Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft
File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json)
Hash identifier: uDZrks6HAr+tBqyE2CmzwKn04ITaDLLR671YrQb36RM=
Subject key identifier: 50:FB:24:B9:A1:BE:B5:99:82:29:09:03:8C:49:16:CE:E7:71:96:E8
Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E
Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E
Certificate serial: 2574
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft
Manifest number: 2562
Signing time: Fri 28 Mar 2025 15:49:40 +0000
Manifest this update: Fri 28 Mar 2025 15:49:40 +0000
Manifest next update: Fri 04 Apr 2025 15:49:40 +0000
Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: gdixG6bb6o4Xdtyq1jqeGLMfjhXgqN4qw8SIG5kgHlw=)
2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: r2l9PMUwUPmFlLD0bJPq2GaFt2hFCVBPd/q1VmL9CSk=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9588 (0x2574)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912D4AE
Validity
Not Before: Mar 28 15:49:40 2025 GMT
Not After : Apr 4 15:49:40 2025 GMT
Subject: CN=67e6c514-e84d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d8:e9:8e:e8:18:7b:5d:66:7d:17:5d:89:d0:
1b:38:4a:4e:d5:f0:ce:c5:bc:d7:32:98:75:a7:8f:
b8:dd:23:ed:c2:7a:6f:c7:ab:9e:10:62:ee:b0:c5:
d5:cb:46:bd:aa:69:53:df:c9:f1:cb:26:21:c2:d1:
7c:47:79:c5:e7:b9:74:d6:41:87:37:1e:f7:2a:17:
fa:14:22:2e:8a:2f:86:67:7a:23:7e:a7:e4:e2:7b:
8c:5f:52:af:af:e6:12:11:d8:5c:82:1f:1a:f4:86:
96:b3:01:70:40:e8:3f:74:51:83:22:25:aa:96:1a:
79:50:d2:a9:91:ce:78:f1:95:50:bd:1e:b5:fd:0d:
5a:30:d5:7d:cb:22:aa:f3:d1:78:d4:ae:29:72:73:
d8:9c:1a:f7:5c:79:42:a2:80:9e:14:5b:44:7b:e7:
2a:dc:5c:f9:fa:64:b1:eb:d4:93:43:1a:05:da:4a:
c9:33:b4:d5:62:61:a4:27:6f:76:69:34:dd:df:03:
9d:94:4d:57:3b:63:4e:e8:83:b2:3c:1f:9e:a3:4a:
d6:40:f1:b7:33:2b:b6:72:37:dd:a9:de:5e:e2:53:
25:c2:e8:09:57:51:e3:6c:ce:f9:3e:fb:95:c6:0c:
f1:4f:89:88:5a:a6:75:ae:0b:cc:75:e7:fa:7b:6f:
63:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:FB:24:B9:A1:BE:B5:99:82:29:09:03:8C:49:16:CE:E7:71:96:E8
X509v3 Authority Key Identifier:
keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ca:e3:11:cc:e9:29:29:bb:50:90:ae:15:8c:d8:38:3f:45:43:
94:13:d0:12:61:6c:50:8c:5f:20:65:db:aa:0b:ac:8f:81:a1:
6b:94:09:bb:48:73:d7:1e:0a:a4:13:9d:7d:ca:c8:71:84:ae:
de:c6:df:89:67:7c:e9:31:bd:a5:b4:4d:f1:fe:ee:c7:1c:cb:
97:8b:e2:c6:aa:73:e9:da:a2:0f:00:67:73:de:71:f3:e0:8c:
34:a8:cc:9b:6f:d3:bd:0e:69:94:1c:31:0d:ad:2c:06:13:12:
fd:09:51:48:c3:57:52:40:23:37:55:41:76:28:67:53:a4:63:
40:34:68:08:c1:57:df:64:2d:29:5d:84:55:7a:92:bb:32:86:
86:9b:17:1e:2c:23:ea:e7:e2:43:19:90:ef:ef:95:0e:42:8e:
9c:03:df:68:49:7b:64:f1:94:b8:9a:c2:3f:0c:4e:62:ce:92:
be:8e:70:a5:cf:ea:06:b9:dc:07:19:8a:56:80:a9:f3:4b:42:
6b:8c:6b:8f:eb:ec:26:74:2f:88:3f:52:6a:51:d0:8e:1e:58:
6a:7e:9f:79:b5:a1:6c:fe:58:01:a4:54:66:43:f0:3e:e1:cc:
46:c7:b2:a0:f0:07:59:9f:50:f7:16:09:87:8d:0f:68:b6:0e:
f5:e2:92:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:09:24 2025 by rpki-client