Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft
File: BKM4-nsSbgfA74urj33BycGsMiE.mft (raw, json)
Hash identifier: 5I8nxTbfjXgBiE9Xm97Mdt0UuvW9HaravJtlEpZPnG4=
Subject key identifier: 60:31:03:71:93:8A:5E:1D:B1:11:24:1F:07:56:74:60:B9:A7:31:88
Authority key identifier: 04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21
Certificate issuer: /CN=A91C146D/serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221
Certificate serial: 0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft
Manifest number: 0A
Signing time: Sat 29 Mar 2025 07:27:57 +0000
Manifest this update: Sat 29 Mar 2025 07:27:57 +0000
Manifest next update: Sat 05 Apr 2025 07:27:57 +0000
Files and hashes: 1: BKM4-nsSbgfA74urj33BycGsMiE.crl (hash: S3wUrhVAttCotQ+ZKevS5mboCZWS0cOCG+ceD90NLKY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C146D
Validity
Not Before: Mar 29 07:27:57 2025 GMT
Not After : Apr 5 07:27:57 2025 GMT
Subject: CN=67e7a0fd-486f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:12:c8:31:2b:52:e1:5f:12:8a:49:c0:db:74:
4c:07:cf:12:3e:0e:52:0c:74:7f:91:7c:51:81:80:
7c:b0:08:bc:d7:11:65:fd:55:2c:84:46:39:8a:3c:
69:44:06:b4:8e:a3:ae:d4:8d:21:c1:1a:11:9f:c1:
cc:b8:0f:f9:c1:53:3f:a9:ff:cf:63:e4:51:d8:65:
d7:d0:9d:7f:15:f3:35:b3:46:7a:e2:56:6f:e8:34:
1a:ff:e2:25:95:27:f6:66:0f:9a:63:ee:71:62:50:
65:8e:69:69:36:a1:14:43:e4:99:ed:48:9a:59:6b:
56:8b:31:5d:aa:fc:e5:f3:52:c5:34:5e:57:51:a2:
97:b2:ed:fc:3e:6e:ba:b9:8c:e0:62:fa:96:af:11:
0c:98:59:79:d0:70:0e:71:2d:23:3d:d4:d3:9d:10:
34:d0:2d:14:5c:a7:10:3f:7a:c3:8c:f6:f0:41:1f:
8c:9f:44:f8:f9:4b:f2:b8:61:24:28:84:7f:ff:13:
6f:e1:e1:ba:7f:01:ad:41:d0:9f:51:ef:c5:61:b6:
09:4a:bb:1d:8c:99:69:0f:60:bb:5d:c9:a1:de:a7:
7f:84:bd:27:25:2a:c7:04:eb:3a:fa:df:4e:4d:0f:
b9:0d:df:75:d6:4e:3c:0b:97:5a:d8:f5:c0:4e:c0:
9e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:31:03:71:93:8A:5E:1D:B1:11:24:1F:07:56:74:60:B9:A7:31:88
X509v3 Authority Key Identifier:
keyid:04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
93:db:4c:ff:1e:1f:85:28:62:ec:a6:23:92:d2:fd:17:9a:41:
1d:d1:47:bd:fc:b7:25:a1:14:b7:92:ef:8b:5c:c5:79:b0:f2:
c6:60:06:f4:0a:22:66:54:74:9c:b1:02:2f:9b:cb:d9:ff:f3:
6e:a5:84:1d:ac:05:b4:49:0b:c5:5d:02:04:52:d6:cc:3b:94:
cd:cd:fc:1d:d8:e1:5e:02:b5:f9:ea:58:e5:6a:8c:3d:1e:4a:
e0:34:84:e2:e0:8d:96:10:e0:ba:d0:e4:61:31:2c:ac:28:c5:
85:bb:97:3e:38:3b:b8:22:fd:06:50:df:30:a0:ce:a9:84:ea:
ca:ba:0a:57:bd:b0:5d:21:44:f4:8c:9b:20:9d:2f:25:29:a5:
19:c3:8b:00:ce:80:bb:16:fc:5d:65:47:23:18:2d:b8:d7:76:
43:ab:ba:6f:86:54:7e:e1:86:c8:4e:06:c3:43:e5:b5:35:4a:
a6:8e:c0:20:bb:b0:47:58:7f:b7:88:11:55:56:f4:c1:d3:fe:
4e:8d:13:72:74:98:ea:cc:59:c6:fd:5d:5c:27:bb:d4:9c:f3:
5f:3f:c4:76:71:97:ae:18:35:fb:ea:eb:ea:b4:82:01:ed:8c:
b4:65:06:ec:70:d7:99:b8:a1:79:6f:11:61:ea:7e:02:3c:42:
cb:24:d0:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 19:52:14 2025 by rpki-client