Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft
File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json)
Hash identifier: T7VivAQGFEoE930EAgp5d3tzcFXnzu0SPPznZ0AWBXg=
Subject key identifier: 71:3D:B8:D6:18:57:12:7E:77:42:F6:2F:0D:E0:59:EB:CF:3C:E1:E0
Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E
Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E
Certificate serial: 09B6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft
Manifest number: 09B0
Signing time: Fri 28 Mar 2025 20:15:00 +0000
Manifest this update: Fri 28 Mar 2025 20:15:00 +0000
Manifest next update: Fri 04 Apr 2025 20:15:00 +0000
Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: Bp/j3NKgZVQ7ruHJVcLfc1CKr0moMxF/0OzcTrS6EIM=)
2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: xV0WLxYqqQFCLmI/y4DVLsG2EiamVNg0WSby5MmNSBE=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2486 (0x9b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915C1AA
Validity
Not Before: Mar 28 20:15:00 2025 GMT
Not After : Apr 4 20:15:00 2025 GMT
Subject: CN=67e70344-ef84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:36:a2:74:23:65:fb:b5:b1:0c:e5:2e:45:b8:
a0:b2:bf:30:b7:68:98:c9:6b:14:4f:10:a0:da:ac:
83:9b:fb:d0:8e:77:64:40:33:c9:87:48:31:bf:a4:
8a:72:45:be:a2:42:d5:69:dd:26:b1:3d:63:c8:d8:
bb:da:10:d1:b2:89:e5:e2:52:47:73:a3:83:f5:1c:
e9:71:e7:cf:e1:c0:39:4f:49:ff:9e:f8:a6:5c:3a:
39:bc:d0:21:bd:dc:06:28:30:08:0b:2e:3b:58:a4:
a1:b2:0c:84:ec:23:b3:9d:a4:ff:6f:3d:72:b2:43:
50:9a:57:03:1c:29:06:78:9f:71:a0:f0:f9:c9:32:
a3:36:96:31:0b:db:08:87:24:53:1b:2b:bc:32:1b:
52:4e:c3:e6:b7:da:4e:21:48:3c:8e:39:5a:d1:95:
e0:94:96:d2:a9:58:a3:42:15:3f:3e:ed:43:da:b8:
b4:3f:5f:79:24:4a:4e:5b:68:2a:a5:f3:f2:00:4a:
a9:91:37:e3:28:cd:68:59:c4:d4:cb:d1:45:0e:8d:
43:5c:32:2c:cd:bf:fb:c7:e3:88:49:aa:74:e5:28:
cb:5f:ba:f7:17:a8:2d:7e:27:c6:20:97:29:f8:cb:
5e:41:22:55:99:d6:38:18:2a:41:ef:94:d3:4a:95:
fd:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:3D:B8:D6:18:57:12:7E:77:42:F6:2F:0D:E0:59:EB:CF:3C:E1:E0
X509v3 Authority Key Identifier:
keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3b:95:e1:31:c6:fb:a0:45:74:7e:a4:73:9c:9d:c6:22:19:d0:
e4:dc:b8:1c:2f:54:64:c0:17:92:f5:91:17:8c:53:c0:ff:ab:
79:69:21:c4:fb:4e:cd:9b:77:ec:6a:d6:fe:12:c1:2e:8a:f5:
ea:d8:54:81:a7:2b:e1:2f:10:d9:1e:24:01:2a:f6:17:1c:79:
e3:4b:93:01:7a:b6:ed:7d:18:92:2f:0a:7c:02:47:e6:ee:1c:
cb:69:d1:31:2b:d5:88:65:2a:15:b6:c6:75:51:f0:10:29:a7:
6e:e4:81:fa:d3:82:5e:98:20:62:dd:1f:5d:f0:82:8a:e1:1c:
2c:d6:e1:e0:3a:53:f2:f9:dd:fb:6e:78:4a:a5:6c:39:d1:40:
af:7a:79:4b:e8:0a:d4:02:b4:0a:66:57:0f:7c:1e:7d:1c:82:
a2:90:b7:79:37:62:fe:f8:4f:4c:16:50:5e:24:5a:86:3c:05:
73:17:40:7b:90:a8:b7:73:a2:69:c7:26:4d:10:67:7a:a9:18:
3a:b8:6f:78:df:58:c7:cb:ef:ac:78:42:af:1b:be:2a:19:20:
43:4b:96:26:58:bd:a7:f8:ec:87:b7:55:7a:fc:7f:93:61:a3:
3f:74:13:6c:41:d0:cd:09:8b:91:d5:21:08:1a:d6:da:67:9f:
29:94:44:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:32:10 2025 by rpki-client