Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.mft
File: PqTXApDMqv5dzJxdpfW-J_7d5F4.mft (raw, json)
Hash identifier: Y4aCul7qlVpmFpaYkbdDxJasqFd1XIeqjsbk7kiMQsg=
Subject key identifier: 03:2D:1A:8D:71:6F:F3:9E:6E:B9:5F:16:F0:25:61:60:FE:03:3C:08
Authority key identifier: 3E:A4:D7:02:90:CC:AA:FE:5D:CC:9C:5D:A5:F5:BE:27:FE:DD:E4:5E
Certificate issuer: /CN=A911FA74/serialNumber=3EA4D70290CCAAFE5DCC9C5DA5F5BE27FEDDE45E
Certificate serial: 3463
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqTXApDMqv5dzJxdpfW-J_7d5F4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.mft
Manifest number: 3463
Signing time: Fri 28 Mar 2025 14:41:02 +0000
Manifest this update: Fri 28 Mar 2025 14:41:01 +0000
Manifest next update: Fri 04 Apr 2025 14:41:01 +0000
Files and hashes: 1: PqTXApDMqv5dzJxdpfW-J_7d5F4.crl (hash: 6yb3Az5rDL5XeswbLZwJ+h8+Tgu26r81a407sGFXQMw=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13411 (0x3463)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911FA74
Validity
Not Before: Mar 28 14:41:01 2025 GMT
Not After : Apr 4 14:41:01 2025 GMT
Subject: CN=67e6b4fd-a043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:24:da:8c:54:10:c8:bd:65:e5:40:3b:f6:82:
f3:e8:29:02:35:66:83:93:c0:46:82:7d:db:f3:8b:
3d:69:11:de:75:b2:93:8e:61:b2:f8:68:81:72:18:
03:71:16:b6:34:ca:6d:07:f5:89:17:ba:72:fc:86:
98:ab:22:c8:1a:d4:55:b2:c7:34:aa:4c:f4:ef:5c:
21:46:29:b7:6a:95:5c:b4:a0:8a:b4:a9:0a:f3:e4:
f1:cc:a6:55:96:3f:44:11:0a:90:b8:f9:41:6f:b7:
43:45:aa:8a:4b:67:08:33:2a:46:5f:f2:c8:7a:dc:
a1:59:7f:99:ae:e3:21:85:13:c0:c6:d4:de:73:59:
45:16:07:94:ef:d0:77:ae:94:8a:3e:7b:e1:93:51:
c1:7c:48:48:08:79:e8:12:0e:2e:82:71:72:5e:fe:
de:a8:07:22:a6:18:92:aa:3f:a6:05:cf:ff:8c:12:
23:cd:4d:09:57:17:a0:39:d5:fa:03:8e:41:9c:5c:
27:31:d0:73:77:0c:23:dd:98:e1:bb:ef:7d:08:08:
2b:ef:db:75:e9:36:7e:ae:b3:b0:97:24:74:92:68:
c2:09:e5:c6:06:34:3f:f3:25:b7:f6:65:7d:54:c8:
de:bf:6e:fd:18:78:af:95:d6:61:9b:e2:e3:d5:6e:
d6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:2D:1A:8D:71:6F:F3:9E:6E:B9:5F:16:F0:25:61:60:FE:03:3C:08
X509v3 Authority Key Identifier:
keyid:3E:A4:D7:02:90:CC:AA:FE:5D:CC:9C:5D:A5:F5:BE:27:FE:DD:E4:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqTXApDMqv5dzJxdpfW-J_7d5F4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b2:1d:c6:46:68:5d:62:50:47:28:a1:00:ba:29:f5:5b:ea:87:
f3:67:4c:1a:c4:79:bb:ba:fd:6f:f9:df:e1:9e:7b:29:7e:00:
9e:70:ab:0e:0e:11:0b:24:13:5f:8a:1e:1f:ed:8e:31:29:c2:
62:1c:f6:72:ee:7c:7a:5d:82:b0:23:c8:ad:03:a5:29:d3:bb:
7b:22:dd:04:79:29:b5:cb:03:3d:1c:52:75:2b:4c:31:ae:25:
db:93:1b:0c:df:70:1b:c0:cf:db:1d:67:17:bd:eb:83:77:6b:
80:40:50:fd:35:d1:93:6a:6a:bb:f9:4d:6c:46:5b:b6:75:6a:
61:80:19:59:5d:1b:e8:4f:6f:82:96:74:8f:ec:cd:fb:05:e5:
b1:40:81:d8:42:f8:61:88:6d:c5:19:7e:86:30:dd:49:e7:31:
84:a2:f4:2d:e7:5e:bc:af:ed:45:76:5b:c4:af:f6:a8:fb:42:
7d:f6:37:70:16:23:0c:db:bd:0b:43:fd:81:d9:75:5c:dc:79:
8f:2c:73:4d:b4:74:e0:57:3d:9b:2a:56:34:bd:e4:9c:6c:79:
8c:84:d5:6e:46:87:00:e2:a3:d5:f6:c2:29:f5:14:a3:12:4b:
1f:3e:07:dd:5b:9a:3e:3e:10:82:e6:a7:19:e7:c1:cc:64:3a:
75:24:05:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:22:18 2025 by rpki-client