Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.mft
File: 5ZW8t7_jyGcqgoIcyTa8jsOSA2k.mft (raw, json)
Hash identifier: 7UV+DXZIynne1QZX9X5W4Ltn62+CWIABTKSaM4/Hd+c=
Subject key identifier: 28:60:20:D9:B3:00:9E:8B:47:A1:7B:AD:58:24:36:EA:FE:3B:0F:D5
Authority key identifier: E5:95:BC:B7:BF:E3:C8:67:2A:82:82:1C:C9:36:BC:8E:C3:92:03:69
Certificate issuer: /CN=A9127B77/serialNumber=E595BCB7BFE3C8672A82821CC936BC8EC3920369
Certificate serial: 346A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.mft
Manifest number: 346A
Signing time: Fri 28 Mar 2025 15:17:54 +0000
Manifest this update: Fri 28 Mar 2025 15:17:53 +0000
Manifest next update: Fri 04 Apr 2025 15:17:53 +0000
Files and hashes: 1: 5ZW8t7_jyGcqgoIcyTa8jsOSA2k.crl (hash: DatoivejFCHFkl6t9rpMJPfYuL5RMXdI613IlT44vDw=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13418 (0x346a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9127B77
Validity
Not Before: Mar 28 15:17:53 2025 GMT
Not After : Apr 4 15:17:53 2025 GMT
Subject: CN=67e6bda2-a75e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1a:76:f9:0d:c2:38:fb:13:60:d2:77:f8:79:
9f:3b:f0:15:82:37:7e:1c:10:95:02:f8:52:a0:5c:
bc:e4:03:8b:38:e0:82:fb:56:41:f3:9e:c3:0b:b1:
34:64:4b:9f:3b:9f:0a:67:a3:43:1c:b8:22:ef:b5:
d5:96:37:2a:7e:69:41:66:19:41:13:0e:b1:d1:c7:
ce:b3:13:b7:3b:19:33:27:ee:a9:35:e4:5a:ef:c7:
7b:28:8e:92:70:d7:95:28:43:ec:60:84:11:8f:90:
28:c6:3b:1c:12:a3:7d:b3:85:5d:fa:4d:a5:ca:49:
2c:04:b8:af:c7:e3:7b:6a:45:9d:a8:bd:ed:ec:5c:
aa:53:d8:ce:1a:7a:d4:7d:a5:7c:94:37:3f:17:c8:
98:ed:6c:a4:19:d0:7f:cd:40:8f:66:41:ab:2c:74:
0a:59:3a:f4:32:e3:13:95:6b:14:58:97:39:be:8c:
d6:33:d2:ef:c3:ee:25:3d:09:14:e0:6c:f9:3c:12:
92:0c:54:77:02:5d:e3:2b:43:88:0e:24:65:3f:8e:
4f:ab:45:e8:eb:76:d8:4e:8f:46:c5:ba:9f:4a:06:
a4:27:24:01:e0:e7:cc:90:ec:f1:4f:26:b1:b6:0f:
9a:70:2a:c6:db:5c:33:12:5c:1c:a1:f2:e8:71:55:
63:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:60:20:D9:B3:00:9E:8B:47:A1:7B:AD:58:24:36:EA:FE:3B:0F:D5
X509v3 Authority Key Identifier:
keyid:E5:95:BC:B7:BF:E3:C8:67:2A:82:82:1C:C9:36:BC:8E:C3:92:03:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a6:76:b9:59:26:8a:22:ce:93:55:68:18:f7:84:82:a3:de:4e:
8d:a6:99:66:5d:76:4e:86:f7:00:e5:04:d4:bc:0a:3e:9c:e8:
75:0d:fe:36:b5:75:e4:4e:2c:77:de:06:59:60:69:df:4b:8c:
84:b7:ee:bb:bc:3f:e1:06:7f:aa:36:04:36:d3:b8:2d:f9:62:
13:0d:dd:0b:32:cd:5d:22:2e:dd:6a:c8:2b:81:44:54:6f:b6:
0f:d0:e3:2a:0b:62:80:5f:2d:55:64:dd:d6:df:d1:1c:81:37:
64:95:7b:0d:e2:5b:f8:37:94:1b:1f:7f:d2:14:f4:2d:b2:a9:
ed:2c:20:b8:46:6b:fb:95:b1:cb:05:b3:bc:b9:0f:6c:bf:11:
e2:55:88:28:37:f6:e8:e3:c3:43:5b:bc:e7:65:0d:e0:d6:7f:
a0:6f:a6:e8:77:2b:e8:f5:0f:7f:7f:a8:da:f4:b5:c8:96:19:
4b:b4:01:97:f9:1a:ea:19:8a:de:57:6b:f6:f6:a2:7c:9c:94:
de:a5:f0:8b:48:c2:43:2d:30:f8:e1:42:90:7d:55:dc:f6:e8:
3a:81:5c:97:64:87:a7:85:60:e3:f2:3c:fa:98:85:41:ee:53:
53:81:b8:28:41:48:ad:93:59:14:10:d2:c0:7e:fc:2f:fa:2f:
a7:1d:dd:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:32:16 2025 by rpki-client