Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft
File: o9--Ea-KeOViz7RXkAzKuQkMK1k.mft (raw, json)
Hash identifier: YopVGPjsA1phY3n74k2ZCvorcskzOub64njPN0YhmLE=
Subject key identifier: ED:05:7F:DE:12:78:CE:8B:DA:C5:C6:FE:A1:86:2A:B3:4D:42:B0:E9
Authority key identifier: A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59
Certificate issuer: /CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59
Certificate serial: 08F3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft
Manifest number: 08EE
Signing time: Fri 28 Mar 2025 20:38:28 +0000
Manifest this update: Fri 28 Mar 2025 20:38:28 +0000
Manifest next update: Fri 04 Apr 2025 20:38:28 +0000
Files and hashes: 1: o9--Ea-KeOViz7RXkAzKuQkMK1k.crl (hash: t9p+b3V7sGKjA//O6NKxs03Iq2gaK1qEh+DLU5A1QVU=)
2: C0A21C70A4A711EA835CCA70C4F9AE02.roa (hash: itCLnBcL2Gte2voVtQcQvcDsZmsmQBg0colGRKDZXYQ=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2291 (0x8f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9145604
Validity
Not Before: Mar 28 20:38:28 2025 GMT
Not After : Apr 4 20:38:28 2025 GMT
Subject: CN=67e708c4-b08e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f6:e1:6a:fb:0d:1b:d5:57:c9:48:00:70:c2:
a3:71:f4:1b:2b:d2:25:6b:9e:d4:6b:57:09:e2:ed:
fe:bc:c7:6b:d8:65:48:d0:c1:35:0c:9d:ad:12:e9:
21:5d:8f:38:75:23:ea:07:eb:74:f4:e7:8f:52:ae:
cb:f6:06:63:b6:e9:dd:b6:60:af:d6:9c:cf:1f:be:
ba:49:f5:a0:42:3c:57:41:7a:c6:de:68:b2:1d:98:
ac:e5:68:41:2e:f3:80:5c:63:e3:84:0b:22:d1:c0:
40:40:9e:20:72:d0:32:1a:6c:e5:35:f0:af:3d:bc:
9f:15:28:d7:13:f1:35:dc:e1:b4:7e:bd:f3:cd:cf:
64:07:ff:3d:1c:26:40:7f:7d:5a:72:94:73:71:cb:
fa:58:dc:94:cf:82:d8:f0:51:b7:1e:50:08:ec:2c:
40:d7:1e:92:f4:2c:f8:d8:13:69:63:71:fe:ba:f7:
0e:a5:b1:3c:d0:76:18:27:33:0a:80:ce:eb:5c:ee:
51:5d:cc:38:21:31:1d:78:fe:09:7d:85:a7:25:2d:
ee:0b:7a:dc:70:ea:e5:44:71:a4:9f:95:a0:39:41:
6f:24:79:c3:2d:7d:a0:03:bc:4a:d8:8e:ab:e1:d3:
96:6e:99:76:37:10:32:02:b1:8c:0d:2c:ad:e5:4a:
15:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:05:7F:DE:12:78:CE:8B:DA:C5:C6:FE:A1:86:2A:B3:4D:42:B0:E9
X509v3 Authority Key Identifier:
keyid:A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
68:4f:6a:5e:e7:50:e3:7a:0f:93:af:7e:cd:92:5e:dd:9c:fb:
43:39:98:28:54:21:e0:2e:b9:4b:a5:dd:08:51:94:a5:76:53:
e2:e2:56:65:12:59:c4:e9:44:81:02:a5:5c:84:8e:f1:2a:72:
59:ac:6e:c7:8a:64:0d:b4:18:89:42:e1:6d:69:e3:19:d9:de:
40:b2:96:11:bb:9c:4c:15:55:b4:d0:bb:65:0c:17:4b:fd:16:
0c:f6:77:15:80:c0:b1:fb:16:04:dc:7c:bd:d2:50:19:05:6d:
77:eb:36:6a:89:de:5a:ea:b4:ee:ec:0e:46:78:ca:9c:62:6e:
93:ba:4e:19:3c:4a:a9:18:74:cb:95:12:d9:d1:a9:f4:c4:45:
02:7f:0e:98:2c:cb:d8:97:9c:c5:67:0f:ad:ca:ce:f4:9d:37:
fb:c2:c6:95:2e:b9:bc:db:9b:32:21:25:77:32:3b:b0:c0:e2:
4a:2f:aa:12:7a:22:9c:5b:12:d7:fa:9b:dc:9c:03:77:dc:ad:
ee:51:3d:55:a5:7a:c9:93:1a:0a:67:16:a8:cf:fa:6c:dd:78:
0a:8d:3c:34:ea:dc:eb:ea:03:8e:4e:ab:af:0e:e5:cc:ae:fa:
7d:67:89:cd:62:8b:d8:ee:3b:13:7e:49:fa:4b:90:41:8b:9a:
ed:c7:31:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:14:57 2025 by rpki-client