Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft
File: P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft (raw, json)
Hash identifier: xMXzaYS5fTXyVQTThR51PE7V3VHMn6BTP7vamIgU6fI=
Subject key identifier: 99:E3:3D:BF:42:16:5C:02:37:A2:0E:35:69:8E:99:7C:EA:7B:95:02
Authority key identifier: 3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94
Certificate issuer: /CN=A914988F/serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094
Certificate serial: 079F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft
Manifest number: 0798
Signing time: Fri 28 Mar 2025 21:32:53 +0000
Manifest this update: Fri 28 Mar 2025 21:32:52 +0000
Manifest next update: Fri 04 Apr 2025 21:32:52 +0000
Files and hashes: 1: P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl (hash: /aKAI3NVlXDdh3RnIbFrxSlqTuJwgk+yWFt64Ye/Bw0=)
2: 4ED5A00CFE2611EAA4F3424DC4F9AE02.roa (hash: qdn4Rx6KYVWRsCXtm49GAL/TWxFXG2srvh1gEG2saCQ=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1951 (0x79f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914988F
Validity
Not Before: Mar 28 21:32:52 2025 GMT
Not After : Apr 4 21:32:52 2025 GMT
Subject: CN=67e71584-85b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:80:53:ae:45:77:93:d5:06:71:44:93:81:1a:
e6:6f:11:fd:f6:8a:45:c8:1e:6a:c1:b2:ab:ed:16:
1e:e6:35:e7:f4:a2:0a:2e:24:65:53:f3:4d:f8:e9:
9d:bc:bd:35:6d:1d:cc:e2:94:24:1f:20:23:3d:30:
e6:07:75:63:fa:08:c4:a8:ca:6a:63:d7:09:07:de:
5d:d4:48:49:d5:e0:fd:7d:77:44:68:2f:c1:32:45:
0e:f9:9c:f6:55:db:b6:e1:77:92:30:9d:04:5f:ca:
f7:7f:61:d4:9d:bf:9f:a7:02:9a:0c:ca:89:84:19:
28:e0:bf:d8:a4:a6:fa:42:bf:20:0f:81:76:3b:22:
0a:92:84:53:15:ca:c2:f0:74:c0:db:19:eb:3b:5b:
b0:03:44:37:58:fa:dc:ba:2b:40:1c:44:0c:d1:13:
6b:84:9e:2f:04:ba:dc:a8:82:9d:b7:6d:ca:f5:1c:
e6:9f:c0:c9:1a:b5:e0:52:6a:9d:af:52:54:0c:ec:
df:6b:87:d8:b0:f9:61:23:e3:0c:f7:d9:ed:38:43:
5e:85:7d:33:db:04:40:c8:b3:f7:65:da:e2:bb:ac:
e3:c9:e6:e8:8a:45:c1:ab:c8:76:8b:1f:68:4e:97:
6f:82:7c:57:c1:ba:d6:43:bf:ee:59:81:cf:34:1d:
9c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E3:3D:BF:42:16:5C:02:37:A2:0E:35:69:8E:99:7C:EA:7B:95:02
X509v3 Authority Key Identifier:
keyid:3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7a:27:50:d1:be:f7:36:d1:58:c5:f8:fa:76:94:bc:28:e6:b0:
b2:bf:4a:38:c6:d2:50:5b:10:cf:e8:3e:d3:00:68:c9:a6:69:
bb:4c:e3:ad:65:58:d5:4d:02:67:ac:44:b5:26:60:3e:82:64:
22:94:20:e7:25:60:29:bf:27:46:29:c5:f3:8f:5d:42:5a:7b:
c7:62:55:95:80:1f:af:4c:72:9b:e9:35:8d:e4:fe:db:f8:d1:
1e:ab:f0:dd:4b:c8:69:50:e8:5e:44:67:0f:8b:ba:64:c1:45:
c1:2c:20:27:ae:26:40:9c:fd:97:85:38:b5:62:7a:29:54:01:
a2:e4:fc:a3:d7:61:10:87:d5:6d:3b:33:90:c9:75:22:e5:84:
af:50:74:07:dd:eb:51:ee:2c:02:7f:ab:98:48:97:72:1c:bf:
4e:3c:0b:61:f1:b8:3e:e4:dc:21:6b:bb:9d:ca:d9:80:9c:4c:
00:22:83:c3:4b:4d:91:cc:54:48:76:82:2d:ca:93:a4:a4:49:
ee:f9:c8:ec:9c:e1:21:e2:c3:9d:f2:c8:5f:08:b6:cf:b3:24:
11:32:2d:d3:93:a3:87:aa:b7:79:1e:5a:cd:5a:27:f6:cc:17:
62:86:29:88:0f:a2:18:e6:a6:44:6b:9d:91:3e:f4:74:b7:60:
05:b7:07:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:17:50 2025 by rpki-client