Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.mft
File: IiQPt4cqphjT4NSTRdv0JHOtBMc.mft (raw, json)
Hash identifier: 7xH4ND94WiaIirJTAQhrWKdNrE6iQYoY62zipaehNic=
Subject key identifier: BF:12:31:6B:88:41:D9:EA:6E:03:20:87:DE:97:A5:57:58:77:9F:F1
Authority key identifier: 22:24:0F:B7:87:2A:A6:18:D3:E0:D4:93:45:DB:F4:24:73:AD:04:C7
Certificate issuer: /CN=A916C38F/serialNumber=22240FB7872AA618D3E0D49345DBF42473AD04C7
Certificate serial: 0B18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiQPt4cqphjT4NSTRdv0JHOtBMc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.mft
Manifest number: 0B11
Signing time: Fri 28 Mar 2025 19:25:49 +0000
Manifest this update: Fri 28 Mar 2025 19:25:48 +0000
Manifest next update: Fri 04 Apr 2025 19:25:48 +0000
Files and hashes: 1: IiQPt4cqphjT4NSTRdv0JHOtBMc.crl (hash: q4Q4Nk5A5Y3AHcmcRuCuDDSmwYgnD1bp4UZJZCHTpFc=)
2: 0F072D383AAE11EAB5D8270EC4F9AE02.roa (hash: as/dc/eVE0KE5cApiltGew64DOfzaL1TNpjwCt5VZmk=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2840 (0xb18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C38F
Validity
Not Before: Mar 28 19:25:48 2025 GMT
Not After : Apr 4 19:25:48 2025 GMT
Subject: CN=67e6f7bd-29dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:44:f1:a8:95:6d:84:5e:f7:03:61:30:6c:ff:
e8:15:f9:f0:7a:ea:fb:c9:6b:8c:4d:e0:6c:b1:79:
41:92:c1:07:c3:0d:48:8e:66:0b:95:af:4e:06:6d:
5f:c5:ec:4e:fb:f5:17:65:fc:42:9d:1d:82:ec:c6:
0d:ba:ef:39:29:77:50:20:04:db:fb:cc:4c:b8:07:
a9:d4:81:71:78:04:ea:e3:d8:d4:44:b4:ba:1b:fa:
d4:38:af:1e:bf:08:e0:5b:09:67:5a:95:0a:60:47:
5b:77:35:8a:ed:ce:95:33:69:53:1a:27:c6:b9:15:
4d:67:ea:91:73:b6:cf:65:6b:aa:8d:1c:fb:ba:5f:
a8:1e:e4:28:31:6d:aa:26:61:0c:90:b4:2d:11:75:
54:17:0f:1b:df:d1:72:63:ce:fe:35:3d:53:65:2f:
db:50:9d:90:48:c5:05:eb:57:90:24:ae:ad:13:0d:
ce:25:31:ed:46:6c:df:48:e9:c0:e6:58:ef:f9:0b:
48:4a:f1:38:ac:ce:6b:f5:82:26:4a:1b:c5:b7:d7:
bd:d8:3a:78:9d:d0:cb:76:54:7a:01:0b:e9:85:85:
1b:d8:4c:7b:18:a9:25:2e:4d:9e:a2:1c:91:3f:17:
70:f4:2b:59:85:a0:9c:26:f9:08:86:9f:8c:35:e1:
88:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:12:31:6B:88:41:D9:EA:6E:03:20:87:DE:97:A5:57:58:77:9F:F1
X509v3 Authority Key Identifier:
keyid:22:24:0F:B7:87:2A:A6:18:D3:E0:D4:93:45:DB:F4:24:73:AD:04:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiQPt4cqphjT4NSTRdv0JHOtBMc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
57:b6:4f:f5:cc:cf:f0:09:1f:ed:fa:9e:81:87:e1:3d:10:64:
9b:47:4e:ae:d3:d0:22:37:3f:76:d2:ce:8e:f4:d1:66:d4:93:
19:a0:bb:ca:19:d4:7d:ae:74:7d:0e:e5:70:aa:26:71:30:e4:
0f:e8:e0:92:a7:c6:a6:94:27:3e:0d:b7:88:68:2e:b7:09:ca:
9f:7f:eb:ac:d8:27:e7:ba:35:6e:07:54:24:ff:0a:2c:32:6c:
67:bc:1c:6a:b4:ed:7d:5a:8e:9e:fd:8b:3b:46:c9:c5:78:5a:
da:5a:60:d8:1a:cb:8b:fd:dc:0e:98:f8:d7:be:dd:4e:b9:34:
bc:0d:56:19:2e:d0:d6:7c:f3:6e:1e:aa:2d:62:e1:51:bf:90:
29:07:43:a9:a4:69:72:62:2d:aa:47:54:30:56:5c:2d:8e:2a:
5b:0f:5b:c8:ab:e8:e9:c6:3b:9b:1c:55:3a:ad:98:e6:70:cb:
ba:85:4c:17:5a:64:61:74:b2:06:39:d3:5e:92:12:3c:e8:0f:
1f:aa:96:f4:6b:55:df:d6:cf:b7:9f:35:b3:0c:59:a1:65:c8:
a0:09:ef:ab:8c:b3:b8:ae:77:e1:d8:b6:ac:da:ea:a2:e0:fb:
3d:aa:1d:cb:df:e1:60:88:90:1f:5c:47:24:74:14:d7:1b:14:
27:cf:3c:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:34:45 2025 by rpki-client