Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft
File: BSmF8r4ox5507_TbTHFCKEVHc1w.mft (raw, json)
Hash identifier: jraxMaFDnMyWIZ/FBt3eEpvmLf0bjw4tmspdes8P1fs=
Subject key identifier: 31:2A:E1:9F:88:3E:32:1A:56:23:C6:B3:6B:01:6F:19:F0:57:72:CB
Authority key identifier: 05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C
Certificate issuer: /CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C
Certificate serial: 0165
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft
Manifest number: 015F
Signing time: Sat 29 Mar 2025 03:31:13 +0000
Manifest this update: Sat 29 Mar 2025 03:31:12 +0000
Manifest next update: Sat 05 Apr 2025 03:31:12 +0000
Files and hashes: 1: BSmF8r4ox5507_TbTHFCKEVHc1w.crl (hash: 7i0A/JI0Ha47H0bEzfYG5goGUhDoqRfgsVPLxv7ZAJA=)
2: A799F54AF1F111EE9D899046C4F9AE02.roa (hash: s9Hq2WKNBLpIHUUpKntveP4U+1sM2OLROzstT7r+cr8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357 (0x165)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9151A79
Validity
Not Before: Mar 29 03:31:12 2025 GMT
Not After : Apr 5 03:31:12 2025 GMT
Subject: CN=67e76981-625b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:14:47:9a:2a:d9:f9:bb:47:d1:44:50:e6:64:
66:a6:dd:d4:66:db:3b:09:c4:1e:60:a3:f2:2b:ab:
9c:77:81:95:27:77:df:0a:09:dd:9b:72:26:cd:5a:
ca:79:f4:89:41:b8:33:07:b1:1c:f1:4d:43:6f:5d:
d1:c5:bc:5d:83:53:15:2a:a0:cc:8b:11:30:8b:3f:
93:29:aa:39:f9:6d:c1:22:19:9e:21:b7:3f:7a:37:
f2:89:4b:06:17:78:8e:35:78:ac:e7:24:ca:fd:8e:
1c:32:b1:cb:90:86:18:f9:e9:31:f1:f4:fc:8d:ef:
a3:68:b7:14:7f:a5:e6:1e:24:a5:21:a7:22:7a:97:
80:9f:b1:4a:d0:1d:9a:68:c7:64:2a:ff:09:da:be:
b5:95:88:3a:01:73:00:1c:df:1e:c1:15:40:c9:51:
0b:c0:7f:86:3e:9c:a7:78:be:4b:78:17:ac:a5:ae:
9f:7c:07:62:e2:0a:01:7c:3a:c4:ae:d5:b1:95:c4:
28:27:bb:b8:57:1b:fa:4b:f5:38:2c:64:05:37:8a:
f3:a2:37:60:65:9a:0d:a4:6a:4f:25:93:0c:18:19:
09:18:70:62:f1:59:fe:4d:4f:b2:14:1c:dd:ee:9a:
67:a7:15:de:08:52:22:18:f7:ac:89:63:73:18:52:
3f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:2A:E1:9F:88:3E:32:1A:56:23:C6:B3:6B:01:6F:19:F0:57:72:CB
X509v3 Authority Key Identifier:
keyid:05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
20:01:6d:91:8f:ed:55:5f:a9:db:a9:6d:b9:69:98:e7:0e:fe:
81:79:47:7c:f6:66:4f:c3:20:35:11:58:fc:50:8d:65:85:56:
11:c4:3b:1d:85:f2:ad:00:64:a0:b9:03:2e:b3:05:97:2c:ba:
6d:65:1f:06:2b:ae:99:0e:41:ca:2c:67:ea:d4:75:c9:0f:9a:
98:c7:ad:1c:36:bf:f6:09:fa:6b:fb:1e:81:7c:2b:d6:0f:6d:
ec:de:99:88:e3:52:06:ab:65:b3:18:e8:66:48:a6:93:f0:00:
9e:1f:c1:2d:8e:f5:a7:e1:88:b1:2a:cf:0b:5e:27:e3:aa:3c:
7c:0c:dd:6c:ff:21:5d:3f:75:48:9d:0c:89:60:05:79:79:a5:
a0:b3:3f:81:f4:07:56:91:5f:67:f4:80:bc:f5:29:b9:a0:8b:
ba:76:9a:97:8c:b1:c0:d4:2e:d9:bc:f7:d1:ab:10:cd:97:02:
3c:38:09:46:75:4e:e7:8a:cd:0c:74:b3:ca:cc:d7:9a:4e:13:
42:05:27:e3:e7:dc:5d:da:7b:35:f7:06:2e:76:c8:cd:9a:69:
ed:da:c6:ee:4f:59:bd:48:2f:eb:1e:08:a6:e0:4a:e2:24:71:
5f:b0:81:ca:cf:c5:be:62:8b:51:42:a4:4b:e7:bc:e2:a5:fc:
e5:6a:f6:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:04:54 2025 by rpki-client