Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft
File: mm0VemfN-P9qHM6gPkPkwtlb-G0.mft (raw, json)
Hash identifier: z7Yq8GNq+JEOJcds5dqsnOV4VyoYM63UNxpGEWLlwxA=
Subject key identifier: C7:0F:6F:D0:A2:A8:74:EC:84:8F:AF:7F:25:2D:0A:21:17:50:14:DF
Authority key identifier: 9A:6D:15:7A:67:CD:F8:FF:6A:1C:CE:A0:3E:43:E4:C2:D9:5B:F8:6D
Certificate issuer: /CN=A915E777/serialNumber=9A6D157A67CDF8FF6A1CCEA03E43E4C2D95BF86D
Certificate serial: 0F72
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mm0VemfN-P9qHM6gPkPkwtlb-G0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft
Manifest number: 0F72
Signing time: Fri 28 Mar 2025 17:40:27 +0000
Manifest this update: Fri 28 Mar 2025 17:40:26 +0000
Manifest next update: Fri 04 Apr 2025 17:40:26 +0000
Files and hashes: 1: mm0VemfN-P9qHM6gPkPkwtlb-G0.crl (hash: fp1rCHLFKf2BVfPpXxFWq064gH2jlqxGlawgg5FHypE=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3954 (0xf72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915E777
Validity
Not Before: Mar 28 17:40:26 2025 GMT
Not After : Apr 4 17:40:26 2025 GMT
Subject: CN=67e6df0b-4582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c3:a8:68:4b:79:a1:45:b9:50:88:b2:36:6b:
27:1c:72:ab:18:e3:38:6b:68:b5:9d:c8:a5:ee:30:
30:4c:e0:1a:38:1a:9f:28:c1:6d:8b:f6:3e:71:09:
02:10:e2:91:af:fb:4e:c5:62:d1:80:2c:ba:3a:f0:
92:49:8d:13:1f:0f:44:8b:c8:8b:0f:ac:ec:07:e8:
d6:d6:02:5f:ff:e1:aa:91:69:88:64:59:c4:f1:22:
83:62:16:d3:a4:48:53:78:04:86:03:89:2a:94:78:
65:cd:7f:a8:29:09:a8:d3:5b:23:b7:b0:ef:1b:6b:
6d:1e:62:db:85:52:54:2d:39:6c:be:a9:a6:3c:6f:
89:3b:51:b6:39:c5:4a:2e:5f:07:9d:46:4f:a3:f5:
d3:8d:c9:62:c1:9e:5e:bd:13:0c:c1:58:ca:c0:a4:
dd:c6:90:fc:df:f8:6e:e4:53:8c:1b:41:bc:09:a1:
3a:f0:ba:42:1d:a8:c1:44:47:c8:ea:10:57:40:de:
ad:5b:10:1f:d1:8a:3a:58:b5:f2:c2:54:0a:8d:bb:
97:88:a0:77:0a:d1:f9:9a:73:8b:5c:53:e9:20:35:
22:da:55:07:5e:ca:29:38:8d:41:48:dd:7d:90:b8:
d9:4f:40:b0:f1:47:1c:af:66:58:4c:32:d9:8f:b3:
02:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:0F:6F:D0:A2:A8:74:EC:84:8F:AF:7F:25:2D:0A:21:17:50:14:DF
X509v3 Authority Key Identifier:
keyid:9A:6D:15:7A:67:CD:F8:FF:6A:1C:CE:A0:3E:43:E4:C2:D9:5B:F8:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mm0VemfN-P9qHM6gPkPkwtlb-G0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4e:62:68:4e:0b:db:27:06:6b:e8:9c:50:f6:43:d3:8d:24:ce:
e0:d6:0f:f9:35:d8:0d:41:cb:29:f4:4a:e6:64:73:c2:72:56:
c8:22:d3:9c:68:68:d2:1e:46:97:80:57:a8:80:cd:33:6c:49:
88:08:ce:07:92:cb:79:47:64:69:bf:73:79:17:88:36:51:23:
c6:39:cc:7a:f3:bc:bd:f6:9b:c2:b5:6b:c0:ec:0d:b9:1f:d3:
bc:dd:65:8f:67:be:0e:ba:e0:c0:85:84:75:29:f7:5e:dc:d0:
e0:e1:c7:50:5b:24:f3:b0:95:86:d6:37:7e:57:4b:41:78:15:
b1:43:ca:e1:0a:5b:b6:fe:64:50:f2:84:22:18:9d:6a:f8:4b:
f2:0a:de:9d:ba:2e:c6:b8:a9:18:df:0a:93:fa:20:96:69:f0:
ec:03:7f:13:17:80:29:32:e1:f8:6a:f9:b5:38:d9:4e:bc:5a:
27:51:a8:9f:e2:75:c2:3d:be:6c:70:21:c4:97:26:ee:d9:15:
95:58:c0:c9:53:32:2a:45:b5:23:c7:89:1e:1d:47:46:00:c7:
47:4d:e5:d2:b3:c4:fb:a5:d6:5b:e7:e3:77:61:d4:dd:0c:0e:
8a:4c:55:20:43:39:ec:e7:e1:e6:77:41:43:80:92:37:84:93:
c6:1c:8f:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:35:59 2025 by rpki-client