Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft
File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json)
Hash identifier: OMPbMvVSFyUc5WZBQTyKrzYtz0AWYVqAlF0RE42NycY=
Subject key identifier: 77:D8:D9:34:A1:52:27:BF:8B:E1:EC:8E:C0:D0:3C:08:73:66:FD:08
Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36
Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636
Certificate serial: 07C1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft
Manifest number: 07AE
Signing time: Fri 28 Mar 2025 21:28:52 +0000
Manifest this update: Fri 28 Mar 2025 21:28:52 +0000
Manifest next update: Fri 04 Apr 2025 21:28:52 +0000
Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: YqTGUFy6Sb274QVOFUiZ+R8a83uCDeRb3W2L5f7HyBQ=)
2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: xYIcgS1Zp8wD+PJFBZBjfV7mWptLx74W20qrbaZleiE=)
3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: vzmf8XnwJutTzSkLhDDX6poVkZL6XtaY1a0fPCQC+dY=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1985 (0x7c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9131A2D
Validity
Not Before: Mar 28 21:28:52 2025 GMT
Not After : Apr 4 21:28:52 2025 GMT
Subject: CN=67e71494-bbe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a2:ef:e5:33:a3:46:ff:72:c3:49:ab:0f:4d:
18:2f:48:43:e0:da:47:a1:f7:f7:b8:d3:0e:bf:7b:
f6:59:9d:27:4e:46:bf:08:aa:6a:3d:29:ab:29:0b:
cc:21:df:5e:b8:91:97:7d:60:34:6f:6e:f9:4b:08:
01:4f:87:80:1d:e3:43:24:9c:3f:71:77:53:94:97:
6b:b3:e6:53:b7:2f:83:1d:4a:4d:35:45:46:e7:b7:
4a:da:1e:f8:27:c4:b3:79:14:03:bc:97:01:85:76:
e5:61:0f:bb:0b:a5:72:9b:85:59:ee:b2:52:70:1c:
a5:22:92:d2:ed:7f:ae:ee:04:ae:01:c4:27:ba:54:
32:e1:86:5a:14:fd:be:c0:43:17:75:13:5f:fd:8e:
af:46:01:41:ec:db:fe:16:82:a2:4b:32:81:85:e1:
2f:b8:cc:2b:64:eb:7c:3c:9f:79:c0:32:59:cb:ff:
61:70:a0:65:8e:4e:5e:01:b7:a6:59:7a:29:53:af:
2d:4b:e7:05:d4:bc:7a:cd:59:87:fa:a8:f5:c6:3c:
e4:cb:bd:d9:44:47:4b:66:40:13:ab:77:26:07:ff:
53:b6:6a:ab:e6:58:69:fc:21:0a:38:d1:8b:91:c0:
05:82:5b:01:31:dc:a2:c1:c8:8c:82:7e:8e:ea:17:
91:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:D8:D9:34:A1:52:27:BF:8B:E1:EC:8E:C0:D0:3C:08:73:66:FD:08
X509v3 Authority Key Identifier:
keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
66:cc:bb:ec:ed:c2:0c:72:24:08:be:25:70:00:42:69:c8:31:
54:4a:e3:3c:ab:34:16:49:6e:04:02:84:a5:1f:d5:5e:94:26:
dd:bd:8d:d3:2b:bf:36:df:59:71:49:45:68:45:eb:23:d2:94:
78:85:e3:20:23:e6:e7:cb:1d:97:58:26:94:ee:f8:ab:c5:ad:
37:f7:d1:a7:81:17:49:c5:ed:4b:8b:19:05:3f:cc:bb:ef:87:
26:32:db:48:06:97:6f:b3:91:2f:c9:66:53:e6:fe:80:88:e9:
16:56:37:32:2a:2d:b6:7d:38:33:32:b6:42:6f:72:5e:40:4d:
c6:ef:bd:da:1d:bc:d6:e3:2d:d3:ea:5a:a8:99:b4:ab:9c:bd:
0f:13:79:36:2d:3b:6b:88:73:ef:27:3f:d8:cf:e4:78:74:37:
a9:5f:b2:47:bc:7b:1f:1a:3e:85:9e:0b:27:e3:0f:59:6d:f0:
7d:00:84:df:be:db:10:57:20:f4:b8:91:7b:83:bf:23:f9:42:
59:38:42:c3:3c:63:42:74:d4:4d:86:98:e6:21:66:9c:3b:ab:
c9:cb:77:a8:07:ee:3b:6d:69:95:3d:a8:23:80:09:f9:9e:fb:
aa:e6:e4:73:d5:52:e9:ed:38:01:bd:ec:6e:ce:79:27:77:fc:
54:cd:3a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:19:56 2025 by rpki-client