Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.mft
File: U1n0WpMqsOo84GFn1fzHBltN2IU.mft (raw, json)
Hash identifier: dYAW7P1YlgwGw+qqdWkkxx6aRS964qDTzbgo4GvtUII=
Subject key identifier: CC:E7:C8:AB:01:71:65:D5:16:FB:2A:53:EF:18:D4:27:63:50:6A:EA
Authority key identifier: 53:59:F4:5A:93:2A:B0:EA:3C:E0:61:67:D5:FC:C7:06:5B:4D:D8:85
Certificate issuer: /CN=A911367F/serialNumber=5359F45A932AB0EA3CE06167D5FCC7065B4DD885
Certificate serial: 0C36
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U1n0WpMqsOo84GFn1fzHBltN2IU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.mft
Manifest number: 0C2B
Signing time: Fri 28 Mar 2025 18:37:38 +0000
Manifest this update: Fri 28 Mar 2025 18:37:37 +0000
Manifest next update: Fri 04 Apr 2025 18:37:37 +0000
Files and hashes: 1: U1n0WpMqsOo84GFn1fzHBltN2IU.crl (hash: aafVx85oNQTrOu2dsWTLzPfiE/fOIOZo+FNyK2qnp/0=)
2: 6751E26C415511ECA2FD715CC4F9AE02.roa (hash: a/sC7ETDIVIboPEKOWwxdZFEr4Jd7KezTCrJldPHdYU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3126 (0xc36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911367F
Validity
Not Before: Mar 28 18:37:37 2025 GMT
Not After : Apr 4 18:37:37 2025 GMT
Subject: CN=67e6ec71-9d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:db:a6:f4:a7:63:cb:ed:cd:b8:a0:cf:fd:de:
8a:c4:1d:95:97:9e:3c:d9:81:ea:08:86:8e:48:61:
5f:77:65:02:aa:ec:fc:06:40:00:43:f2:24:d5:46:
d0:13:11:a9:61:70:7d:60:79:5e:70:d7:bd:23:76:
9c:a5:38:3c:ed:4e:a9:16:90:75:21:4f:ca:18:73:
99:ae:45:68:73:3e:a1:56:89:d1:6a:38:1f:81:d7:
d9:85:7f:d9:bc:03:79:f4:51:71:60:89:e2:47:17:
b2:a4:0b:d7:82:1c:59:db:f7:6b:c2:0f:ef:0d:a7:
ed:35:ce:42:cb:dd:93:b2:8a:ec:aa:f8:c8:39:f5:
97:ae:e8:59:68:80:1b:2d:96:cd:7a:68:2d:ef:5f:
a1:6c:94:ed:e2:59:ab:26:db:ee:82:b6:22:6c:3e:
ba:cb:fb:e5:9d:89:b7:db:7e:ea:e6:69:82:da:ab:
5e:10:12:6e:f5:21:ad:ca:e5:5f:e7:7c:10:e0:2e:
29:c5:12:bf:6a:f0:f3:2e:0b:05:bd:77:be:91:52:
56:a2:e8:56:8a:51:6d:e3:c5:03:fa:a3:d0:b9:13:
da:29:4e:35:60:08:f4:30:c8:9a:78:ea:97:4d:41:
e5:c0:af:43:e1:17:5d:25:30:2c:b1:03:86:ca:54:
9a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:E7:C8:AB:01:71:65:D5:16:FB:2A:53:EF:18:D4:27:63:50:6A:EA
X509v3 Authority Key Identifier:
keyid:53:59:F4:5A:93:2A:B0:EA:3C:E0:61:67:D5:FC:C7:06:5B:4D:D8:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U1n0WpMqsOo84GFn1fzHBltN2IU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9a:96:39:9f:5c:cb:e7:a1:2f:03:c5:ec:93:46:f0:4a:08:27:
dc:6b:18:0f:bf:d8:d5:69:aa:78:20:d2:67:de:bd:6a:12:33:
67:d3:3e:89:d9:ee:6c:2f:4f:9b:43:85:46:cf:23:6e:5b:46:
8b:70:b6:03:2b:d0:60:21:c8:e1:c2:6f:e8:6d:c6:8a:3f:fa:
85:84:8d:6f:0a:95:44:87:47:ba:f7:a9:01:f9:cb:e9:f2:04:
b1:44:0b:ea:3e:40:0a:92:75:d0:62:20:59:22:b3:6d:f5:83:
10:0f:2c:d1:80:5d:ce:29:9d:6e:83:1a:6b:7f:6e:ec:8e:6d:
7d:6f:80:4e:3a:a6:d1:09:5e:ac:ce:69:f6:00:a2:70:26:48:
55:c9:ae:e0:62:c1:70:7e:98:81:24:38:07:d3:80:a2:cd:5f:
85:4d:17:94:97:fc:f1:98:fb:cd:b1:c8:b3:21:be:12:7a:81:
3b:d8:02:3a:93:82:6a:6c:49:63:fc:09:98:da:89:08:ae:c5:
dd:26:9c:81:ed:1e:45:33:35:82:c6:d4:de:f9:d3:72:69:a4:
da:0b:93:ab:e2:1e:94:f4:c2:0d:e8:b7:0d:e8:6b:05:57:cb:
5c:90:19:0d:f3:85:f3:a1:90:54:c7:91:b7:c5:84:d2:d9:70:
d2:25:3d:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:06:50 2025 by rpki-client