Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft
File: -bspsKvoSef-GA4znkscKCNoxSE.mft (raw, json)
Hash identifier: oPgwBeWFvoPqPkNj+TjHYDiBWIVswifI9uOGRmJscUU=
Subject key identifier: 81:D4:A6:31:67:9A:F2:5A:1D:8E:C4:C3:62:F7:3B:41:CA:8E:15:04
Authority key identifier: F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21
Certificate issuer: /CN=A913E8F3/serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521
Certificate serial: 0FD2
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft
Manifest number: 0FBE
Signing time: Fri 28 Mar 2025 17:37:38 +0000
Manifest this update: Fri 28 Mar 2025 17:37:38 +0000
Manifest next update: Fri 04 Apr 2025 17:37:38 +0000
Files and hashes: 1: -bspsKvoSef-GA4znkscKCNoxSE.crl (hash: 9igfRpWRIvxbKaok/nQJTBKThfGpC0Qe6YE2n+m6W+k=)
2: 9F883BFCB33811E981BB4E6FC4F9AE02.roa (hash: 6WFoxJSX+AsPXl4iLxcXTCnP5O5xegAvjHGkQo6ULzs=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4050 (0xfd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913E8F3
Validity
Not Before: Mar 28 17:37:38 2025 GMT
Not After : Apr 4 17:37:38 2025 GMT
Subject: CN=67e6de62-c310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ac:c0:8b:e3:03:42:e6:85:79:23:e2:17:d1:
36:da:a4:38:0d:70:c0:10:e5:12:69:be:1a:4e:eb:
ef:7d:d8:40:94:c5:44:0a:ae:d8:3d:b1:0d:71:0b:
8a:e9:42:4b:57:0f:ad:0f:69:35:20:ef:90:2d:31:
b3:7d:e9:65:0c:9e:83:e4:d8:95:85:83:9c:78:ae:
d8:61:d0:39:fa:77:e5:e7:e9:b8:4a:6b:21:ff:d2:
26:7c:93:ad:2d:ab:ef:e4:a1:c4:ac:54:36:5b:ac:
f4:37:78:4b:3d:25:5e:1f:4f:da:fb:15:75:93:4b:
71:59:cf:dc:1b:23:8d:2b:e0:6c:ce:46:ff:28:01:
d9:55:54:09:65:20:2f:25:22:e7:d4:f0:93:3c:8a:
69:50:26:4f:b1:7c:1a:b2:71:3b:9a:55:38:ee:0b:
72:0c:90:4b:0f:6f:e3:c5:d8:18:9c:31:32:40:bb:
f8:5c:ed:38:40:5f:3b:dd:c0:56:8e:b8:ba:da:17:
f7:ad:07:92:04:23:68:ff:03:9d:bf:7c:5f:b6:04:
5d:75:00:d2:c3:29:00:f4:21:96:8a:ec:94:b3:e2:
aa:79:ec:0b:df:3e:de:7a:a0:87:f1:1c:97:ae:4e:
cf:d8:9b:ce:e7:98:8a:63:74:10:be:47:59:53:ef:
c4:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:D4:A6:31:67:9A:F2:5A:1D:8E:C4:C3:62:F7:3B:41:CA:8E:15:04
X509v3 Authority Key Identifier:
keyid:F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
39:84:8b:26:ef:38:85:eb:a4:66:32:30:2b:4d:d7:0f:86:a0:
2a:d6:a1:e0:f6:86:f1:86:5d:ad:52:e7:1b:35:79:75:1a:9f:
5e:f4:0b:46:e9:ad:a6:5d:eb:8c:f0:87:3b:5b:1d:e4:ab:f3:
6c:8b:f0:26:e0:b3:25:ec:52:01:06:9b:b9:90:cd:88:3f:5c:
a5:3c:c9:3f:fa:d4:e0:5f:17:60:d0:96:39:1d:d5:a0:8e:19:
74:0a:b8:42:67:50:c1:29:ec:28:28:8b:97:41:9e:56:00:d6:
bc:8b:a4:6a:83:2a:e4:fb:5a:f7:27:a6:4c:86:f5:27:ab:bd:
68:5f:65:8b:22:a4:37:4d:43:4c:25:6b:18:ed:dd:9e:ee:0d:
c5:5f:5e:42:17:59:08:2d:32:13:86:1b:b9:36:fd:da:8f:65:
7b:39:24:0f:58:73:f5:ec:6e:f7:0c:2a:b2:22:a9:89:34:03:
d3:bc:db:1e:4f:02:d5:ed:7f:e5:63:58:35:63:c3:b3:2e:e5:
64:f6:89:55:60:dc:12:30:4b:72:d3:b4:84:a6:89:a9:d9:98:
cb:7b:4f:48:99:44:bb:c0:ca:5a:93:22:d3:22:2a:b4:56:a4:
28:81:39:23:96:c8:a7:f0:79:74:6a:67:e6:f1:a1:6b:f2:16:
86:77:11:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 23:27:55 2025 by rpki-client