Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft
File: 4bseYl2967MiD_kjzWoRos4kUZY.mft (raw, json)
Hash identifier: LL72i8CUSDK1ffMnXoCXSqkaPIYYuIMxRDzrPaVqjOs=
Subject key identifier: BC:C9:F7:FC:9B:A0:60:6D:E7:CD:82:90:75:1F:F8:04:B0:05:1C:DC
Authority key identifier: E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96
Certificate issuer: /CN=A916A31E/serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196
Certificate serial: 17DF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft
Manifest number: 17A5
Signing time: Fri 28 Mar 2025 16:41:50 +0000
Manifest this update: Fri 28 Mar 2025 16:41:50 +0000
Manifest next update: Fri 04 Apr 2025 16:41:50 +0000
Files and hashes: 1: 4bseYl2967MiD_kjzWoRos4kUZY.crl (hash: qohj56m/4MWNrdtsKReU3JwvQKgMHwRpvGuGzZRjsRc=)
2: FA2CCDCCDE6111E88BFD7810C4F9AE02.roa (hash: wcQu6qDmYL8RSwTWQdHq8swDuqsLZ/b+WksTXiVZeUI=)
3: 2B04CC143D9F11EEACFF646FC4F9AE02.roa (hash: ukI4z4ZMWUWet1XkTlAm00Pda4+ffxxraVEq+pStj8k=)
4: 2A3161763D9F11EEACFF646FC4F9AE02.roa (hash: mm0VJeRGh/+0foB6ENfn+0Td2KUkG+rfML9gCL5EGhk=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6111 (0x17df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916A31E
Validity
Not Before: Mar 28 16:41:50 2025 GMT
Not After : Apr 4 16:41:50 2025 GMT
Subject: CN=67e6d14e-41f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ea:7d:a0:69:29:50:0d:f8:0a:b5:9a:ac:d2:
ce:18:48:35:b8:c1:55:3b:e5:64:b3:08:47:ee:2a:
24:52:7d:fe:35:ca:76:e1:ce:a2:bd:da:70:c9:36:
82:ab:e4:b6:5d:91:ca:c7:b0:99:64:ef:24:69:df:
65:11:ab:b0:a9:97:32:35:88:5f:90:74:c5:af:eb:
1c:e6:62:20:2a:c9:2b:c8:0c:f7:ea:ab:02:56:f2:
4a:d6:ef:52:66:7d:1e:34:0f:64:1b:4f:44:ac:53:
8a:f6:24:eb:b0:fc:b3:e9:4a:19:c4:f5:20:94:e3:
ae:b2:33:08:f8:bf:9c:de:b9:16:e9:e4:34:02:08:
9c:a1:ed:30:81:d8:47:50:ee:17:b3:9c:57:08:62:
9b:73:02:f5:40:c5:ab:e2:a0:87:ae:d6:cd:aa:0f:
c2:a4:9c:bc:49:8e:3d:3e:73:3f:91:aa:cb:9b:d2:
3f:67:17:0e:6d:7a:62:cb:17:14:c9:6d:86:1d:21:
f2:6a:96:70:36:d8:e9:4a:d8:ad:c3:b5:4e:e6:fa:
e1:3f:ef:b0:d9:8b:d9:e9:34:44:e4:5b:da:c3:3e:
e1:17:1e:91:c4:32:a8:b2:0a:f8:2a:40:30:ad:31:
23:b4:ed:31:dd:d7:9f:75:a6:42:cc:06:ad:8a:85:
87:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C9:F7:FC:9B:A0:60:6D:E7:CD:82:90:75:1F:F8:04:B0:05:1C:DC
X509v3 Authority Key Identifier:
keyid:E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
47:24:88:57:50:44:3b:09:f3:12:b6:49:2b:1b:9c:9f:08:90:
5c:d6:27:b9:4d:5e:29:db:e4:60:ad:06:2b:6e:d3:51:55:4b:
a1:eb:2e:27:94:ff:ce:d0:bb:fd:03:29:2d:60:8e:07:05:95:
7e:db:a0:3d:11:c4:e8:57:c1:f8:92:2b:4e:ef:95:6a:1f:7f:
cb:ed:71:52:db:20:47:d2:fb:3a:18:8b:d8:44:a9:a3:fb:14:
15:cb:ba:1f:bc:1f:fe:da:b9:82:be:b5:5f:1c:84:8e:e5:1c:
e3:0a:a0:bc:93:3f:8a:71:4b:9a:dd:0f:4d:23:59:e6:fe:50:
4a:42:12:8a:ec:d5:78:6d:8c:e2:fb:89:cf:3f:0c:90:32:63:
1f:c0:17:c9:d4:ae:af:3a:14:5c:7a:03:ef:4e:8a:5b:6a:ae:
d6:ea:df:a1:6b:39:92:0c:21:1f:7e:ec:72:23:b5:f8:2a:6f:
86:fd:45:dd:6b:4a:97:8a:20:8f:e7:77:8b:8a:0b:8d:3b:be:
2e:32:71:4a:7d:16:b5:3e:d1:a2:8c:86:d1:23:14:e3:aa:55:
97:48:92:ca:50:55:0e:3e:5e:af:44:19:76:d8:43:a5:0f:49:
3c:ed:37:f9:0e:7e:c5:c4:02:6f:4a:e5:93:bc:1f:42:30:ce:
c7:b4:c7:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:44:13 2025 by rpki-client