Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft
File: hQaYWfujzd6OwbgaHgTdYFCzgRM.mft (raw, json)
Hash identifier: jvkQ1L4DkVz0toWg+U/jo4UIQJGfm9jFa7oiKKCynQM=
Subject key identifier: 12:DC:CA:A0:FE:FD:F4:88:08:59:0A:F3:55:58:2B:AF:82:17:23:AE
Authority key identifier: 85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13
Certificate issuer: /CN=A91509C4/serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113
Certificate serial: 3465
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft
Manifest number: 3465
Signing time: Fri 28 Mar 2025 14:35:25 +0000
Manifest this update: Fri 28 Mar 2025 14:35:25 +0000
Manifest next update: Fri 04 Apr 2025 14:35:25 +0000
Files and hashes: 1: hQaYWfujzd6OwbgaHgTdYFCzgRM.crl (hash: dD0VeGNeU8qCdnBU6j4RsQPNzaLn2JJKvMZla3okSlo=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13413 (0x3465)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91509C4
Validity
Not Before: Mar 28 14:35:25 2025 GMT
Not After : Apr 4 14:35:25 2025 GMT
Subject: CN=67e6b3ad-a1ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7a:66:e2:b6:f6:09:f6:5f:1d:60:61:6b:45:
f1:31:00:b8:e9:11:78:68:1f:5f:3f:1e:9e:eb:1d:
9c:76:14:1e:b0:4d:58:6e:68:6b:8a:03:cd:ff:7c:
12:eb:39:45:94:a0:6f:93:20:75:2c:ce:b0:e4:cd:
a7:17:10:3f:6d:e2:23:97:f9:cc:7d:84:fd:65:31:
23:49:09:d1:7b:57:2c:d7:2c:fc:1e:5c:07:85:85:
ad:32:59:2a:0b:f9:7e:e4:97:7b:ea:83:7c:ab:fe:
e2:56:91:9b:1f:df:42:b1:5e:76:a7:a5:aa:15:41:
3e:a1:a2:38:b7:43:17:39:12:e6:0e:59:20:fc:3c:
31:5a:da:36:8f:b5:85:cc:dc:8a:f9:25:f5:16:6c:
28:b9:83:d1:6c:d2:a3:d1:c6:ae:73:86:bc:33:91:
82:c2:94:9f:f2:7f:3a:14:4d:e9:aa:8e:c6:d4:ad:
b4:95:af:eb:e1:35:6f:62:cf:c6:04:9d:99:6f:c1:
29:d6:9d:24:93:46:85:e2:2d:81:c6:84:86:f4:3e:
ee:0a:2d:a4:00:bb:ad:bd:e0:fb:cd:48:ce:2c:ed:
9f:a2:0e:9f:22:cf:06:8a:05:4f:0a:c6:02:17:7c:
40:b7:0b:cd:a2:74:79:fa:dc:09:f9:7d:c6:e3:60:
e5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:DC:CA:A0:FE:FD:F4:88:08:59:0A:F3:55:58:2B:AF:82:17:23:AE
X509v3 Authority Key Identifier:
keyid:85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ad:7d:a3:3a:b6:7b:e7:40:99:72:c5:63:32:35:56:65:3d:
fa:aa:6e:e5:87:16:8f:3e:e3:90:a3:82:21:a1:27:61:1a:b8:
a2:8d:28:9b:65:3a:62:35:1f:07:3f:ff:8b:b8:57:07:e7:5c:
00:46:39:fc:3a:47:0e:d8:96:f9:d8:f3:d4:eb:6e:0c:f2:17:
cf:a5:c4:81:72:66:84:cd:de:45:eb:34:ed:e6:e3:69:36:2b:
b4:eb:12:14:3d:6b:53:c5:62:71:02:0e:1b:34:ed:00:b0:f7:
24:ef:f1:f4:21:9c:cd:59:73:91:69:0e:91:93:2c:4f:b8:4d:
57:a9:30:96:de:1c:9f:c4:ff:2f:8f:79:7c:28:a4:20:d4:ed:
b7:a6:40:59:dc:c1:e8:2a:f2:a6:0d:ff:28:de:1a:e6:3a:e0:
b8:31:29:90:47:3b:38:2a:9c:c5:0f:09:3d:5e:e9:51:f5:60:
41:e9:72:d4:46:7a:eb:87:4f:73:f9:33:65:34:2a:8e:34:fe:
3e:d6:d8:6e:ff:7d:07:a1:45:ed:0f:73:f3:d7:d0:16:1a:b7:
70:f5:c0:2a:56:44:3c:6b:ed:a9:15:f5:20:27:00:cc:dd:b9:
af:be:d8:30:89:96:4d:8c:bb:ba:41:53:47:28:4e:b5:e6:7f:
aa:d7:a7:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:04:11 2025 by rpki-client