Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft
File: nL-xN0vpMpetwbIdvTeY0VvSdN8.mft (raw, json)
Hash identifier: QlaSWr5TgFP/D03egmeIvLD9V+wUxUOcjJIopAG3cxQ=
Subject key identifier: 82:61:6F:AD:50:EA:ED:BA:69:AB:5E:48:E2:CF:28:BF:32:87:18:D3
Authority key identifier: 9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF
Certificate issuer: /CN=A9152696/serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF
Certificate serial: 0C21
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft
Manifest number: 0C1A
Signing time: Fri 28 Mar 2025 18:43:45 +0000
Manifest this update: Fri 28 Mar 2025 18:43:44 +0000
Manifest next update: Fri 04 Apr 2025 18:43:44 +0000
Files and hashes: 1: nL-xN0vpMpetwbIdvTeY0VvSdN8.crl (hash: J9OzmeHphAjX8qU63jyDQHnzJRLg9z0LiJqjaqYtJqA=)
2: E905CD5808F111EA8E4F1D51C4F9AE02.roa (hash: Ykh/ajdiEQ6UqJC1nIow2mRMlvxbjVdtujI4Th0ysiU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3105 (0xc21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9152696
Validity
Not Before: Mar 28 18:43:44 2025 GMT
Not After : Apr 4 18:43:44 2025 GMT
Subject: CN=67e6ede1-1ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1f:71:b3:95:cb:ce:32:24:5b:09:bc:f7:a8:
8d:2e:b5:ff:49:60:ea:20:48:6c:55:24:3f:4d:18:
92:b0:c1:8f:4b:87:0e:be:f6:fc:75:a1:b2:0e:cc:
80:0f:90:12:19:6f:7b:54:99:88:7e:55:ac:1e:e6:
87:96:bd:c3:1d:a6:c9:cc:98:af:02:1a:9e:17:0e:
48:f7:28:96:3b:0d:0b:3d:cf:61:f8:d4:1c:07:c1:
cd:b9:d7:60:5e:61:65:21:66:21:e9:4a:71:d8:04:
fc:35:45:5e:10:fc:00:3d:79:55:06:6d:5b:21:53:
a1:ee:4f:ac:40:9f:b5:79:c1:91:a6:22:d7:21:fe:
d6:b0:d7:2b:84:d3:4b:bb:c6:df:29:0c:c7:57:42:
d1:34:41:f3:fd:ba:a6:b0:0a:a0:12:b3:31:76:d2:
42:de:2e:23:72:ad:24:c8:97:d1:c1:75:ed:46:77:
7c:59:25:5e:8a:d9:b9:47:6e:80:42:d5:50:5a:ad:
84:d2:cb:0a:60:41:39:fd:6b:2a:ce:a2:05:21:ff:
56:dd:5a:88:bf:84:38:ca:ae:8f:d8:b0:01:6c:49:
76:35:b4:a7:dd:0f:a5:91:a0:8f:d2:85:c0:af:43:
39:d9:c1:f6:4e:e3:0b:1a:07:ab:66:7d:d3:79:e0:
56:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:61:6F:AD:50:EA:ED:BA:69:AB:5E:48:E2:CF:28:BF:32:87:18:D3
X509v3 Authority Key Identifier:
keyid:9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
e0:c1:a5:d2:52:40:36:55:a0:8a:e4:4c:8c:8c:15:c1:20:fa:
50:50:fa:2b:4b:05:f3:6d:cc:fe:e0:57:88:2b:59:17:5d:39:
0a:d7:c2:9d:a6:9a:e4:d8:e6:bc:63:9a:9a:c0:e2:95:a7:4a:
f2:f8:ca:da:fb:13:03:93:db:ed:62:5c:4d:3d:e5:21:89:5f:
65:15:a1:9e:af:a7:73:39:6f:12:9c:91:d7:29:09:b9:a3:db:
2d:74:fb:64:3f:1d:9e:3d:14:53:c2:3f:e1:07:60:47:5f:ae:
d4:87:86:ac:3d:b5:ed:26:f4:f7:d9:d4:dc:62:36:00:16:14:
6c:38:e2:96:d9:a8:d3:be:89:fa:b5:bb:62:83:2f:79:89:2d:
1f:f9:85:6f:a3:83:8c:a9:3e:5b:f9:8f:63:5c:e6:09:0c:55:
6f:22:07:57:d2:41:74:bb:8a:1e:ee:f8:e5:d0:74:e5:b9:9b:
d6:ca:dd:bf:21:9c:d2:3b:bd:71:0c:50:26:12:12:19:03:82:
87:c2:9b:6e:fc:54:a0:d2:8b:60:ba:0f:fb:75:94:92:24:59:
cf:4c:1f:02:e4:83:ea:9c:32:a0:0b:ac:78:67:34:5f:38:2f:
8f:d9:3b:8f:ec:c2:f6:7c:03:59:2c:42:6c:d0:45:1b:bc:13:
49:7d:34:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:04:26 2025 by rpki-client