Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft
File: QgHlq32GvGha8R8C3mhAUVttgFg.mft (raw, json)
Hash identifier: i5BIP/hep3l4peIC41S1AGuDU/RSOynGAYGym+C8dh4=
Subject key identifier: F4:D3:25:A6:C2:C6:94:D0:91:B9:18:33:88:C9:32:CF:35:CE:66:4D
Authority key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58
Certificate issuer: /CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058
Certificate serial: 3469
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft
Manifest number: 3469
Signing time: Fri 28 Mar 2025 14:39:09 +0000
Manifest this update: Fri 28 Mar 2025 14:39:09 +0000
Manifest next update: Fri 04 Apr 2025 14:39:09 +0000
Files and hashes: 1: QgHlq32GvGha8R8C3mhAUVttgFg.crl (hash: eQhXB9qm5NtFchGpdOnLoJcsfRPrCbEAgWZh3Iu5uPU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13417 (0x3469)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91454B0
Validity
Not Before: Mar 28 14:39:09 2025 GMT
Not After : Apr 4 14:39:09 2025 GMT
Subject: CN=67e6b48d-e79d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:2e:67:d0:1f:5a:b5:12:2b:59:f8:aa:b8:44:
31:d3:23:e4:86:6f:26:de:09:cc:a0:27:97:62:ba:
75:2e:89:a7:68:8d:93:20:1e:0e:82:da:80:2d:47:
6a:6b:93:09:03:5b:54:a2:1e:15:a6:72:81:7e:9f:
a1:67:e4:bc:38:e4:18:40:20:f1:c0:67:76:87:c9:
87:cc:5f:d1:06:7b:8b:a4:4d:4f:31:77:69:62:2d:
30:1e:0f:c1:92:56:cd:36:92:a4:7b:ad:fe:ad:1c:
eb:57:43:eb:b1:35:be:a4:b3:9a:86:b1:b3:a9:f5:
9f:5e:bc:01:b4:47:e7:76:d9:31:07:5e:89:88:8f:
9f:d2:20:a9:ab:69:92:a7:79:c8:cf:20:ef:64:b3:
fc:23:3c:3e:af:09:e0:34:24:d9:2f:38:4b:8c:aa:
71:ac:82:cf:da:9a:03:6e:96:9a:57:f4:b1:6d:87:
ac:b7:0c:d8:26:58:b3:17:0d:36:ec:73:ac:65:2f:
2c:49:bb:b6:9c:2f:ad:2d:21:b3:f8:2e:f2:86:a1:
71:5b:7b:5d:bc:b7:ae:7f:87:96:1e:8b:77:f7:71:
79:72:e1:c2:4c:af:cf:ab:eb:e6:b6:bf:6f:5e:ff:
6f:59:37:b0:a6:10:ac:39:4c:8a:03:61:c0:18:c8:
c7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D3:25:A6:C2:C6:94:D0:91:B9:18:33:88:C9:32:CF:35:CE:66:4D
X509v3 Authority Key Identifier:
keyid:42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
59:c9:0e:a4:85:67:d9:c7:8d:18:d7:53:9c:c8:76:58:96:1a:
6a:8e:0f:95:1a:fd:37:71:aa:fe:1c:71:30:38:e2:46:9a:c7:
70:a6:00:6a:d2:b5:9b:16:5d:f9:76:c2:83:41:52:a0:36:de:
ea:d8:07:96:35:26:da:71:bc:c3:28:22:cb:6a:73:09:84:af:
2b:ab:6a:d6:68:ae:32:da:1d:35:4d:f9:d9:c0:97:f5:25:a8:
85:b4:55:ea:e4:64:b1:56:7f:b7:95:ab:02:6f:3b:0c:89:74:
d3:ac:c6:a4:66:b5:f5:0a:3b:67:31:c9:11:1f:cd:6f:05:36:
dd:53:7e:3b:37:e1:92:a8:96:09:9e:0b:12:df:f2:53:e8:29:
bd:fd:19:1d:5a:0e:a7:a6:42:14:df:e0:fc:65:ef:02:48:b0:
e0:f2:87:fa:82:da:df:d2:d1:2a:07:d2:e0:86:19:48:00:8d:
d7:ac:47:17:04:ac:3e:fd:a0:50:13:5d:9f:82:06:33:2c:aa:
76:dd:77:fa:39:3a:9b:e1:9c:73:89:b2:09:7f:0c:d5:94:a4:
83:fd:32:39:28:25:93:25:44:0d:dc:f3:32:c8:c6:6d:28:93:
1f:c7:4c:7c:cb:cf:c2:ec:0b:41:55:a7:d3:1c:09:3a:c0:80:
d9:c1:bc:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:13:32 2025 by rpki-client