Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft
File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json)
Hash identifier: fEXgTy3wJpZOYvYirrkQhRo/tPflbEh767ragE48yS8=
Subject key identifier: 6F:C2:E0:67:7F:CE:67:3B:D7:A5:ED:B4:1F:59:A2:FE:BF:DE:F4:1C
Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE
Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE
Certificate serial: 0AAF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft
Manifest number: 0AA9
Signing time: Fri 28 Mar 2025 19:42:43 +0000
Manifest this update: Fri 28 Mar 2025 19:42:42 +0000
Manifest next update: Fri 04 Apr 2025 19:42:42 +0000
Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: lwix0LaccZ8IPC3zB0W/y7OlJFTPXWTyE1kRNs3fKzk=)
2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: HpuZh21zVl0Ft40GZ9PsEwmlpNjswClEyYGJmu6x+ok=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2735 (0xaaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914B57F
Validity
Not Before: Mar 28 19:42:42 2025 GMT
Not After : Apr 4 19:42:42 2025 GMT
Subject: CN=67e6fbb3-f281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:07:af:df:28:b0:a1:5f:1b:ea:0c:9b:09:38:
ac:c3:95:f3:57:8f:cb:68:75:81:20:c2:86:47:18:
f9:a4:ba:62:f2:2e:29:c3:64:ae:74:a2:39:32:ac:
09:6c:f6:06:4b:0b:09:f2:b4:b3:2d:3b:cc:e6:61:
78:c6:5a:4d:aa:ee:a1:46:04:64:31:52:b5:de:a1:
d9:c6:37:fc:5f:e5:98:8a:d9:04:b0:0b:16:e7:69:
72:8b:df:3f:80:7f:8d:05:31:e8:ef:e0:ab:6b:50:
79:fc:de:84:1a:3b:0f:b3:15:89:16:c5:b2:6d:06:
e6:7f:2b:0d:be:b8:61:c4:cf:43:4c:08:99:8b:fd:
e3:b8:93:36:59:0b:c6:93:26:a5:20:a1:67:9f:ae:
5c:72:ba:9f:22:60:fb:13:69:44:06:67:c0:fa:64:
39:73:de:22:0d:df:7f:50:73:9e:9e:78:d2:33:43:
62:8f:18:5f:ca:6c:43:aa:e3:fa:6c:d4:51:cb:e8:
a2:67:fd:cb:16:7e:08:90:08:7d:fb:65:5b:9b:23:
af:6a:f2:59:7b:42:5b:7a:d6:7c:13:68:d1:08:d0:
42:be:40:af:93:31:00:72:e3:8a:f8:55:ee:1f:c5:
14:27:cb:e8:10:6a:13:ca:0f:f3:12:5d:72:06:44:
f6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:C2:E0:67:7F:CE:67:3B:D7:A5:ED:B4:1F:59:A2:FE:BF:DE:F4:1C
X509v3 Authority Key Identifier:
keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3b:84:0b:51:1b:d9:2a:a2:a6:6d:50:25:eb:e2:86:8c:23:93:
95:47:21:17:83:4c:cc:42:fc:82:f8:25:7c:49:31:e7:01:45:
68:d5:a0:71:43:e9:a8:e2:b5:ef:c0:8d:cb:ea:3a:2f:15:7f:
c8:1e:b8:18:b8:23:bb:ba:95:0b:7b:79:f8:be:4d:dc:c6:9f:
28:e2:d8:83:a9:22:42:3e:b6:8e:d9:f6:26:07:6d:97:c1:d5:
ce:e8:93:c0:c3:b7:2c:f5:62:a1:4a:45:37:e9:70:3f:3e:22:
05:46:38:f5:56:f7:e1:bd:42:50:d5:fd:6b:ef:29:0f:87:75:
27:fd:d1:cc:0a:91:c0:24:47:19:92:14:e3:c2:14:5e:5e:2e:
34:66:bc:1c:65:06:64:f7:5b:07:a5:b2:96:ac:35:3c:35:9a:
ec:e6:d0:a9:37:bd:2b:07:e1:33:d9:73:21:23:fe:a9:17:77:
41:47:f9:b7:24:03:1e:a7:a7:db:a3:fa:81:d9:87:bc:d9:de:
5d:58:9d:2f:bd:8b:a4:c8:ad:8f:83:81:7f:3c:9c:47:db:0a:
e4:af:e9:fc:f5:7a:31:ad:43:6a:27:96:af:ae:a5:56:7c:22:
54:87:00:56:7d:3b:b7:77:1e:c7:60:6a:42:d2:fc:52:e5:bd:
56:d3:99:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:15:12 2025 by rpki-client