Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft
File: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft (raw, json)
Hash identifier: WEcsNfOI9QsguyHCXuYJJeBaPe7FLblFVolduH59xXE=
Subject key identifier: 4D:A4:A7:69:93:8E:5A:F0:98:5B:B0:63:58:A3:1F:AD:55:22:10:C0
Authority key identifier: CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D
Certificate issuer: /CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D
Certificate serial: 0A9A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft
Manifest number: 0A93
Signing time: Fri 28 Mar 2025 19:45:38 +0000
Manifest this update: Fri 28 Mar 2025 19:45:38 +0000
Manifest next update: Fri 04 Apr 2025 19:45:38 +0000
Files and hashes: 1: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl (hash: rdwdkvy2uDgQ3ituuKIQzQkMH8t4yqQpMVfK1N+v6Ww=)
2: 38CAF4EC52B911EAACE8041BC4F9AE02.roa (hash: melr0OdWnM49IUzlU41JvKNY+g7F2hByLSoyY38bhQA=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2714 (0xa9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91594AE
Validity
Not Before: Mar 28 19:45:38 2025 GMT
Not After : Apr 4 19:45:38 2025 GMT
Subject: CN=67e6fc62-ac09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d9:ee:22:94:68:97:0c:28:7f:69:c8:9b:9d:
d1:d5:db:55:35:90:23:30:79:52:d2:dc:44:cc:6e:
21:ed:87:64:c2:aa:91:6d:c9:a9:9e:64:4c:16:60:
79:64:44:76:fe:9d:89:93:f5:7d:75:3f:7d:4c:3c:
bc:19:fc:06:90:7b:a8:25:e8:96:cb:8c:76:af:ec:
d3:1a:8d:30:54:5c:74:37:eb:77:7b:e6:d3:66:3e:
f7:01:75:9a:1b:eb:90:9a:8c:8e:66:93:ec:ee:41:
72:37:96:dc:27:77:56:59:cd:81:f9:d6:2d:d2:9b:
54:67:9c:13:5d:a4:a1:3d:9b:13:23:b6:98:99:39:
0c:97:24:61:94:53:78:a4:d0:cb:65:da:cb:2a:29:
e0:cc:22:ed:99:c2:ef:10:bd:28:66:b9:53:dd:dc:
5e:bb:d6:e7:af:45:57:d4:46:18:68:3e:3d:31:7e:
62:83:8c:38:0c:c7:72:93:02:36:5e:0c:c8:71:14:
d5:21:f5:76:e0:8a:1b:8a:35:75:5d:ff:ac:4d:20:
96:8d:c1:1c:49:48:b5:aa:6f:6d:3d:88:bc:51:af:
5a:42:0f:77:82:09:12:ca:57:ab:9b:aa:25:ff:30:
1b:50:b8:e3:ed:05:ba:61:5a:38:6c:f8:da:0b:72:
d2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A4:A7:69:93:8E:5A:F0:98:5B:B0:63:58:A3:1F:AD:55:22:10:C0
X509v3 Authority Key Identifier:
keyid:CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
34:18:9f:fc:22:84:1d:23:a6:68:26:73:61:bf:0c:f2:cd:b7:
98:2b:04:39:2f:74:66:f9:f5:e0:c5:0e:7c:f7:55:95:b6:fa:
0f:b3:80:f0:3e:f3:e4:37:00:af:f4:17:a5:f2:f8:da:e1:0c:
3a:30:1e:17:38:a8:2c:0c:4f:45:b1:8f:88:fc:3a:41:8b:ec:
c0:c5:2b:81:96:3f:6c:6f:33:b7:be:b8:da:51:8e:14:8f:5d:
33:43:48:fa:78:2a:92:51:ce:d2:32:b1:83:f1:3e:27:5d:50:
d0:91:5f:9c:0f:a0:02:53:ee:16:6c:8a:49:13:16:54:bb:3d:
1d:7b:42:6a:6d:8e:7f:d5:ac:e2:e6:9e:7a:f2:9d:79:17:a0:
bb:0e:31:fb:9c:fe:da:15:44:a0:49:3a:52:e6:97:ad:8d:c7:
51:40:c1:ab:aa:5e:ba:99:03:32:c2:16:5a:fc:a9:05:96:cf:
72:c4:09:19:84:f5:88:55:52:ff:f9:3c:29:fe:de:07:9f:f8:
50:b1:9c:69:b1:2f:33:20:a5:f9:49:f6:45:c5:35:0c:6e:e3:
58:66:b0:24:ae:2a:56:d1:bc:6f:a1:36:55:bc:d3:7a:14:52:
18:5f:12:01:28:b0:0b:6f:35:6d:ec:a2:08:b2:e4:17:12:5a:
49:f4:3e:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:13:45 2025 by rpki-client