Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft
File: C0io-y5r59-P7QejyRmyPKQL3so.mft (raw, json)
Hash identifier: Kb8IrjMjZSQh0J10nykQMzrbuRdfF+Pcckh9fcR7/Kg=
Subject key identifier: FD:8B:CE:05:2B:E8:10:11:1D:DB:59:11:93:D1:9A:A2:9E:53:89:C1
Authority key identifier: 0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA
Certificate issuer: /CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA
Certificate serial: 0AA9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft
Manifest number: 0A99
Signing time: Fri 28 Mar 2025 19:48:35 +0000
Manifest this update: Fri 28 Mar 2025 19:48:34 +0000
Manifest next update: Fri 04 Apr 2025 19:48:34 +0000
Files and hashes: 1: C0io-y5r59-P7QejyRmyPKQL3so.crl (hash: 6une/8w/Z5htjdXV6AqOUbJ1hkrhG2rt1fJ1Gcca8EY=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2729 (0xaa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91442B0
Validity
Not Before: Mar 28 19:48:34 2025 GMT
Not After : Apr 4 19:48:34 2025 GMT
Subject: CN=67e6fd13-25a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a2:4a:57:5c:5b:11:40:19:20:b3:c5:9a:50:
76:a0:a3:e2:70:c9:74:18:a3:d0:49:99:be:c6:4a:
0f:1c:68:b5:b0:f5:59:7b:c1:33:47:a5:82:77:4b:
2b:82:d1:27:68:d8:9c:03:eb:02:3a:be:35:d2:e8:
b9:b7:ea:4d:5b:6d:cb:ef:37:36:dd:ba:90:c7:48:
ae:25:b9:2b:64:f5:10:3e:cb:e7:9a:79:32:f6:f0:
fd:cf:d3:18:bc:58:72:1e:88:10:c4:ab:71:55:e7:
c7:f9:c2:9f:4c:7b:7c:57:40:e7:57:17:bc:1f:c4:
c4:41:f9:d5:4a:2f:65:93:ab:d7:bd:66:4d:13:cb:
02:fe:75:51:1b:83:2a:6a:a9:49:28:da:f8:2a:e4:
60:a6:29:dc:85:64:b6:53:7b:7c:8d:77:5a:12:cd:
04:04:94:3d:0f:06:f7:4e:bb:92:a0:f3:23:ed:e8:
50:0f:23:18:48:d8:59:a0:4d:88:46:c8:e6:c1:e5:
79:a3:e7:1c:1d:7e:80:4c:6d:b8:25:65:38:26:42:
72:1b:c1:ab:b1:86:32:b4:81:ab:71:e0:b8:34:0e:
ca:a3:54:4c:3b:2f:06:1a:e3:29:9c:81:6d:e3:b6:
cc:9c:0b:2b:4e:48:a9:6a:b1:80:fb:40:60:c3:c0:
fe:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8B:CE:05:2B:E8:10:11:1D:DB:59:11:93:D1:9A:A2:9E:53:89:C1
X509v3 Authority Key Identifier:
keyid:0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4a:74:91:30:ed:65:8a:ae:19:40:12:df:9c:0a:2c:f5:ee:a9:
24:1d:a0:33:63:43:83:93:40:1c:1c:27:2d:4b:4b:2a:ed:69:
53:ae:c2:6d:56:bc:db:d9:f2:28:56:98:64:60:e8:7f:ce:67:
be:ba:5f:5b:d2:37:2e:ba:37:87:7c:df:39:4b:a1:37:f5:6c:
4b:f1:f2:a7:bd:c2:73:75:b0:09:d0:94:c6:97:0f:b7:52:a5:
32:f0:02:24:0b:77:a2:53:3b:fb:e1:fd:53:14:e7:37:fe:e3:
95:b6:ba:ef:df:8a:0e:15:f7:d2:e4:68:a2:1b:2d:71:c4:82:
76:87:5b:84:3c:41:60:d7:08:a8:a5:4e:db:76:f2:d2:2b:f7:
93:28:a0:78:72:ba:2b:f8:6e:ff:7a:06:b8:0b:98:ed:83:ba:
da:1e:8e:00:80:d3:c4:bb:14:8a:4b:d4:f7:47:e9:4a:e4:fa:
66:06:cc:5e:a0:3d:ec:4c:df:f3:16:4b:8b:fa:c7:26:87:bd:
ea:ad:ac:70:7d:b4:0f:a6:be:3a:86:10:1e:97:48:c4:57:7a:
04:8f:76:c0:cc:35:71:e9:66:ba:75:61:59:b8:9a:ae:ca:76:
6c:a0:b8:16:7a:21:5a:e9:60:99:81:12:8f:4d:23:8a:95:5b:
05:1d:37:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:34:57 2025 by rpki-client