Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft
File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json)
Hash identifier: wzgQK/wAs0sCxUU95i+wPA2SX9iZcTJy6nwGPU4D/Us=
Subject key identifier: 2F:4D:3E:23:20:2D:4F:48:6F:65:6E:7D:96:CE:FB:F1:DD:37:F5:71
Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9
Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9
Certificate serial: 0A05
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft
Manifest number: 09FF
Signing time: Fri 28 Mar 2025 20:05:49 +0000
Manifest this update: Fri 28 Mar 2025 20:05:49 +0000
Manifest next update: Fri 04 Apr 2025 20:05:49 +0000
Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: TxAm0JMU7iEK2P8VOfNmE1X8xuDvIfBLtEGJeXZ09BE=)
2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: asIJPd7ycQgmyjnwr6+3XbmDuWfL8nZVojE1+b6iXHQ=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2565 (0xa05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9118309
Validity
Not Before: Mar 28 20:05:49 2025 GMT
Not After : Apr 4 20:05:49 2025 GMT
Subject: CN=67e7011d-3d76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3b:24:17:79:80:eb:82:34:e5:25:23:5e:12:
9f:db:e2:cc:c0:6e:76:e9:42:48:6f:ea:b5:6e:12:
20:ce:84:e3:3d:b9:99:4f:01:99:bd:91:aa:6c:d3:
b6:96:24:48:bf:ef:33:20:d2:ed:ee:2c:b6:7b:b0:
77:ee:ac:7d:6c:be:8b:bc:6d:08:c8:b9:57:a0:02:
95:a4:0f:7c:da:bf:b8:eb:84:15:a1:a9:06:4a:78:
4f:c2:4e:fa:80:6b:38:27:15:07:59:1b:98:84:b7:
ec:f5:c8:dc:00:f1:2e:6f:b2:5e:84:08:5b:fb:f9:
ac:32:b7:7b:12:27:9b:2e:22:40:de:4b:68:f7:8f:
ce:a7:19:7c:a4:00:81:b1:1a:71:8f:14:1c:3d:0d:
32:59:ba:6a:32:d7:ff:8e:4a:ab:ae:ed:dd:e2:a7:
0c:97:c8:5a:30:c5:5f:2e:60:fa:e2:bc:88:35:32:
8c:9c:6d:49:e1:26:eb:e8:42:ad:9b:4e:9d:a8:8b:
3c:fb:80:29:f9:ec:79:f4:41:a5:35:b8:d5:43:51:
ce:6b:69:a7:98:59:be:ee:08:f0:b0:8f:b1:4e:1a:
50:47:2d:62:a2:b8:f4:1e:3b:4d:3d:e4:3d:18:f7:
66:38:3d:98:47:1e:d0:24:7c:f7:eb:e6:b3:57:04:
89:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:4D:3E:23:20:2D:4F:48:6F:65:6E:7D:96:CE:FB:F1:DD:37:F5:71
X509v3 Authority Key Identifier:
keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
46:9c:b2:2f:9b:01:ad:af:13:8f:0a:c9:bb:05:64:f1:b6:53:
bb:66:3b:99:48:9a:6e:ac:64:53:3f:dc:c5:2a:5c:7f:e5:c2:
d3:05:47:9c:a9:5f:03:61:25:af:c6:69:7e:e0:8d:d6:bf:a5:
eb:32:a4:bb:4b:20:fa:dc:84:6d:c2:d9:b7:c7:57:6d:b8:76:
d2:a0:cb:8c:c6:8a:18:da:fe:11:35:e3:fe:31:80:1f:37:b8:
6e:0e:4f:dc:87:38:a9:2d:ea:b9:be:b2:52:f2:9b:14:63:d6:
05:ab:f0:29:03:af:f0:a7:f1:af:71:6b:d6:73:7f:32:8a:7f:
f4:99:5a:78:9d:e9:d4:33:f5:ba:71:4d:0a:0c:ea:11:b3:54:
b9:ab:af:ba:b5:77:06:f1:7d:ae:c4:62:b6:09:f8:b0:7f:fc:
07:68:aa:ee:98:3f:0d:aa:b2:fd:a7:a3:fe:dc:b5:6a:30:e7:
2c:51:cc:ec:cb:67:d6:8e:e6:8e:eb:5c:8a:a2:a3:78:28:2f:
c2:80:e8:ae:f0:4c:bb:37:49:3a:dc:61:93:eb:47:bb:05:7b:
e3:e9:d7:e4:6c:9e:96:5e:ce:b4:c8:c8:2b:2c:c2:59:8f:1a:
b4:73:50:60:3f:60:2e:bb:ca:39:22:b4:2f:fb:28:77:9b:69:
5d:87:c9:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:22:16 2025 by rpki-client