Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft
File: Y4g-TKLI593aw5h-SE_R1nLZOUk.mft (raw, json)
Hash identifier: IK6fRr7MMipSO6dDJCntwbTYbPEfTxA1s00O2T/6dNY=
Subject key identifier: FB:39:AF:57:13:5E:BD:B8:54:EE:15:E4:DD:FA:85:2B:0E:37:A6:29
Authority key identifier: 63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49
Certificate issuer: /CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949
Certificate serial: 0BE9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft
Manifest number: 0BE2
Signing time: Fri 28 Mar 2025 18:57:21 +0000
Manifest this update: Fri 28 Mar 2025 18:57:20 +0000
Manifest next update: Fri 04 Apr 2025 18:57:20 +0000
Files and hashes: 1: Y4g-TKLI593aw5h-SE_R1nLZOUk.crl (hash: mhhLlL3K79tleEKrKVVJ+nHhHpqM/RiyN46WzONgzIw=)
2: 9D9E8D0C11DC11EABC4FB55AC4F9AE02.roa (hash: E2q/ZEHSPXl1Ew87PC9tVYqM/dotHBquWrnE6mAYEbI=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3049 (0xbe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913E4AA
Validity
Not Before: Mar 28 18:57:20 2025 GMT
Not After : Apr 4 18:57:20 2025 GMT
Subject: CN=67e6f111-6934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:46:1d:a0:1f:57:01:12:d4:59:1e:8b:93:d9:
da:e7:c7:5d:10:43:28:24:4d:39:8b:84:61:91:f3:
af:c6:3a:13:0f:7e:9f:d1:50:ea:da:e2:ea:f5:d0:
c9:3b:cd:38:8f:8f:19:56:34:da:90:43:14:bf:14:
f5:0a:79:19:ae:5f:a5:62:4a:d1:2c:25:fc:27:5c:
14:02:b3:b9:04:1c:07:20:18:2d:65:b0:f1:f7:57:
bc:15:84:60:4a:d6:f2:fc:6f:61:3d:b0:5d:f7:7d:
52:29:66:dd:2e:a3:a7:b4:84:4f:bf:85:30:b5:49:
43:08:06:55:30:e6:6f:0a:6a:82:3c:55:b7:62:c7:
29:7c:64:4c:3a:4b:3f:c9:02:4b:24:12:05:09:49:
9f:27:85:09:9f:aa:d8:ab:14:3b:dd:ed:05:63:e1:
65:57:b1:71:24:62:f8:7b:53:be:dc:2e:0a:8b:d5:
4d:6f:26:c4:0a:48:f2:63:3a:eb:c0:7f:54:7a:13:
23:fb:63:d7:9b:9b:0a:67:77:f2:6a:3f:f8:bc:52:
c0:34:32:6b:41:c2:43:ee:d6:2c:5d:b7:9f:57:9a:
fd:95:f4:9d:cf:7c:20:ac:24:91:d9:8a:11:81:51:
a9:79:50:75:0c:82:a7:63:7d:e0:1a:df:89:7e:3c:
ba:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:39:AF:57:13:5E:BD:B8:54:EE:15:E4:DD:FA:85:2B:0E:37:A6:29
X509v3 Authority Key Identifier:
keyid:63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1f:e2:3d:e1:0f:02:b0:ff:ee:f7:94:56:21:1a:c6:46:72:53:
fc:82:ec:86:db:9c:c2:f3:28:6a:eb:3e:c7:41:4d:f4:af:24:
7d:39:27:bc:5b:2a:8a:6b:da:cd:1c:47:bb:0d:ce:b6:21:c7:
a6:81:9f:94:d6:92:19:92:6d:ab:49:6f:cc:4d:d5:b3:5b:d7:
8b:85:5f:94:a9:84:bc:df:6a:5b:77:73:de:18:da:81:54:01:
e5:ee:48:f4:52:f8:49:0b:b2:41:21:f6:3c:2d:29:30:67:49:
57:ea:46:55:15:23:30:b8:61:af:25:8e:b9:5d:13:c2:9c:70:
55:3d:e3:92:f5:75:3b:42:17:77:58:c7:1e:95:ae:d0:a3:c0:
a0:5a:ec:da:a4:83:76:a2:e6:a6:d5:79:39:51:97:bc:ac:b9:
93:3c:cd:a5:8b:b8:b3:ba:43:08:60:7f:2c:a2:c1:dd:96:03:
2d:95:6a:d4:b9:b5:10:97:7c:a4:44:d4:2a:03:5f:4f:bc:4e:
3d:18:bc:13:1d:b5:60:a9:5a:e1:aa:84:10:93:01:f8:3a:80:
e2:22:42:7e:86:91:7c:e3:9d:d7:13:32:e3:10:1e:43:aa:4b:
51:7e:77:91:13:2f:d3:d8:06:be:8f:3f:d6:25:97:62:1c:d5:
8c:9d:ec:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:26:59 2025 by rpki-client