49:56 2024 GMT
Not After : Nov 15 10:49:56 2024 GMT
Subject: CN=672decd4-8edc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b3:4d:cd:0b:0f:46:46:94:69:0c:99:29:af:
41:22:0f:dc:1f:a7:43:a2:34:da:55:14:f8:ca:9f:
20:7d:e0:e6:a3:70:62:9c:9e:77:c3:84:5f:8d:54:
8f:ac:56:b0:2c:30:5f:45:d4:43:22:49:7e:e4:c3:
03:08:e1:b9:f5:69:47:89:0d:65:0d:3c:7d:1a:cf:
b0:e5:e3:ae:c4:4d:aa:f8:72:60:2d:75:20:aa:32:
54:89:8f:8f:0d:c8:7f:03:9b:3e:08:d7:08:32:3e:
10:d6:1a:76:f9:d2:22:1c:79:d9:d6:51:b2:6e:c5:
9b:a2:c3:40:72:05:7b:99:9d:5b:d0:ad:9b:fb:b0:
91:d2:f1:99:62:95:2f:f1:9c:d8:4f:e8:62:6f:3c:
3c:84:ca:24:3c:4a:bb:16:da:70:6d:64:d2:5e:cd:
ee:b2:45:49:57:9c:df:8d:96:f2:0c:91:49:4f:0c:
a8:f2:ca:4d:7b:75:db:3a:9e:cb:19:83:07:d6:7b:
9c:e0:2b:00:0f:79:9b:d8:6d:a0:b0:e1:1e:63:7e:
09:4e:02:45:eb:c4:f2:87:bf:4d:ed:af:fe:0a:a5:
a9:70:4f:4d:8e:fa:45:ea:48:e5:82:a0:0a:ab:5a:
ae:f2:82:7a:bf:11:d7:18:c3:66:2e:77:47:72:ee:
c2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:30:AF:65:4B:19:3F:33:F9:82:0C:67:F2:B4:8B:CD:EF:E9:13:A0
X509v3 Authority Key Identifier:
keyid:F9:7E:72:02:7F:72:33:64:55:A3:64:53:FB:29:B1:E4:5B:5A:ED:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B7C1A/1A3C6F0E927711EEA3944E0CC4F9AE02/-X5yAn9yM2RVo2RT-ymx5Fta7UA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-X5yAn9yM2RVo2RT-ymx5Fta7UA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7C1A/1A3C6F0E927711EEA3944E0CC4F9AE02/-X5yAn9yM2RVo2RT-ymx5Fta7UA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
80:17:bc:62:f0:1e:39:81:23:70:aa:40:13:0b:61:7f:50:1d:
eb:1a:9e:d5:b3:b5:8b:0c:25:d8:d2:f1:f8:82:62:2b:ae:5c:
28:ff:5c:4d:c4:27:ca:43:9c:a0:26:3c:87:81:e0:84:99:10:
d6:98:d9:68:e8:75:3d:35:ac:15:41:53:d3:0a:24:90:4b:88:
81:f8:30:8f:4a:e1:ae:50:37:e7:84:fa:84:c2:ef:47:0b:7b:
f7:fc:7a:89:b3:cc:6d:a2:5e:0c:00:81:f6:18:69:6c:d5:7b:
5e:9e:a2:9c:7e:54:72:ac:77:2a:9e:c6:fc:a8:02:a8:2a:11:
31:44:ae:05:e5:6d:dc:f7:3a:c7:cf:7d:70:1b:10:7f:fc:ef:
c7:84:29:3c:e1:84:62:12:ec:92:36:7c:e8:84:22:c9:ad:f4:
fc:46:2f:d1:cf:89:10:6f:a0:08:6e:02:bc:7f:65:51:6a:8a:
47:15:9f:83:26:5d:ec:9b:f1:a7:23:6d:1a:04:2e:17:f2:f1:
fc:fb:5d:a1:00:e0:96:08:24:94:60:45:a7:21:e3:4b:49:fb:
26:b4:44:23:52:e0:49:01:03:c4:97:22:6c:ae:5e:74:fc:97:
69:06:45:cc:4d:fb:30:a3:ad:3e:5c:4c:b2:db:9d:4a:e5:b9:
95:b1:0b:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 21:15:25 2024 by rpki-client on console-ams.rpki-client.org