Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft
File: gyAF3EXYwTKohRVcQx0zMZrPbY0.mft (raw, json)
Hash identifier: BrXaf6xkevDUec/U1POVhw91+Z/HGhlj8U4o5kCHRHk=
Subject key identifier: 1C:35:65:B9:9C:15:8D:8F:A2:80:94:82:C2:BF:86:C7:85:0B:79:22
Authority key identifier: 83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D
Certificate issuer: /CN=A91362A0/serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D
Certificate serial: 1C2E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft
Manifest number: 1C1E
Signing time: Fri 28 Mar 2025 16:18:36 +0000
Manifest this update: Fri 28 Mar 2025 16:18:36 +0000
Manifest next update: Fri 04 Apr 2025 16:18:36 +0000
Files and hashes: 1: gyAF3EXYwTKohRVcQx0zMZrPbY0.crl (hash: Q3Jk0QE/4Ezzu7ZoozH6w0aSi7Xwimv+0DyegSIMgWM=)
2: B21D3C5AE21311E8B9660E3EC4F9AE02.roa (hash: X/4GCRMZ/gVyKNef6s/CyH3yqYjWWcRQZHTiFuRUpcg=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7214 (0x1c2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91362A0
Validity
Not Before: Mar 28 16:18:36 2025 GMT
Not After : Apr 4 16:18:36 2025 GMT
Subject: CN=67e6cbdc-945e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d3:0b:2b:24:59:9d:82:a7:54:4d:26:7c:e0:
c2:78:90:e8:72:31:7d:f0:4f:06:0f:17:94:ec:b9:
ed:14:08:a5:a4:9f:1c:18:5e:94:7a:b2:49:60:3b:
68:e4:b0:30:9e:f1:47:b3:6d:48:b4:6d:e0:df:5f:
cc:c6:00:76:47:83:1a:16:be:22:27:57:e7:6d:b6:
71:0a:5b:8f:f5:94:05:9a:c7:af:7b:e0:62:10:a8:
02:4b:9f:9c:c9:3e:28:aa:bf:1b:07:97:3d:52:9b:
c4:e8:02:6b:c7:ab:64:f7:ee:e0:71:e8:66:7f:53:
0e:1a:ff:1b:ca:97:f1:08:31:d9:58:3c:8a:c7:4e:
c6:11:90:34:97:58:b8:de:a2:21:62:25:b8:a9:9e:
88:81:7f:cb:80:a2:c0:47:85:4d:83:3b:26:b2:e0:
1c:a8:82:20:fb:89:88:b2:ec:1b:72:f5:4b:03:fc:
06:74:30:bb:a1:d9:f4:9c:6c:d5:6f:ca:81:d8:cc:
54:e4:af:77:7b:6c:1b:c5:18:bb:29:61:23:46:cc:
b4:61:d0:1d:2c:98:c1:c7:e2:5d:e3:87:c0:f0:4a:
7d:f0:90:02:ac:0b:aa:59:e9:1b:4a:21:a5:7d:6e:
4d:f8:e5:73:1a:92:29:5a:88:ef:4b:b2:87:28:9a:
c9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:35:65:B9:9C:15:8D:8F:A2:80:94:82:C2:BF:86:C7:85:0B:79:22
X509v3 Authority Key Identifier:
keyid:83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
94:ca:32:9f:26:26:4f:2e:17:91:41:e2:ef:fd:c0:76:31:23:
0f:d5:b1:a2:25:17:51:96:d6:fd:3a:fe:a1:12:43:d0:6f:bd:
21:6f:64:6f:de:bb:79:c0:f5:0c:15:a4:6e:9d:55:34:69:f4:
6f:e0:f4:b4:a4:5c:e5:46:36:46:7e:7e:d2:f3:d5:9f:28:df:
c4:88:3e:e7:d5:66:13:93:47:3f:03:b9:a6:9b:6f:e7:05:34:
ae:ca:5c:c9:af:ed:f4:92:df:57:57:b2:fd:df:97:b2:ce:38:
61:5c:26:7b:62:01:a6:74:f4:ab:2e:09:15:c0:be:76:45:a0:
5e:e9:d1:08:68:12:5c:45:1e:4f:2e:b3:e1:35:d6:52:4e:4b:
b3:61:8e:90:1b:f5:e3:5f:55:b2:51:e3:06:b3:00:99:29:1f:
b2:b1:a2:4f:b4:60:af:e0:e6:f2:1e:43:8f:5c:c8:67:c6:09:
4b:10:38:0d:f0:c2:0d:18:74:85:1a:ad:15:a1:a3:c4:fa:7d:
62:7a:9b:39:87:36:12:19:bd:98:bb:18:49:c7:20:fa:39:3b:
ff:c4:21:47:4b:fe:38:2f:3b:4f:c9:eb:2c:c9:55:72:3a:13:
33:e4:10:62:86:13:34:3c:ca:c6:dc:d8:0e:f0:b8:45:54:3a:
9a:72:fe:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:17:38 2025 by rpki-client