Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft
File: bjpCzSsjnaPmWO-5fq0VsObt2qE.mft (raw, json)
Hash identifier: gc/ji+BHSb0Wyoy7zyN25V6dR2GAFcuI+zmlPvimF40=
Subject key identifier: E4:DE:1E:99:48:23:89:26:C5:D6:9C:1F:DF:37:5E:EC:4A:89:81:8C
Authority key identifier: 6E:3A:42:CD:2B:23:9D:A3:E6:58:EF:B9:7E:AD:15:B0:E6:ED:DA:A1
Certificate issuer: /CN=A914AA58/serialNumber=6E3A42CD2B239DA3E658EFB97EAD15B0E6EDDAA1
Certificate serial: 0355
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft
Manifest number: 0352
Signing time: Sat 29 Mar 2025 01:15:05 +0000
Manifest this update: Sat 29 Mar 2025 01:15:05 +0000
Manifest next update: Sat 05 Apr 2025 01:15:05 +0000
Files and hashes: 1: bjpCzSsjnaPmWO-5fq0VsObt2qE.crl (hash: 6vJy7wMQwjs65mtggJy9n+oxt57U+i313GEPgDwDfy8=)
2: CC2E531EAA7811ECB6791A3EC4F9AE02.roa (hash: nblh+5P2jzg1bMqRThBjnqcnLIQTwLiSBjLF6YnXjMo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 853 (0x355)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914AA58
Validity
Not Before: Mar 29 01:15:05 2025 GMT
Not After : Apr 5 01:15:05 2025 GMT
Subject: CN=67e74999-5b57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5d:99:16:ce:72:f5:bf:94:12:dc:78:f4:88:
c9:93:53:51:43:7b:57:d7:4a:c1:71:49:28:ac:88:
e6:06:64:19:e3:47:5a:c8:35:84:ac:5f:13:9b:b2:
1b:cf:1b:e7:d4:75:a6:96:81:a3:c9:27:78:1c:52:
48:ed:9a:a5:7a:2f:c1:05:f0:06:db:f1:08:70:06:
a3:46:b9:c1:a5:6b:97:05:11:79:49:7f:46:f0:4f:
42:15:50:9f:f0:a6:a8:7e:4b:85:4c:f1:8a:e4:03:
51:da:cc:52:a2:c3:30:27:c4:e9:81:b1:36:7e:97:
84:49:cd:7d:1e:19:e3:2c:8a:61:13:38:03:54:16:
e5:31:72:f1:51:da:42:7f:fb:b5:df:30:7a:c9:88:
e6:de:3f:65:5e:50:61:86:39:6f:91:6b:ab:49:9a:
44:ec:65:98:dc:5c:1d:ae:22:12:2e:aa:99:de:23:
80:e8:3b:9c:ea:e9:06:0d:35:50:6c:c7:67:a0:5a:
10:14:87:04:85:f8:86:ff:48:ba:7a:60:79:67:52:
7e:8b:74:d5:27:4e:9a:4f:b7:c8:27:31:3d:67:df:
76:87:6c:69:59:9e:87:53:71:c5:6c:10:ca:ae:9c:
ad:37:2a:79:da:47:aa:32:b9:d6:23:83:69:da:4d:
1d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:DE:1E:99:48:23:89:26:C5:D6:9C:1F:DF:37:5E:EC:4A:89:81:8C
X509v3 Authority Key Identifier:
keyid:6E:3A:42:CD:2B:23:9D:A3:E6:58:EF:B9:7E:AD:15:B0:E6:ED:DA:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
89:2d:f8:37:6c:bb:56:83:2c:0a:cf:ea:80:bc:16:4c:54:bf:
95:54:78:f2:1b:63:1b:20:e9:42:5f:88:08:ee:6e:54:2c:e2:
a8:fb:b2:bf:54:40:94:cf:9e:f1:12:01:63:88:40:18:78:ee:
a5:3a:a8:7b:a7:89:7d:80:7c:d9:d6:d2:d6:78:ce:1f:c4:1c:
19:a7:1a:93:33:5c:2c:64:e7:db:84:88:28:c3:ca:3f:c6:10:
36:cb:12:08:eb:0d:a2:96:d0:09:de:ad:21:9a:26:6f:04:d5:
92:8b:c0:ac:92:d6:1e:43:9f:b9:f7:1b:ad:27:92:c5:46:d5:
dd:18:e3:7f:13:3a:fb:f6:36:3b:f8:b7:51:06:4f:06:94:13:
04:98:26:43:28:94:82:93:2b:df:e5:d3:ca:e2:3d:76:c0:d5:
a6:42:e8:e8:6a:e6:84:24:77:82:de:30:45:d5:38:74:bc:02:
a5:58:d9:91:19:94:31:eb:6a:ef:01:4d:41:fb:6d:fb:38:eb:
85:df:fe:16:74:24:34:df:61:e5:44:a3:7f:8d:97:54:66:c5:
e4:a7:04:9f:29:cc:83:85:73:65:30:f4:8f:77:57:e5:93:d8:
42:e9:a9:53:1e:db:15:d8:41:69:18:09:12:10:b8:95:18:bf:
f3:6f:e2:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:29:36 2025 by rpki-client