Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/KPut8cC1pCW10h189FxAyqRO3OE.mft
File: KPut8cC1pCW10h189FxAyqRO3OE.mft (raw, json)
Hash identifier: 0kmOvh8SLyM0nlg6raaiH/d6ey1FI4q8KcmL7ZoAW/k=
Subject key identifier: 8A:96:F5:7E:6A:A7:66:0A:D5:78:48:B4:92:E3:69:2A:2A:29:E0:62
Authority key identifier: 28:FB:AD:F1:C0:B5:A4:25:B5:D2:1D:7C:F4:5C:40:CA:A4:4E:DC:E1
Certificate issuer: /CN=A9136AF7/serialNumber=28FBADF1C0B5A425B5D21D7CF45C40CAA44EDCE1
Certificate serial: 0C92
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPut8cC1pCW10h189FxAyqRO3OE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/KPut8cC1pCW10h189FxAyqRO3OE.mft
Manifest number: 0C81
Signing time: Fri 28 Mar 2025 18:21:26 +0000
Manifest this update: Fri 28 Mar 2025 18:21:25 +0000
Manifest next update: Fri 04 Apr 2025 18:21:25 +0000
Files and hashes: 1: KPut8cC1pCW10h189FxAyqRO3OE.crl (hash: YUJW6tafsTtyNicNGpmM+RSrvy8hcC0Hj/SDRbjW9Ts=)
2: E8803B90F27411E99E67A342C4F9AE02.roa (hash: j/tViZ0nSoCHoTJaF9BKW+gM3NYgjTtuFHxNByXlgnk=)
3: E73FF93CF27411E99E67A342C4F9AE02.roa (hash: waKC3XDUVxJ9NfsFSQr2/Kcb9rARuPIn5lSsXa8DYwE=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3218 (0xc92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9136AF7
Validity
Not Before: Mar 28 18:21:25 2025 GMT
Not After : Apr 4 18:21:25 2025 GMT
Subject: CN=67e6e8a5-ca34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:53:3f:85:23:08:00:42:5c:42:c0:57:91:f7:
20:b1:c8:e4:b5:11:98:e7:df:b7:8b:1f:d3:57:01:
fb:52:ca:08:d4:fb:e6:31:59:c5:f8:50:8c:39:3e:
c9:e7:ae:ea:51:8a:a8:3b:d5:f1:15:44:4c:09:7e:
86:e1:12:fb:19:73:11:f7:b8:34:05:05:63:01:f4:
a1:9e:45:58:5f:52:bc:4a:79:db:1f:2b:f9:d9:35:
c0:1c:0c:c2:1e:33:63:17:10:18:49:45:73:b4:79:
e0:17:31:3d:ed:0a:70:86:20:09:0a:53:7e:c1:a9:
ac:ee:27:cd:5b:6f:c5:69:a5:a7:54:5b:e4:35:3d:
b5:a2:0e:86:e2:09:9e:2c:1c:c6:24:e5:80:62:80:
cc:d5:1b:00:bd:c1:69:9c:5c:35:17:7e:d7:5f:aa:
26:0b:0e:a6:b8:03:30:a9:5d:8f:71:20:36:70:90:
36:71:29:43:7f:f4:20:cf:9f:3c:45:a6:b4:29:a6:
b1:77:29:bb:4a:d2:f4:d9:67:91:83:38:6f:78:50:
f0:b7:53:53:dc:89:b2:f7:1e:b5:9f:cf:9d:ff:a5:
88:df:e4:d2:0c:b2:19:8e:df:d5:41:d2:bc:dd:94:
80:98:74:f4:ff:23:cd:6f:4a:13:3f:8d:b5:7d:fd:
54:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:96:F5:7E:6A:A7:66:0A:D5:78:48:B4:92:E3:69:2A:2A:29:E0:62
X509v3 Authority Key Identifier:
keyid:28:FB:AD:F1:C0:B5:A4:25:B5:D2:1D:7C:F4:5C:40:CA:A4:4E:DC:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/KPut8cC1pCW10h189FxAyqRO3OE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPut8cC1pCW10h189FxAyqRO3OE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/KPut8cC1pCW10h189FxAyqRO3OE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1f:ec:19:b8:7b:69:df:c6:1f:c4:f1:00:a8:a3:74:44:61:40:
5a:9c:8f:50:3c:27:b2:65:70:f5:54:1a:72:ee:35:38:b4:fe:
37:78:a1:fd:ba:89:94:f3:71:a7:0b:22:98:88:5e:4d:5c:a4:
b1:3b:a6:e3:fb:e3:50:24:a9:26:5b:7f:ab:bb:ad:12:79:c6:
e7:37:dc:a6:fe:fc:e1:9f:da:37:4b:5f:e7:47:bd:c8:c5:8f:
93:69:60:ae:6e:17:6d:62:aa:fe:da:cf:87:c6:b5:92:99:e9:
c9:50:85:3b:40:3d:3f:1d:c6:49:d0:33:5a:44:0a:8c:ba:58:
2d:b4:81:a4:10:3d:96:09:e2:b7:97:a7:da:78:2a:6b:92:c6:
42:9c:fd:55:bd:08:d5:0b:1a:b5:ff:6a:86:1a:76:21:a9:0c:
e8:78:cc:76:0b:e3:06:fc:ad:a2:a7:4f:c7:a2:a2:5b:0c:7a:
d9:f1:38:53:9c:9f:c2:28:2f:7b:4b:5e:90:c0:f6:11:eb:75:
0c:1f:8d:8d:5b:86:b5:84:35:63:b3:29:4e:2d:0b:88:20:5a:
73:a3:17:58:15:79:d0:f8:80:42:6f:4b:d8:2b:06:b9:f0:8e:
63:99:e8:f0:31:f0:24:34:b9:47:77:51:d2:38:73:62:8c:59:
20:56:c3:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:32:23 2025 by rpki-client