Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft
File: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft (raw, json)
Hash identifier: UplDLHTDxbMh6coEglhUDwG+Kua5ObxbkbLStvXfmow=
Subject key identifier: E5:FE:CC:48:84:F6:7E:80:4E:37:53:16:56:02:B9:79:4B:EB:FA:70
Authority key identifier: E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84
Certificate issuer: /CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484
Certificate serial: 21E2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft
Manifest number: 21D2
Signing time: Fri 28 Mar 2025 15:58:26 +0000
Manifest this update: Fri 28 Mar 2025 15:58:25 +0000
Manifest next update: Fri 04 Apr 2025 15:58:25 +0000
Files and hashes: 1: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl (hash: zP2qHvs2UlF5wl4Emxo1F2vAnRk2YXG+qdzayVFnESY=)
2: CD4CD0B654F311E7AC64ED3AC4F9AE02.roa (hash: iH2xmS1GVsSNNCZWscwdxJt8FMGLF9Yh7e5xIVsXSm8=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8674 (0x21e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915E005
Validity
Not Before: Mar 28 15:58:25 2025 GMT
Not After : Apr 4 15:58:25 2025 GMT
Subject: CN=67e6c721-aea6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:27:28:24:1f:c6:76:99:85:b2:28:46:45:ac:
1e:c6:8a:14:ff:a6:f4:2c:1c:5e:39:5a:ec:56:0c:
4b:a9:2c:4c:99:1d:be:7d:ca:cd:30:21:11:82:5a:
cc:24:f0:b9:77:30:86:6c:54:45:ce:21:c9:63:d0:
4d:02:1d:19:83:84:f7:55:fd:3c:98:8f:59:2e:3d:
af:c9:42:74:fb:cf:a2:b9:a4:0f:78:da:93:7b:98:
b2:b1:d0:30:3f:87:84:a8:c9:6a:e8:16:23:24:4f:
79:39:ec:6a:17:0e:51:75:27:ac:53:d2:52:e8:dc:
4a:13:47:84:e1:d7:20:98:37:de:ef:c4:dd:46:cd:
5a:bb:7c:07:2b:d9:8f:e9:2e:48:dc:f3:dd:4f:92:
0c:7f:88:12:e6:04:71:a5:78:f1:28:9c:2b:25:88:
18:e7:4b:04:e9:33:6b:79:93:17:b4:d3:73:b1:ee:
de:c0:c3:80:0c:88:37:92:e6:6c:2c:ca:da:d1:9c:
5e:6d:5b:af:92:e8:c0:91:29:86:a3:12:7c:cf:9e:
76:06:b7:cc:a8:c1:75:5e:49:1b:cd:fb:17:cb:50:
c8:92:f9:98:7b:dd:03:d5:51:29:e6:fc:ef:d8:86:
ab:90:5b:b2:29:10:36:b8:ab:f2:74:20:b7:d9:c4:
84:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:FE:CC:48:84:F6:7E:80:4E:37:53:16:56:02:B9:79:4B:EB:FA:70
X509v3 Authority Key Identifier:
keyid:E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
19:bb:13:10:31:f1:45:c9:99:27:41:59:c9:47:9d:5b:33:56:
c7:6f:66:1c:14:b2:89:e5:c8:e7:b4:95:d7:6e:8b:a9:c4:19:
ae:22:4a:af:e3:1a:54:d3:63:d8:60:a2:df:7b:c7:46:25:0d:
97:ee:4b:29:64:29:90:ae:3e:89:e9:d1:8e:29:57:32:a8:c8:
ea:66:14:c7:8b:fe:b0:0c:c4:ae:15:b3:57:20:e0:bb:d7:97:
90:ed:35:31:0c:ed:7a:81:cb:2c:ee:34:d8:10:b7:f2:97:a8:
25:63:76:59:fc:f3:70:b5:e6:c2:aa:d3:11:f7:d6:5e:b3:b5:
d0:8a:df:c9:48:77:cb:ea:c7:0f:d2:f7:b7:c2:f0:c7:34:8d:
1e:e8:2b:d1:88:45:62:a1:83:ce:54:08:eb:b7:06:33:7e:29:
26:86:55:e2:a9:fb:a5:e7:56:04:b9:f5:8b:9a:15:f4:6b:fe:
ea:df:b1:c2:ec:f8:a6:e3:ff:a4:23:36:87:66:00:d1:b7:9d:
3d:cb:c3:09:2f:37:10:2a:52:cc:77:7c:94:aa:ae:35:f5:b4:
1c:19:99:a5:a7:83:04:da:72:81:9a:f4:90:7a:53:bf:46:6d:
62:37:b7:51:71:37:a2:bf:9b:1a:fd:98:c3:af:2b:2c:06:e5:
fa:2e:00:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:58:22 2025 by rpki-client